SUSE-SU-2019:2450-1: important: Security update for the Linux Kernel

sle-security-updates at lists.suse.com sle-security-updates at lists.suse.com
Tue Sep 24 10:10:54 MDT 2019


   SUSE Security Update: Security update for the Linux Kernel
______________________________________________________________________________

Announcement ID:    SUSE-SU-2019:2450-1
Rating:             important
References:         #1012382 #1051510 #1053043 #1055117 #1061840 
                    #1065600 #1065729 #1068032 #1071995 #1083647 
                    #1083710 #1088047 #1094555 #1098633 #1102247 
                    #1106383 #1106751 #1109137 #1111666 #11123080 
                    #1112824 #1113722 #1114279 #1115688 #1117158 
                    #1118139 #1119222 #1120423 #1120566 #1124167 
                    #1124503 #1127034 #1127155 #1127315 #1128432 
                    #1128902 #1128910 #1129770 #1130972 #1132154 
                    #1132390 #1133021 #1133401 #1133738 #1134097 
                    #1134303 #1134390 #1134393 #1134395 #1134399 
                    #1134671 #1135296 #1135335 #1135556 #1135642 
                    #1135661 #1136157 #1136424 #1136598 #1136811 
                    #1136896 #1136922 #1136935 #1136990 #1137103 
                    #1137162 #1137194 #1137366 #1137372 #1137429 
                    #1137444 #1137458 #1137534 #1137535 #1137584 
                    #1137586 #1137609 #1137625 #1137728 #1137739 
                    #1137752 #1137811 #1137827 #1137884 #1137995 
                    #1137996 #1137998 #1137999 #1138000 #1138002 
                    #1138003 #1138005 #1138006 #1138007 #1138008 
                    #1138009 #1138010 #1138011 #1138012 #1138013 
                    #1138014 #1138015 #1138016 #1138017 #1138018 
                    #1138019 #1138291 #1138293 #1138374 #1138375 
                    #1138589 #1138719 #1139358 #1139751 #1139771 
                    #1139782 #1139865 #1140133 #1140139 #1140322 
                    #1140328 #1140405 #1140424 #1140428 #1140575 
                    #1140577 #1140637 #1140652 #1140658 #1140715 
                    #1140719 #1140726 #1140727 #1140728 #1140814 
                    #1140887 #1140888 #1140889 #1140891 #1140893 
                    #1140903 #1140945 #1140954 #1140955 #1140956 
                    #1140957 #1140958 #1140959 #1140960 #1140961 
                    #1140962 #1140964 #1140971 #1140972 #1140992 
                    #1141401 #1141402 #1141452 #1141453 #1141454 
                    #1141478 #1141488 #1142023 #1142112 #1142220 
                    #1142221 #1142265 #1142350 #1142351 #1142354 
                    #1142359 #1142450 #1142701 #1142868 #1143003 
                    #1143045 #1143105 #1143185 #1143189 #1143191 
                    #1143507 
Cross-References:   CVE-2018-16871 CVE-2018-20836 CVE-2018-20855
                    CVE-2019-10126 CVE-2019-10638 CVE-2019-10639
                    CVE-2019-1125 CVE-2019-11477 CVE-2019-11478
                    CVE-2019-11599 CVE-2019-11810 CVE-2019-12380
                    CVE-2019-12456 CVE-2019-12614 CVE-2019-12818
                    CVE-2019-12819 CVE-2019-13631 CVE-2019-13648
                    CVE-2019-14283 CVE-2019-14284 CVE-2019-3846
                   
Affected Products:
                    SUSE Linux Enterprise Real Time Extension 12-SP4
______________________________________________________________________________

   An update that solves 21 vulnerabilities and has 160 fixes
   is now available.

Description:


   The SUSE Linux Enterprise Server 12 SP4 Realtime Kernel was updated to fix
   bugs and security issues.

   Security issues fixed:

   - CVE-2019-12614: An issue was discovered in dlpar_parse_cc_property in
     arch/powerpc/platforms/pseries/dlpar.c. There was an unchecked kstrdup
     of prop->name, which might allow an attacker to cause a denial of
     service (NULL pointer dereference and system crash) (bnc#1137194).
   - CVE-2018-16871: A NULL pointer dereference due to an anomalized NFS
     message sequence was fixed. (bnc#1137103).
   - CVE-2018-20836: There was a race condition in smp_task_timedout() and
     smp_task_done() in drivers/scsi/libsas/sas_expander.c, leading to a
     use-after-free (bnc#1134395).
   - CVE-2019-3846: A flaw that allowed an attacker to corrupt memory and
     possibly escalate privileges was found in the mwifiex kernel module
     while connecting to a malicious wireless network (bnc#1136424).
   - CVE-2018-20855: An issue was discovered in create_qp_common in
     drivers/infiniband/hw/mlx5/qp.c, mlx5_ib_create_qp_resp was never
     initialized, resulting in a leak of stack memory to userspace
     (bsc#1143045).
   - CVE-2019-11810: A NULL pointer dereference can occur when
     megasas_create_frame_pool() fails in megasas_alloc_cmds() in
     drivers/scsi/megaraid/megaraid_sas_base.c. This causes a Denial of
     Service, related to a use-after-free (bsc#1134399).
   - CVE-2019-14283: The function set_geometry in drivers/block/floppy.c did
     not validate the sect and head fields, as demonstrated by an integer
     overflow and out-of-bounds read. It can be triggered by an unprivileged
     local user when a floppy disk has been inserted. NOTE: QEMU creates the
     floppy device by default (bsc#1143191).
   - CVE-2019-14284: The drivers/block/floppy.c allowed a denial of service
     by setup_format_params division-by-zero. Two consecutive ioctls can
     trigger the bug: the first one should set the drive geometry with .sect
     and .rate values that make F_SECT_PER_TRACK be zero. Next, the floppy
     format operation should be called. It can be triggered by an
     unprivileged local user even when a floppy disk has not been inserted.
     NOTE: QEMU creates the floppy device by default (bsc#1143189).
   - CVE-2019-13631: In parse_hid_report_descriptor in
     drivers/input/tablet/gtco.c, a malicious USB device can send an HID
     report that triggers an out-of-bounds write during generation of
     debugging messages (bsc#1142023).
   - CVE-2019-1125: Enable Spectre v1 mitigations for SWAPGS (bsc#1139358).
   - CVE-2019-10126: A flaw was found in the Linux kernel that might lead to
     memory corruption in the marvell mwifiex driver. (bnc#1136935)
   - CVE-2019-10638: In the Linux kernel, a device could be tracked by an
     attacker using the IP ID values the kernel produces for connection-less
     protocols (e.g., UDP and ICMP). When such traffic was sent to multiple
     destination IP addresses, it was possible to obtain hash collisions (of
     indices to the counter array) and thereby obtain the hashing key (via
     enumeration). An attack may be conducted by hosting a crafted web page
     that uses WebRTC or gQUIC to force UDP traffic to attacker-controlled IP
     addresses. (bnc#1140575)
   - CVE-2019-10639: The Linux kernel allowed Information Exposure (partial
     kernel address disclosure), leading to a KASLR bypass. Specifically, it
     was possible to extract the KASLR kernel image offset using the IP ID
     values the kernel produces for connection-less protocols (e.g., UDP and
     ICMP). When such traffic was sent to multiple destination IP addresses,
     it was possible to obtain hash collisions (of indices to the counter
     array) and thereby obtain the hashing key (via enumeration). This key
     contains enough bits from a kernel address (of a static variable) so
     when the key was extracted (via enumeration), the offset of the kernel
     image is exposed. This attack can be carried out remotely, by the
     attacker forcing the target device to send UDP or ICMP (or certain
     other) traffic to attacker-controlled IP addresses. Forcing a server to
     send UDP traffic is trivial if the server is a DNS server. ICMP traffic
     is trivial if the server answers ICMP Echo requests (ping). For client
     targets, if the target visited the attacker's web page, then WebRTC or
     gQUIC could be used to force UDP traffic to attacker-controlled IP
     addresses. NOTE: this attack against KASLR became viable because IP ID
     generation was changed to have a dependency on an address associated
     with a network namespace. (bnc#1140577)
   - CVE-2019-11477: A sequence of SACKs may have been crafted such that one
     can trigger an integer overflow, leading to a kernel panic. (bsc#1137586)
   - CVE-2019-11478: It was possible to send a crafted sequence of SACKs
     which will fragment the TCP retransmission queue. An attacker may have
     been able to further exploit the fragmented queue to cause an expensive
     linked-list walk for subsequent SACKs received for that same TCP
     connection.
   - CVE-2019-11599: The coredump implementation in the Linux kernel did not
     use locking or other mechanisms to prevent vma layout or vma flags
     changes while it ran, which allowed local users to obtain sensitive
     information, cause a denial of service, or possibly have unspecified
     other impact by triggering a race condition with mmget_not_zero or
     get_task_mm calls. This is related to fs/userfaultfd.c, mm/mmap.c,
     fs/proc/task_mmu.c, and drivers/infiniband/core/uverbs_main.c.
     (bnc#1133738)
   - CVE-2019-12380: An issue was discovered in the efi subsystem in the
     Linux kernel phys_efi_set_virtual_address_map in
     arch/x86/platform/efi/efi.c and efi_call_phys_prolog in
     arch/x86/platform/efi/efi_64.c mishandle memory allocation failures.
     NOTE: This id is disputed as not being an issue because All the code
     touched by the referenced commit runs only at boot, before any user
     processes are started. Therefore, there is no possibility for an
     unprivileged user to control it. (bnc#1136598)
   - CVE-2019-12456: a double-fetch bug in _ctl_ioctl_main() could allow
     local users to create a denial of service (bsc#1136922).
   - CVE-2019-12818: The nfc_llcp_build_tlv function in
     net/nfc/llcp_commands.c may return NULL. If the caller does not check
     for this, it will trigger a NULL pointer dereference. This will cause
     denial of service. This used to affect nfc_llcp_build_gb in
     net/nfc/llcp_core.c. (bsc#1138293)
   - CVE-2019-12819: The function __mdiobus_register() called put_device(),
     which triggered a fixed_mdio_bus_init use-after-free. This would cause a
     denial of service. (bsc#1138291)
   - CVE-2019-13648: In the Linux kernel on the powerpc platform, when
     hardware transactional memory was disabled, a local user can cause a
     denial of service via a sigreturn() system call that sends a crafted
     signal frame. (bnc#1142265)

   Other issues fixed:

   - 6lowpan: Off by one handling ->nexthdr (bsc#1051510).
   - Abort file_remove_privs() for non-reg. files (bsc#1140888).
   - acpi: Add Hygon Dhyana support (fate#327735).
   - acpi: fix menuconfig presentation of acpi submenu (bsc#1117158).
   - acpi/nfit: Always dump _DSM output payload (bsc#1142351).
   - acpi: PM: Allow transitions to D0 to occur in special cases
     (bsc#1051510).
   - acpi: PM: Avoid evaluating _PS3 on transitions from D3hot to D3cold
     (bsc#1051510).
   - acpi / property: fix handling of data_nodes in acpi_get_next_subnode()
     (bsc#1051510).
   - Add back sibling paca poiter to paca (bsc#1055117).
   - added De0-Nanos-SoC board support (and others based on Altera SOC).
   - Add kernel-subpackage-build.spec (FATE#326579).
   - Add sample kernel-default-base spec file (FATE#326579, jsc#SLE-4117,
     jsc#SLE-3853, bsc#1128910).
   - Add support for crct10dif-vpmsum (FATE#327696).
   - Add version information to KLP_SYMBOLS file
   - af_key: unconditionally clone on broadcast (bsc#1051510).
   - af_unix: remove redundant lockdep class (git-fixes).
   - alsa: compress: Be more restrictive about when a drain is allowed
     (bsc#1051510).
   - alsa: compress: Don't allow paritial drain operations on capture streams
     (bsc#1051510).
   - alsa: compress: Fix regression on compressed capture streams
     (bsc#1051510).
   - alsa: compress: Prevent bypasses of set_params (bsc#1051510).
   - alsa: firewire-lib/fireworks: fix miss detection of received MIDI
     messages (bsc#1051510).
   - alsa: firewire-motu: fix destruction of data for isochronous resources
     (bsc#1051510).
   - alsa: hda - Add a conexant codec entry to let mute led work
     (bsc#1051510).
   - alsa: hda - Force polling mode on CNL for fixing codec communication
     (bsc#1051510).
   - alsa: hda/realtek: Add quirks for several Clevo notebook barebones
     (bsc#1051510).
   - alsa: hda/realtek: apply ALC891 headset fixup to one Dell machine
     (bsc#1051510).
   - alsa: hda/realtek - Change front mic location for Lenovo M710q
     (bsc#1051510).
   - alsa: hda/realtek - Fixed Headphone Mic can't record on Dell platform
     (bsc#1051510).
   - alsa: hda/realtek - Headphone Mic can't record after S3 (bsc#1051510).
   - alsa: hda/realtek - Set default power save node to 0 (bsc#1051510).
   - alsa: hda/realtek - Update headset mode for ALC256 (bsc#1051510).
   - alsa: line6: Fix a typo (bsc#1051510).
   - alsa: line6: Fix write on zero-sized buffer (bsc#1051510).
   - alsa: line6: Fix wrong altsetting for LINE6_PODHD500_1 (bsc#1051510).
   - alsa: oxfw: allow PCM capture for Stanton SCS.1m (bsc#1051510).
   - alsa: seq: Break too long mutex context in the write loop (bsc#1051510).
   - alsa: seq: fix incorrect order of dest_client/dest_ports arguments
     (bsc#1051510).
   - alsa: usb-audio: Add quirk for Focusrite Scarlett Solo (bsc#1051510).
   - alsa: usb-audio: Add quirk for MOTU MicroBook II (bsc#1051510).
   - alsa: usb-audio: Cleanup DSD whitelist (bsc#1051510).
   - alsa: usb-audio: Enable .product_name override for Emagic, Unitor 8
     (bsc#1051510).
   - alsa: usb-audio: fix sign unintended sign extension on left shifts
     (bsc#1051510).
   - alsa: usb-audio: Sanity checks for each pipe and EP types (bsc#1051510).
   - apparmor: enforce nullbyte at end of tag string (bsc#1051510).
   - arch: arm64: acpi: KABI ginore includes (bsc#1117158 bsc#1134671).
   - arm64: acpi: fix alignment fault in accessing acpi (bsc#1117158).
   - arm64: fix acpi dependencies (bsc#1117158).
   - arm64, mm, efi: Account for GICv3 LPI tables in static memblock reserve
     table (bsc#1117158).
   - arm64/x86: Update config files.
   - ASoC : cs4265 : readable register too low (bsc#1051510).
   - ASoC: cs42xx8: Add regcache mask dirty (bsc#1051510).
   - ASoC: cx2072x: fix integer overflow on unsigned int multiply
     (bsc#1111666).
   - ASoC: eukrea-tlv320: fix a leaked reference by adding missing
     of_node_put (bsc#1051510).
   - ASoC: fsl_asrc: Fix the issue about unsupported rate (bsc#1051510).
   - ASoC: fsl_sai: Update is_slave_mode with correct value (bsc#1051510).
   - ASoC: fsl_utils: fix a leaked reference by adding missing of_node_put
     (bsc#1051510).
   - ASoC: hdmi-codec: unlock the device on startup errors (bsc#1051510).
   - ASoC: max98090: remove 24-bit format support if RJ is 0 (bsc#1051510).
   - ASoC: soc-pcm: BE dai needs prepare when pause release after resume
     (bsc#1051510).
   - ath6kl: add some bounds checking (bsc#1051510).
   - audit: fix a memory leak bug (bsc#1051510).
   - ax25: fix inconsistent lock state in ax25_destroy_timer (bsc#1051510).
   - batman-adv: allow updating DAT entry timeouts on incoming ARP Replies
     (bsc#1051510).
   - batman-adv: fix for leaked TVLV handler (bsc#1051510).
   - bcache: acquire bch_register_lock later in cached_dev_detach_finish()
     (bsc#1140652).
   - bcache: acquire bch_register_lock later in cached_dev_free()
     (bsc#1140652).
   - bcache: add code comments for journal_read_bucket() (bsc#1140652).
   - bcache: Add comments for blkdev_put() in registration code path
     (bsc#1140652).
   - bcache: add comments for closure_fn to be called in closure_queue()
     (bsc#1140652).
   - bcache: add comments for kobj release callback routine (bsc#1140652).
   - bcache: add comments for mutex_lock(&b->write_lock) (bsc#1140652).
   - bcache: add error check for calling register_bdev() (bsc#1140652).
   - bcache: add failure check to run_cache_set() for journal replay
     (bsc#1140652).
   - bcache: add io error counting in write_bdev_super_endio() (bsc#1140652).
   - bcache: add more error message in bch_cached_dev_attach() (bsc#1140652).
   - bcache: add pendings_cleanup to stop pending bcache device (bsc#1140652).
   - bcache: add reclaimed_journal_buckets to struct cache_set (bsc#1140652).
   - bcache: add return value check to bch_cached_dev_run() (bsc#1140652).
   - bcache: avoid a deadlock in bcache_reboot() (bsc#1140652).
   - bcache: avoid clang -Wunintialized warning (bsc#1140652).
   - bcache: avoid flushing btree node in cache_set_flush() if io disabled
     (bsc#1140652).
   - bcache: avoid potential memleak of list of journal_replay(s) in the
     CACHE_SYNC branch of run_cache_set (bsc#1140652).
   - bcache: check CACHE_SET_IO_DISABLE bit in bch_journal() (bsc#1140652).
   - bcache: check CACHE_SET_IO_DISABLE in allocator code (bsc#1140652).
   - bcache: check c->gc_thread by IS_ERR_OR_NULL in cache_set_flush()
     (bsc#1140652).
   - bcache: Clean up bch_get_congested() (bsc#1140652).
   - bcache: destroy dc->writeback_write_wq if failed to create
     dc->writeback_thread (bsc#1140652).
   - bcache: do not assign in if condition in bcache_device_init()
     (bsc#1140652).
   - bcache: don't set max writeback rate if gc is running (bsc#1140652).
   - bcache: fix a race between cache register and cacheset unregister
     (bsc#1140652).
   - bcache: fix crashes stopping bcache device before read miss done
     (bsc#1140652).
   - bcache: fix failure in journal relplay (bsc#1140652).
   - bcache: fix inaccurate result of unused buckets (bsc#1140652).
   - bcache: fix mistaken sysfs entry for io_error counter (bsc#1140652).
   - bcache: fix potential deadlock in cached_def_free() (bsc#1140652).
   - bcache: fix race in btree_flush_write() (bsc#1140652).
   - bcache: fix return value error in bch_journal_read() (bsc#1140652).
   - bcache: fix stack corruption by PRECEDING_KEY() (bsc#1140652).
   - bcache: fix wrong usage use-after-freed on keylist in out_nocoalesce
     branch of btree_gc_coalesce (bsc#1140652).
   - bcache: ignore read-ahead request failure on backing device
     (bsc#1140652).
   - bcache: improve bcache_reboot() (bsc#1140652).
   - bcache: improve error message in bch_cached_dev_run() (bsc#1140652).
   - bcache: make bset_search_tree() be more understandable (bsc#1140652).
   - bcache: make is_discard_enabled() static (bsc#1140652).
   - bcache: more detailed error message to bcache_device_link()
     (bsc#1140652).
   - bcache: move definition of 'int ret' out of macro read_bucket()
     (bsc#1140652).
   - bcache: never set KEY_PTRS of journal key to 0 in journal_reclaim()
     (bsc#1140652).
   - bcache: only clear BTREE_NODE_dirty bit when it is set (bsc#1140652).
   - bcache: only set BCACHE_DEV_WB_RUNNING when cached device attached
     (bsc#1140652).
   - bcache: performance improvement for btree_flush_write() (bsc#1140652).
   - bcache: remove redundant LIST_HEAD(journal) from run_cache_set()
     (bsc#1140652).
   - bcache: remove retry_flush_write from struct cache_set (bsc#1140652).
   - bcache: remove unncessary code in bch_btree_keys_init() (bsc#1140652).
   - bcache: remove unnecessary prefetch() in bset_search_tree()
     (bsc#1140652).
   - bcache: remove "XXX:" comment line from run_cache_set() (bsc#1140652).
   - bcache: return error immediately in bch_journal_replay() (bsc#1140652).
   - bcache: Revert "bcache: fix high CPU occupancy during journal"
     (bsc#1140652).
   - bcache: Revert "bcache: free heap cache_set->flush_btree in
     bch_journal_free" (bsc#1140652).
   - bcache: set largest seq to ja->seq[bucket_index] in
     journal_read_bucket() (bsc#1140652).
   - bcache: shrink btree node cache after bch_btree_check() (bsc#1140652).
   - bcache: stop writeback kthread and kworker when bch_cached_dev_run()
     failed (bsc#1140652).
   - bcache: use sysfs_match_string() instead of __sysfs_match_string()
     (bsc#1140652).
   - be2net: Fix number of Rx queues used for flow hashing
     (networking-stable-19_06_18).
   - be2net: Signal that the device cannot transmit during reconfiguration
     (bsc#1127315).
   - be2net: Synchronize be_update_queues with dev_watchdog (bsc#1127315).
   - blk-mq: fix hang caused by freeze/unfreeze sequence (bsc#1128432).
   - blk-mq: free hw queue's resource in hctx's release handler (bsc#1140637).
   - block, bfq: NULL out the bic when it's no longer valid (bsc#1142359).
   - block: Fix a NULL pointer dereference in generic_make_request()
     (bsc#1139771).
   - Bluetooth: Fix faulty expression for minimum encryption key size check
     (bsc#1140328).
   - bnx2x: Prevent load reordering in tx completion processing (bsc#1142868).
   - bnxt_en: Fix aggregation buffer leak under OOM condition
     (networking-stable-19_05_31).
   - bonding: fix arp_validate toggling in active-backup mode
     (networking-stable-19_05_14).
   - bonding: Force slave speed check after link state recovery for 802.3ad
     (bsc#1137584).
   - bpf, x64: fix stack layout of JITed bpf code (bsc#1083647).
   - bpf, x64: save 5 bytes in prologue when ebpf insns came from cbpf
     (bsc#1083647).
   - brcmfmac: convert dev_init_lock mutex to completion (bsc#1051510).
   - brcmfmac: fix missing checks for kmemdup (bsc#1051510).
   - brcmfmac: fix Oops when bringing up interface during USB disconnect
     (bsc#1051510).
   - brcmfmac: fix race during disconnect when USB completion is in progress
     (bsc#1051510).
   - brcmfmac: fix WARNING during USB disconnect in case of unempty psq
     (bsc#1051510).
   - bridge: Fix error path for kobject_init_and_add()
     (networking-stable-19_05_14).
   - btrfs: fix race between block group removal and block group allocation
     (bsc#1143003).
   - Build klp-symbols in kernel devel projects.
   - can: af_can: Fix error path of can_init() (bsc#1051510).
   - can: flexcan: fix timeout when set small bitrate (bsc#1051510).
   - can: purge socket error queue on sock destruct (bsc#1051510).
   - ceph: flush dirty inodes before proceeding with remount (bsc#1140405).
   - cfg80211: fix memory leak of wiphy device name (bsc#1051510).
   - cgroup: Use css_tryget() instead of css_tryget_online() in
     task_get_css() (bsc#1141478).
   - chardev: add additional check for minor range overlap (bsc#1051510).
   - clk: qcom: Fix -Wunused-const-variable (bsc#1051510).
   - clk: rockchip: Don't yell about bad mmc phases when getting
     (bsc#1051510).
   - clk: rockchip: Turn on "aclk_dmac1" for suspend on rk3288 (bsc#1051510).
   - clk: tegra210: fix PLLU and PLLU_OUT1 (bsc#1051510).
   - clk: tegra: Fix PLLM programming on Tegra124+ when PMC overrides divider
     (bsc#1051510).
   - coredump: fix race condition between collapse_huge_page() and core
     dumping (bnc#1133738, CVE-2019-11599).
   - coredump: fix race condition between mmget_not_zero()/get_task_mm() and
     core dumping (bsc#1133738, CVE-2019-11599).
   - coresight: etb10: Fix handling of perf mode (bsc#1051510).
   - coresight: etm4x: Add support to enable ETMv4.2 (bsc#1051510).
   - Correct the CVE and bug reference for a floppy security fix
     (CVE-2019-14284,bsc#1143189)
   - Correct the patch reference tag for scsi fix (bsc#1136922 CVE-2019-12456)
   - cpufreq: acpi-cpufreq: Report if CPU doesn't support boost technologies
     (bsc#1051510).
   - cpufreq: Add Hygon Dhyana support (fate#327735).
   - cpufreq: AMD: Ignore the check for ProcFeedback in ST/CZ (fate#327735).
   - cpufreq: brcmstb-avs-cpufreq: Fix initial command check (bsc#1051510).
   - cpufreq: brcmstb-avs-cpufreq: Fix types for voltage/frequency
     (bsc#1051510).
   - cpufreq: check if policy is inactive early in __cpufreq_get()
     (bsc#1051510).
   - cpufreq: kirkwood: fix possible object reference leak (bsc#1051510).
   - cpufreq/pasemi: fix possible object reference leak (bsc#1051510).
   - cpufreq: pmac32: fix possible object reference leak (bsc#1051510).
   - cpufreq: ppc_cbe: fix possible object reference leak (bsc#1051510).
   - cpufreq: Use struct kobj_attribute instead of struct global_attr
     (bsc#1051510).
   - cpu/topology: Export die_id (jsc#SLE-5454).
   - crypto: algapi - guard against uninitialized spawn list in
     crypto_remove_spawns (bsc#1133401).
   - crypto: arm64/sha1-ce - correct digest for empty data in finup
     (bsc#1051510).
   - crypto: arm64/sha2-ce - correct digest for empty data in finup
     (bsc#1051510).
   - crypto: ccp - Fix 3DES complaint from ccp-crypto module (bsc#1051510).
   - crypto: ccp - fix AES CFB error exposed by new test vectors
     (bsc#1051510).
   - crypto: ccp - Fix SEV_VERSION_GREATER_OR_EQUAL (bsc#1051510).
   - crypto: ccp - fix the SEV probe in kexec boot path (bsc#1136896).
   - crypto: ccp/gcm - use const time tag comparison (bsc#1051510).
   - crypto: ccp - memset structure fields to zero before reuse (bsc#1051510).
   - crypto: ccp - Validate the the error value used to index error messages
     (bsc#1051510).
   - crypto: chacha20poly1305 - fix atomic sleep when using async algorithm
     (bsc#1051510).
   - crypto: cryptd - Fix skcipher instance memory leak (bsc#1051510).
   - crypto: crypto4xx - fix a potential double free in ppc4xx_trng_probe
     (bsc#1051510).
   - crypto: ghash - fix unaligned memory access in ghash_setkey()
     (bsc#1051510).
   - crypto: talitos - Align SEC1 accesses to 32 bits boundaries
     (bsc#1051510).
   - crypto: talitos - check data blocksize in ablkcipher (bsc#1051510).
   - crypto: talitos - fix CTR alg blocksize (bsc#1051510).
   - crypto: talitos - fix max key size for sha384 and sha512 (bsc#1051510).
   - crypto: talitos - HMAC SNOOP NO AFEU mode requires SW icv checking
     (bsc#1051510).
   - crypto: talitos - properly handle split ICV (bsc#1051510).
   - crypto: talitos - reduce max key size for SEC1 (bsc#1051510).
   - crypto: talitos - rename alternative AEAD algos (bsc#1051510).
   - crypto: user - prevent operating on larval algorithms (bsc#1133401).
   - crypto: vmx - ghash: do nosimd fallback manually (bsc#1135661,
     bsc#1137162).
   - crypto: vmx - return correct error code on failed setkey (bsc#1135661,
     bsc#1137162).
   - dasd_fba: Display '00000000' for zero page when dumping sense
     (bsc#11123080).
   - dax: Fix xarray entry association for mixed mappings (bsc#1140893).
   - device core: Consolidate locking and unlocking of parent and device
     (bsc#1106383).
   - dmaengine: hsu: Revert "set HSU_CH_MTSR to memory width" (bsc#1051510).
   - dmaengine: imx-sdma: remove BD_INTR for channel0 (bsc#1051510).
   - dm, dax: Fix detection of DAX support (bsc#1139782).
   - doc: Cope with the deprecation of AutoReporter (bsc#1051510).
   - docs: Fix conf.py for Sphinx 2.0 (bsc#1135642).
   - Documentation: Add MDS vulnerability documentation (bsc#1135642).
   - Documentation: Correct the possible MDS sysfs values (bsc#1135642).
   - Documentation: DMA-API: fix a function name of max_mapping_size
     (bsc#1140954).
   - Do not provide kernel-default from kernel-default-base (boo#1132154,
     bsc#1106751).
   - Do not provide kernel-default-srchash from kernel-default-base.
   - Don't restrict NFSv4.2 on openSUSE (bsc#1138719).
   - dpaa_eth: fix SG frame cleanup (networking-stable-19_05_14).
   - drbd: Avoid Clang warning about pointless switch statment (bsc#1051510).
   - drbd: disconnect, if the wrong UUIDs are attached on a connected peer
     (bsc#1051510).
   - drbd: narrow rcu_read_lock in drbd_sync_handshake (bsc#1051510).
   - drbd: skip spurious timeout (ping-timeo) when failing promote
     (bsc#1051510).
   - driver core: Establish order of operations for device_add and device_del
     via bitflag (bsc#1106383).
   - driver core: Probe devices asynchronously instead of the driver
     (bsc#1106383).
   - drivers: acpi: add dependency of EFI for arm64 (bsc#1117158).
   - drivers/base: Introduce kill_device() (bsc#1139865).
   - drivers/base: kABI fixes for struct device_private (bsc#1106383).
   - drivers: misc: fix out-of-bounds access in function param_set_kgdbts_var
     (bsc#1051510).
   - drivers/rapidio/devices/rio_mport_cdev.c: fix resource leak in error
     handling path in 'rio_dma_transfer()' (bsc#1051510).
   - drivers/rapidio/rio_cm.c: fix potential oops in riocm_ch_listen()
     (bsc#1051510).
   - drivers: thermal: tsens: Don't print error message on -EPROBE_DEFER
     (bsc#1051510).
   - drm/amdgpu: fix old fence check in amdgpu_fence_emit (bsc#1051510).
   - drm/amdgpu/gfx9: use reset default for PA_SC_FIFO_SIZE (bsc#1051510).
   - drm/arm/hdlcd: Allow a bit of clock tolerance (bsc#1051510).
   - drm/drv: Hold ref on parent device during drm_device lifetime
     (bsc#1051510).
   - drm/gma500/cdv: Check vbt config bits when detecting lvds panels
     (bsc#1051510).
   - drm/i915/dmc: protect against reading random memory (bsc#1051510).
   - drm/i915/gvt: Fix cmd length of VEB_DI_IECP (bsc#1113722)
   - drm/i915/gvt: ignore unexpected pvinfo write (bsc#1051510).
   - drm/i915/gvt: refine ggtt range validation (bsc#1113722)
   - drm/i915/perf: fix whitelist on Gen10+ (bsc#1051510).
   - drm/i915/sdvo: Implement proper HDMI audio support for SDVO
     (bsc#1051510).
   - drm/meson: Add support for XBGR8888 & ABGR8888 formats (bsc#1051510).
   - drm/msm/a3xx: remove TPL1 regs from snapshot (bsc#1051510).
   - drm/nouveau/disp/dp: respect sink limits when selecting failsafe link
     configuration (bsc#1051510).
   - drm/nouveau/i2c: Disable i2c bus access after ->fini() (bsc#1113722)
   - drm/nouveau/i2c: Enable i2c pads & busses during preinit (bsc#1051510).
   - drm/radeon: prefer lower reference dividers (bsc#1051510).
   - drm/rockchip: Properly adjust to a true clock in adjusted_mode
     (bsc#1051510).
   - drm: Wake up next in drm_read() chain if we are forced to putback the
     event (bsc#1051510).
   - e1000e: start network tx queue only when link is up (bsc#1051510).
   - edac, amd64: Add Hygon Dhyana support (fate#327735).
   - edac/mc: Fix edac_mc_find() in case no device is found (bsc#1114279).
   - efi: add API to reserve memory persistently across kexec reboot
     (bsc#1117158).
   - efi/arm: Defer persistent reservations until after paging_init()
     (bsc#1117158).
   - efi/arm: Don't mark acpi reclaim memory as MEMBLOCK_NOMAP (bsc#1117158
     bsc#1115688 bsc#1120566).
   - efi/arm: libstub: add a root memreserve config table (bsc#1117158).
   - efi/arm: map UEFI memory map even w/o runtime services enabled
     (bsc#1117158).
   - efi/arm: preserve early mapping of UEFI memory map longer for BGRT
     (bsc#1117158).
   - efi/arm: Revert "Defer persistent reservations until after
     paging_init()" (bsc#1117158).
   - efi/arm: Revert deferred unmap of early memmap mapping (bsc#1117158).
   - efi: honour memory reservations passed via a linux specific   config
     table (bsc#1117158).
   - efi: Permit calling efi_mem_reserve_persistent() from atomic context
     (bsc#1117158).
   - efi: Permit multiple entries in persistent memreserve data   structure
     (bsc#1117158).
   - efi: Prevent GICv3 WARN() by mapping the memreserve table before first
     use (bsc#1117158).
   - efi: Reduce the amount of memblock reservations for persistent
     allocations (bsc#1117158).
   - efi/x86/Add missing error handling to old_memmap 1:1 mapping code
     (CVE-2019-12380,bsc#1136598).
   - ethtool: check the return value of get_regs_len (git-fixes).
   - ethtool: fix potential userspace buffer overflow
     (networking-stable-19_06_09).
   - ext4: do not delete unlinked inode from orphan list on failed truncate
     (bsc#1140891).
   - extcon: arizona: Disable mic detect if running when driver is removed
     (bsc#1051510).
   - firmware: efi: factor out mem_reserve (bsc#1117158 bsc#1134671).
   - Fix kABI breakage by mwifiex security fix (CVE-2019-3846,bsc#1136424).
   - Fix kABI for asus-wmi quirk_entry field addition (bsc#1051510).
   - Fix memory leak in sctp_process_init (networking-stable-19_06_09).
   - floppy: fix div-by-zero in setup_format_params
     (CVE-2019-14283,bsc#1143191).
   - floppy: fix out-of-bounds read in copy_buffer
     (CVE-2019-14283,bsc#1143191).
   - fork, memcg: fix cached_stacks case (bsc#1134097).
   - fork, memcg: fix crash in free_thread_stack on memcg charge fail
     (bsc#1134097).
   - fs/ocfs2: fix race in ocfs2_dentry_attach_lock() (bsc#1140889).
   - fs/proc/proc_sysctl.c: Fix a NULL pointer dereference (bsc#1140887).
   - fs/proc/proc_sysctl.c: fix NULL pointer dereference in put_links
     (bsc#1140887).
   - ftrace/x86: Remove possible deadlock between register_kprobe() and
     ftrace_run_update_code() (bsc#1071995 fate#323487).
   - fuse: fallocate: fix return with locked inode (bsc#1051510).
   - fuse: fix writepages on 32bit (bsc#1051510).
   - fuse: honor RLIMIT_FSIZE in fuse_file_fallocate (bsc#1051510).
   - genirq: Prevent use-after-free and work list corruption (bsc#1051510).
   - genirq: Respect IRQCHIP_SKIP_SET_WAKE in irq_chip_set_wake_parent()
     (bsc#1051510).
   - genwqe: Prevent an integer overflow in the ioctl (bsc#1051510).
   - git_sort: add crypto maintainer tree.
   - gpio: fix gpio-adp5588 build errors (bsc#1051510).
   - gpio: omap: fix lack of irqstatus_raw0 for OMAP4 (bsc#1051510).
   - gpio: Remove obsolete comment about gpiochip_free_hogs() usage
     (bsc#1051510).
   - HID: input: fix a4tech horizontal wheel custom usage (bsc#1137429).
   - HID: logitech-hidpp: change low battery level threshold from 31 to 30
     percent (bsc#1051510).
   - HID: logitech-hidpp: use RAP instead of FAP to get the protocol version
     (bsc#1051510).
   - HID: wacom: Add ability to provide explicit battery status info
     (bsc#1051510).
   - - HID: wacom: Add support for 3rd generation Intuos BT   (bsc#1051510).
   - HID: wacom: Add support for Pro Pen slim (bsc#1051510).
   - HID: wacom: convert Wacom custom usages to standard HID usages
     (bsc#1051510).
   - HID: wacom: Correct button numbering 2nd-gen Intuos Pro over Bluetooth
     (bsc#1051510).
   - HID: wacom: correct touch resolution x/y typo (bsc#1051510).
   - HID: wacom: Don't report anything prior to the tool entering range
     (bsc#1051510).
   - HID: wacom: Don't set tool type until we're in range (bsc#1051510).
   - HID: wacom: fix mistake in printk (bsc#1051510).
   - HID: wacom: generic: add the "Report Valid" usage (bsc#1051510).
   - HID: wacom: generic: Correct pad syncing (bsc#1051510).
   - HID: wacom: generic: Ignore HID_DG_BATTERYSTRENTH == 0 (bsc#1051510).
   - HID: wacom: generic: Leave tool in prox until it completely leaves sense
     (bsc#1051510).
   - HID: wacom: generic: only switch the mode on devices with LEDs
     (bsc#1051510).
   - HID: wacom: generic: read HID_DG_CONTACTMAX from any feature report
     (bsc#1051510).
   - HID: wacom: generic: Refactor generic battery handling (bsc#1051510).
   - HID: wacom: generic: Report AES battery information (bsc#1051510).
   - HID: wacom: generic: Reset events back to zero when pen leaves
     (bsc#1051510).
   - HID: wacom: generic: Scale battery capacity measurements to percentages
     (bsc#1051510).
   - HID: wacom: generic: Send BTN_STYLUS3 when both barrel switches are set
     (bsc#1051510).
   - HID: wacom: generic: Send BTN_TOOL_PEN in prox once the pen enters range
     (bsc#1051510).
   - HID: wacom: generic: Support multiple tools per report (bsc#1051510).
   - HID: wacom: generic: Use generic codepath terminology in
     wacom_wac_pen_report (bsc#1051510).
   - HID: wacom: Mark expected switch fall-through (bsc#1051510).
   - HID: wacom: Move handling of HID quirks into a dedicated function
     (bsc#1051510).
   - HID: wacom: Move HID fix for AES serial number into
     wacom_hid_usage_quirk (bsc#1051510).
   - HID: wacom: Properly handle AES serial number and tool type
     (bsc#1051510).
   - HID: wacom: Queue events with missing type/serial data for later
     processing (bsc#1051510).
   - HID: wacom: Remove comparison of u8 mode with zero and simplify
     (bsc#1051510).
   - HID: wacom: Replace touch_max fixup code with static touch_max
     definitions (bsc#1051510).
   - HID: wacom: Send BTN_TOUCH in response to INTUOSP2_BT eraser contact
     (bsc#1051510).
   - HID: wacom: Support "in range" for Intuos/Bamboo tablets where possible
     (bsc#1051510).
   - HID: Wacom: switch Dell canvas into highres mode (bsc#1051510).
   - HID: wacom: Sync INTUOSP2_BT touch state after each frame if necessary
     (bsc#1051510).
   - HID: wacom: wacom_wac_collection() is local to wacom_wac.c (bsc#1051510).
   - HID: wacom: Work around HID descriptor bug in DTK-2451 and DTH-2452
     (bsc#1051510).
   - hugetlbfs: dirty pages as they are added to pagecache (git fixes
     (mm/hugetlbfs)).
   - hugetlbfs: fix kernel BUG at fs/hugetlbfs/inode.c:444! (git fixes
     (mm/hugetlbfs)).
   - hwmon: (core) add thermal sensors only if dev->of_node is present
     (bsc#1051510).
   - hwmon/coretemp: Cosmetic: Rename internal variables to zones from
     packages (jsc#SLE-5454).
   - hwmon/coretemp: Support multi-die/package (jsc#SLE-5454).
   - hwmon: (k10temp) 27C Offset needed for Threadripper2 (FATE#327735).
   - hwmon: (k10temp) Add Hygon Dhyana support (FATE#327735).
   - hwmon: (k10temp) Add support for AMD Ryzen w/ Vega graphics
     (FATE#327735).
   - hwmon: (k10temp) Add support for family 17h (FATE#327735).
   - hwmon: (k10temp) Add support for Stoney Ridge and Bristol Ridge CPUs
     (FATE#327735).
   - hwmon: (k10temp) Add support for temperature offsets (FATE#327735).
   - hwmon: (k10temp) Add temperature offset for Ryzen 1900X (FATE#327735).
   - hwmon: (k10temp) Add temperature offset for Ryzen 2700X (FATE#327735).
   - hwmon: (k10temp) Correct model name for Ryzen 1600X (FATE#327735).
   - hwmon: (k10temp) Display both Tctl and Tdie (FATE#327735).
   - hwmon: (k10temp) Fix reading critical temperature register (FATE#327735).
   - hwmon: (k10temp) Make function get_raw_temp static (FATE#327735).
   - hwmon: (k10temp) Move chip specific code into probe function
     (FATE#327735).
   - hwmon: (k10temp) Only apply temperature offset if result is positive
     (FATE#327735).
   - hwmon: (k10temp) Support all Family 15h Model 6xh and Model 7xh
     processors (FATE#327735).
   - hwmon: k10temp: Support Threadripper 2920X, 2970WX; simplify offset
     table (FATE#327735).
   - hwmon: (k10temp) Use API function to access System Management Network
     (FATE#327735).
   - hwmon/k10temp, x86/amd_nb: Consolidate shared device IDs (FATE#327735).
   - hwmon: (pmbus/core) Treat parameters as paged if on multiple pages
     (bsc#1051510).
   - hwrng: omap - Set default quality (bsc#1051510).
   - i2c: acorn: fix i2c warning (bsc#1135642).
   - i2c: dev: fix potential memory leak in i2cdev_ioctl_rdwr (bsc#1051510).
   - i2c: i801: Add support for Intel Comet Lake (jsc#SLE-5331).
   - i2c-piix4: Add Hygon Dhyana SMBus support (FATE#327735).
   - IB/mlx5: Fix leaking stack memory to userspace (bsc#1143045
     CVE-2018-20855).
   - ibmveth: Update ethtool settings to reflect virtual properties
     (bsc#1136157, LTC#177197).
   - ibmvnic: Add device identification to requested IRQs (bsc#1137739).
   - ibmvnic: Do not close unopened driver during reset (bsc#1137752).
   - ibmvnic: Fix unchecked return codes of memory allocations (bsc#1137752).
   - ibmvnic: Refresh device multicast list after reset (bsc#1137752).
   - ibmvnic: remove set but not used variable 'netdev' (bsc#1137739).
   - iio: ad_sigma_delta: Properly handle SPI bus locking vs CS assertion
     (bsc#1051510).
   - iio: common: ssp_sensors: Initialize calculated_time in
     ssp_common_process_data (bsc#1051510).
   - iio: hmc5843: fix potential NULL pointer dereferences (bsc#1051510).
   - indirect call wrappers: helpers to speed-up indirect calls of builtin
     (bsc#1124503).
   - inet: switch IP ID generator to siphash (CVE-2019-10638 bsc#1140575).
   - Input: elantech - enable middle button support on 2 ThinkPads
     (bsc#1051510).
   - Input: gtco - bounds check collection indent level
     (CVE-2019-13631,bsc#1142023).
   - Input: imx_keypad - make sure keyboard can always wake up system
     (bsc#1051510).
   - Input: psmouse - fix build error of multiple definition (bsc#1051510).
   - Input: synaptics - enable SMBUS on T480 thinkpad trackpad (bsc#1051510).
   - Input: synaptics - enable SMBus on ThinkPad E480 and E580 (bsc#1051510).
   - Input: tm2-touchkey - acknowledge that setting brightness is a blocking
     call (bsc#1129770).
   - Input: uinput - add compat ioctl number translation for UI_*_FF_UPLOAD
     (bsc#1051510).
   - Install extra rpm scripts for kernel subpackaging (FATE#326579,
     jsc#SLE-4117, jsc#SLE-3853, bsc#1128910).
   - intel_th: msu: Fix single mode with disabled IOMMU (bsc#1051510).
   - iommu/amd: Make iommu_disable safer (bsc#1140955).
   - iommu/arm-smmu: Add support for qcom,smmu-v2 variant (bsc#1051510).
   - iommu/arm-smmu: Avoid constant zero in TLBI writes (bsc#1140956).
   - iommu/arm-smmu-v3: Abort all transactions if SMMU is enabled in kdump
     kernel (bsc#1117158).
   - iommu/arm-smmu-v3: Don't disable SMMU in kdump kernel (bsc#1117158
     bsc#1134671).
   - iommu/arm-smmu-v3: sync the OVACKFLG to PRIQ consumer register
     (bsc#1051510).
   - iommu/arm-smmu-v3: Use explicit mb() when moving cons pointer
     (bsc#1051510).
   - iommu: Fix a leak in iommu_insert_resv_region (bsc#1140957).
   - iommu: Use right function to get group for device (bsc#1140958).
   - iommu/vt-d: Duplicate iommu_resv_region objects per device list
     (bsc#1140959).
   - iommu/vt-d: Handle PCI bridge RMRR device scopes in
     intel_iommu_get_resv_regions (bsc#1140960).
   - iommu/vt-d: Handle RMRR with PCI bridge device scopes (bsc#1140961).
   - iommu/vt-d: Introduce is_downstream_to_pci_bridge helper (bsc#1140962).
   - iommu/vt-d: Remove unnecessary rcu_read_locks (bsc#1140964).
   - ipv4: Define __ipv4_neigh_lookup_noref when CONFIG_INET is disabled
     (git-fixes).
   - ipv4: Fix raw socket lookup for local traffic
     (networking-stable-19_05_14).
   - ipv4/igmp: fix another memory leak in igmpv3_del_delrec()
     (networking-stable-19_05_31).
   - ipv4/igmp: fix build error if !CONFIG_IP_MULTICAST
     (networking-stable-19_05_31).
   - ipv4: Use return value of inet_iif() for __raw_v4_lookup in the while
     loop (git-fixes).
   - ipv6: Consider sk_bound_dev_if when binding a raw socket to an address
     (networking-stable-19_05_31).
   - ipv6: fix EFAULT on sendto with icmpv6 and hdrincl
     (networking-stable-19_06_09).
   - ipv6: flowlabel: fl6_sock_lookup() must use atomic_inc_not_zero
     (networking-stable-19_06_18).
   - ipv6: use READ_ONCE() for inet->hdrincl as in ipv4
     (networking-stable-19_06_09).
   - irqchip/gic-v3-its: fix some definitions of inner cacheability
     attributes (bsc#1051510).
   - irqchip/mbigen: Don't clear eventid when freeing an MSI (bsc#1051510).
   - iwlwifi: mvm: check for length correctness in iwl_mvm_create_skb()
     (bsc#1051510).
   - iwlwifi: pcie: don't crash on invalid RX interrupt (bsc#1051510).
   - kabi: drop LINUX_MIB_TCPWQUEUETOOBIG snmp counter (bsc#1137586).
   - Kabi fixup blk_mq_register_dev() (bsc#1140637).
   - kabi: handle addition of net::hash_mix (CVE-2019-10639 bsc#1140577).
   - kabi: handle addition of netns_ipv4::ip_id_key (CVE-2019-10638
     bsc#1140575).
   - kabi: move sysctl_tcp_min_snd_mss to preserve struct net layout
     (bsc#1137586).
   - kABI workaround for the new pci_dev.skip_bus_pm field addition
     (bsc#1051510).
   - kabi: x86/topology: Add CPUID.1F multi-die/package support
     (jsc#SLE-5454).
   - kabi: x86/topology: Define topology_logical_die_id()   (jsc#SLE-5454).
   - kbuild: use -flive-patching when CONFIG_LIVEPATCH is enabled
     (bsc#1071995 fate#323487).
   - kernel-binary: fix missing \
   - kernel-binary: rpm does not support multiline condition
   - kernel-binary: Use -c grep option in klp project detection.
   - kernel: jump label transformation performance (bsc#1137534
     bsc#1137535 			LTC#178058 LTC#178059).
   - kernel/signal.c: trace_signal_deliver when signal_group_exit (git-fixes).
   - kernel-subpackage-spec: Add dummy package to ensure subpackages are
     rebuilt with kernel update (bsc#1106751).
   - KMPs: obsolete older KMPs of the same flavour (bsc#1127155, bsc#1109137).
   - KMPs: provide and conflict a kernel version specific KMP name
     (bsc#1127155, bsc#1109137).
   - KVM: arm/arm64: vgic-its: Take the srcu lock when parsing the memslots
     (bsc#1133021).
   - KVM: arm/arm64: vgic-its: Take the srcu lock when writing to guest
     memory (bsc#1133021).
   - kvm: mmu: Fix overflow on kvm mmu page limit calculation (bsc#1135335).
   - kvm/mmu: kABI fix for *_mmu_pages changes in struct kvm_arch
     (bsc#1135335).
   - KVM: polling: add architecture backend to disable polling (bsc#1119222).
   - KVM: PPC: Book3S HV: Avoid lockdep debugging in TCE realmode handlers
     (bsc#1061840).
   - KVM: PPC: Book3S HV: XIVE: Do not clear IRQ data of passthrough
     interrupts (bsc#1061840).
   - KVM: PPC: Book3S: Protect memslots while validating user address
     (bsc#1061840).
   - KVM: PPC: Release all hardware TCE tables attached to a group
     (bsc#1061840).
   - KVM: PPC: Remove redundand permission bits removal (bsc#1061840).
   - KVM: PPC: Validate all tces before updating tables (bsc#1061840).
   - KVM: PPC: Validate TCEs against preregistered memory page sizes
     (bsc#1061840).
   - KVM: s390: change default halt poll time to 50us (bsc#1119222).
   - KVM: s390: enable CONFIG_HAVE_KVM_NO_POLL (bsc#1119222)
   - KVM: s390: fix typo in parameter description (bsc#1119222).
   - KVM: s390: kABI Workaround for 'kvm_vcpu_stat'
   - KVM: s390: kABI Workaround for 'lowcore' (bsc#1119222).
   - KVM: s390: provide kvm_arch_no_poll function (bsc#1119222).
   - kvm: svm/avic: Do not send AVIC doorbell to self (bsc#1140133).
   - kvm: svm/avic: fix off-by-one in checking host APIC ID (bsc#1140971).
   - KVM: SVM: Fix detection of AMD Errata 1096 (bsc#1142354).
   - KVM: x86: fix return value for reserved EFER (bsc#1140992).
   - kvm: x86: Include CPUID leaf 0x8000001e in kvm's supported CPUID
     (bsc#1114279).
   - kvm: x86: Include multiple indices with CPUID leaf 0x8000001d
     (bsc#1114279).
   - KVM: x86: Skip EFER vs. guest CPUID checks for host-initiated writes
     (bsc#1140972).
   - lapb: fixed leak of control-blocks (networking-stable-19_06_18).
   - leds: avoid flush_work in atomic context (bsc#1051510).
   - libata: Extend quirks for the ST1000LM024 drives with NOLPM quirk
     (bsc#1051510).
   - lib/bitmap.c: make bitmap_parselist() thread-safe and much faster
     (bsc#1143507).
   - lib: fix stall in __bitmap_parselist() (bsc#1051510).
   - libnvdimm/bus: Prevent duplicate device_unregister() calls (bsc#1139865).
   - libnvdimm/namespace: Fix label tracking error (bsc#1142350).
   - libnvdimm, pfn: Fix over-trim in trim_pfn_device() (bsc#1140719).
   - lib/scatterlist: Fix mapping iterator when sg->offset is greater than
     PAGE_SIZE (bsc#1051510).
   - livepatch: Remove duplicate warning about missing reliable stacktrace
     support (bsc#1071995 fate#323487).
   - livepatch: Use static buffer for debugging messages under rq lock
     (bsc#1071995 fate#323487).
   - llc: fix skb leak in llc_build_and_send_ui_pkt()
     (networking-stable-19_05_31).
   - mac80211/cfg80211: update bss channel on channel switch (bsc#1051510).
   - mac80211: Do not use stack memory with scatterlist for GMAC
     (bsc#1051510).
   - mac80211: drop robust management frames from unknown TA (bsc#1051510).
   - mac80211: Fix kernel panic due to use of txq after free (bsc#1051510).
   - mac80211: handle deauthentication/disassociation from TDLS peer
     (bsc#1051510).
   - media: au0828: Fix NULL pointer dereference in
     au0828_analog_stream_enable() (bsc#1051510).
   - media: au0828: stop video streaming only when last user stops
     (bsc#1051510).
   - media: coda: clear error return value before picture run (bsc#1051510).
   - media: cpia2: Fix use-after-free in cpia2_exit (bsc#1051510).
   - media: cpia2_usb: first wake up, then free in disconnect (bsc#1135642).
   - media: go7007: avoid clang frame overflow warning with KASAN
     (bsc#1051510).
   - media: m88ds3103: serialize reset messages in m88ds3103_set_frontend
     (bsc#1051510).
   - media: marvell-ccic: fix DMA s/g desc number calculation (bsc#1051510).
   - media: ov2659: make S_FMT succeed even if requested format doesn't match
     (bsc#1051510).
   - media: s5p-mfc: Make additional clocks optional (bsc#1051510).
   - media: saa7146: avoid high stack usage with clang (bsc#1051510).
   - media: smsusb: better handle optional alignment (bsc#1051510).
   - media: usb: siano: Fix false-positive "uninitialized variable" warning
     (bsc#1051510).
   - media: usb: siano: Fix general protection fault in smsusb (bsc#1051510).
   - media: v4l2-ioctl: clear fields in s_parm (bsc#1051510).
   - media: v4l2: Test type instead of cfg->type in v4l2_ctrl_new_custom()
     (bsc#1051510).
   - media: vivid: fix incorrect assignment operation when setting video mode
     (bsc#1051510).
   - mei: bus: need to unlink client before freeing (bsc#1051510).
   - mei: me: add denverton innovation engine device IDs (bsc#1051510).
   - mei: me: add gemini lake devices id (bsc#1051510).
   - memory: tegra: Fix integer overflow on tick value calculation
     (bsc#1051510).
   - memstick: Fix error cleanup path of memstick_init (bsc#1051510).
   - Merge branch 'origin/users/jthumshirn/SLE15/for-next' into SLE15
   - Merge branch 'packaging' into SLE15
   - Merge branch 'scripts' into SLE15
   - Merge branch 'scripts' into SLE15
   - Merge branch 'SLE15_EMBARGO' into SLE12-SP4_EMBARGO
   - Merge branch 'SLE15_EMBARGO' into SLE12-SP4_EMBARGO
   - Merge branch 'SLE15_EMBARGO' into SLE15
   - Merge branch 'SLE15' into SLE12-SP4
   - Merge branch 'SLE15' into SLE12-SP4
   - Merge branch 'SLE15' into SLE12-SP4
   - Merge branch 'SLE15' into SLE12-SP4
   - Merge branch 'SLE15' into SLE12-SP4
   - Merge branch 'SLE15' into SLE12-SP4
   - Merge branch 'SLE15' into SLE12-SP4
   - Merge branch 'SLE15' into SLE12-SP4
   - Merge branch 'SLE15' into SLE12-SP4
   - Merge branch 'SLE15' into SLE12-SP4
   - Merge branch 'SLE15' into SLE12-SP4
   - Merge branch 'SLE15' into SLE12-SP4
   - Merge branch 'SLE15' into SLE12-SP4
   - Merge branch 'SLE15' into SLE12-SP4
   - Merge branch 'SLE15' into SLE12-SP4
   - Merge branch 'SLE15' into SLE15_EMBARGO
   - Merge branch 'SLE15' into users/tiwai/SLE15/bsc1139358
   - Merge branch 'SLE15' into users/tiwai/SLE15/bsc1139358
   - Merge branch 'SLE15' into users/tiwai/SLE15/bsc1139358
   - Merge branch 'users/bpetkov/SLE15/for-next' into SLE15
   - Merge branch 'users/bpetkov/SLE15/for-next' into SLE15
   - Merge branch 'users/dkirjanov/SLE15/for-next' into SLE15
   - Merge branch 'users/fbaumanis/SLE15/for-next' into SLE15
   - Merge branch 'users/fdmanana/SLE15/for-next' into SLE15
   - Merge branch 'users/fdmanana/SLE15/for-next' into SLE15
   - Merge branch 'users/fyang/SLE15/for-next' into SLE15
   - Merge branch 'users/ggherdovich/SLE15/for-next' into SLE15
   - Merge branch 'users/glin/SLE15/for-next' into SLE15
   - Merge branch 'users/hare/SLE15/for-next' into SLE15
   - Merge branch 'users/hare/SLE15/for-next' into SLE15
   - Merge branch 'users/hare/SLE15/for-next' into SLE15
   - Merge branch 'users/hare/SLE15/for-next' into SLE15
   - Merge branch 'users/jack/SLE15/for-next' into SLE15
   - Merge branch 'users/jack/SLE15/for-next' into SLE15
   - Merge branch 'users/jack/SLE15/for-next' into SLE15
   - Merge branch 'users/jack/SLE15/for-next' into SLE15
   - Merge branch 'users/jdelvare/SLE15/for-next' into SLE15
   - Merge branch 'users/jgross/SLE15/for-next' into SLE15
   - Merge branch 'users/jroedel/SLE15/for-next' into SLE15
   - Merge branch 'users/jroedel/SLE15/for-next' into SLE15
   - Merge branch 'users/jslaby/SLE15/for-next' into SLE15
   - Merge branch 'users/jslaby/SLE15/for-next' into SLE15
   - Merge branch 'users/jthumshirn/SLE15/for-next' into SLE15
   - Merge branch 'users/jthumshirn/SLE15/for-next' into SLE15
   - Merge branch 'users/jthumshirn/SLE15/for-next' into SLE15
   - Merge branch 'users/jthumshirn/SLE15/for-next' into SLE15
   - Merge branch 'users/jthumshirn/SLE15/for-next' into SLE15
   - Merge branch 'users/lduncan/SLE15/for-next' into SLE15
   - Merge branch 'users/lduncan/SLE15/for-next' into SLE15
   - Merge branch 'users/lduncan/SLE15/for-next' into SLE15
   - Merge branch 'users/lduncan/SLE15/for-next' into SLE15
   - Merge branch 'users/lhenriques/SLE15/for-next' into SLE15
   - Merge branch 'users/lyan/SLE15/for-next' into SLE15
   - Merge branch 'users/lyan/SLE15/for-next' into SLE15
   - Merge branch 'users/mbenes/SLE15/for-next' into SLE15
   - Merge branch 'users/mbenes/SLE15/for-next' into SLE15
   - Merge branch 'users/mbrugger/SLE15/for-next' into SLE15
   - Merge branch 'users/mgorman/SLE15/for-next' into SLE15
   - Merge branch 'users/mgorman/SLE15/for-next' into SLE15
   - Merge branch 'users/mhocko/SLE12-SP4/bnc1136896' into
     users/mhocko/SLE12-SP4/for-next
   - Merge branch 'users/mhocko/SLE15/bnc1139358' into SLE15
   - Merge branch 'users/mhocko/SLE15/bnc1139358' into
     users/mhocko/SLE12-SP4/bnc1139358
   - Merge branch 'users/mhocko/SLE15/for-next' into SLE15
   - Merge branch 'users/mkoutny/SLE15/for-next' into SLE15
   - Merge branch 'users/mkubecek/SLE15/1137586' into SLE15_EMBARGO
   - Merge branch 'users/mkubecek/SLE15/1137586' into SLE15_EMBARGO
   - Merge branch 'users/mkubecek/SLE15/for-next' into SLE15
   - Merge branch 'users/mkubecek/SLE15/for-next' into SLE15
   - Merge branch 'users/msuchanek/SLE15/bsc1137534-s390-jumplabel-perf' into
     SLE15
   - Merge branch 'users/msuchanek/SLE15/for-next' into SLE15
   - Merge branch 'users/msuchanek/SLE15/for-next' into SLE15
   - Merge branch 'users/msuchanek/SLE15/for-next' into SLE15
   - Merge branch 'users/msuchanek/SLE15/for-next' into SLE15
   - Merge branch 'users/msuchanek/SLE15/for-next' into SLE15
   - Merge branch 'users/msuchanek/SLE15/for-next' into SLE15
   - Merge branch 'users/msuchanek/SLE15/for-next' into SLE15
   - Merge branch 'users/msuchanek/SLE15/for-next' into SLE15
   - Merge branch 'users/msuchanek/SLE15/for-next' into SLE15
   - Merge branch 'users/msuchanek/SLE15/for-next' into SLE15
   - Merge branch 'users/nfbrown/SLE15/for-next' into SLE15
   - Merge branch 'users/nfbrown/SLE15/for-next' into SLE15
   - Merge branch 'users/ohering/SLE15/for-next' into SLE15
   - Merge branch 'users/oneukum/SLE15/for-next' into SLE15
   - Merge branch 'users/oneukum/SLE15/for-next' into SLE15
   - Merge branch 'users/oneukum/SLE15/for-next' into SLE15
   - Merge branch 'users/oneukum/SLE15/for-next' into SLE15
   - Merge branch 'users/oneukum/SLE15/for-next' into SLE15
   - Merge branch 'users/oneukum/SLE15/for-next' into SLE15
   - Merge branch 'users/osalvador/SLE15/for-next' into SLE15
   - Merge branch 'users/ptesarik/SLE15/for-next' into SLE15
   - Merge branch 'users/pvorel/SLE15/for-next' into SLE15
   - Merge branch 'users/tbogendoerfer/SLE15/for-next' into SLE15
   - Merge branch 'users/tzimmermann/SLE15/for-next' into SLE15
   - Merge branch 'users/vbabka/SLE15/for-next' into SLE15
   - Merge branch 'users/vbabka/SLE15/for-next' into SLE15
   - Merge branch 'users/vbabka/SLE15/for-next' into SLE15
   - Merge remote-tracking branch 'origin/SLE15' into SLE12-SP4
   - Merge remote-tracking branch 'origin/SLE15' into SLE12-SP4
   - Merge remote-tracking branch 'origin/SLE15' into SLE12-SP4
   - Merge remote-tracking branch 'origin/SLE15' into SLE12-SP4
   - Merge remote-tracking branch 'origin/SLE15' into SLE12-SP4
   - Merge remote-tracking branch 'origin/SLE15' into SLE12-SP4
   - Merge remote-tracking branch 'origin/SLE15' into SLE12-SP4
   - Merge remote-tracking branch 'origin/SLE15' into SLE12-SP4
   - Merge remote-tracking branch 'origin/SLE15' into SLE12-SP4
   - Merge remote-tracking branch 'origin/SLE15' into SLE12-SP4
   - Merge remote-tracking branch 'origin/SLE15' into SLE12-SP4_EMBARGO
   - Merge remote-tracking branch 'origin/SLE15' into SLE12-SP4_EMBARGO
   - Merge remote-tracking branch 'origin/users/fyang/SLE12-SP4/for-next'
     into SLE12-SP4
   - Merge remote-tracking branch 'origin/users/ghe/SLE12-SP4/for-next' into
     SLE12-SP4
   - Merge remote-tracking branch 'origin/users/mfleming/SLE12-SP4/for-next'
     into SLE12-SP4
   - Merge remote-tracking branch 'origin/users/mhocko/SLE12-SP4/for-next'
     into SLE12-SP4
   - Merge remote-tracking branch 'origin/users/msuchanek/SLE12-SP4/for-next'
     into SLE12-SP4
   - mfd: da9063: Fix OTP control register names to match datasheets for
     DA9063/63L (bsc#1051510).
   - mfd: hi655x: Fix regmap area declared size for hi655x (bsc#1051510).
   - mfd: intel-lpss: Release IDA resources (bsc#1051510).
   - mfd: intel-lpss: Set the device in reset state when init (bsc#1051510).
   - mfd: max77620: Fix swapped FPS_PERIOD_MAX_US values (bsc#1051510).
   - mfd: tps65912-spi: Add missing of table registration (bsc#1051510).
   - mfd: twl6040: Fix device init errors for ACCCTL register (bsc#1051510).
   - mISDN: make sure device name is NUL terminated (bsc#1051510).
   - mmc: core: make pwrseq_emmc (partially) support sleepy GPIO controllers
     (bsc#1051510).
   - mmc: core: Prevent processing SDIO IRQs when the card is suspended
     (bsc#1051510).
   - mmc: core: Verify SD bus width (bsc#1051510).
   - mmc: mmci: Prevent polling for busy detection in IRQ context
     (bsc#1051510).
   - mmc: sdhci-iproc: cygnus: Set NO_HISPD bit to fix HS50 data hold time
     problem (bsc#1051510).
   - mmc: sdhci-iproc: Set NO_HISPD bit to fix HS50 data hold time problem
     (bsc#1051510).
   - mmc: sdhci-of-esdhc: add erratum A-009204 support (bsc#1051510).
   - mmc: sdhci-of-esdhc: add erratum eSDHC5 support (bsc#1051510).
   - mmc: sdhci-of-esdhc: add erratum eSDHC-A001 and A-008358 support
     (bsc#1051510).
   - mmc: sdhci-pci: Try "cd" for card-detect lookup before using NULL
     (bsc#1051510).
   - mmc_spi: add a status check for spi_sync_locked (bsc#1051510).
   - mm: migrate: Fix reference check race between __find_get_block() and
     migration (bnc#1137609).
   - mm/nvdimm: add is_ioremap_addr and use that to check ioremap address
     (bsc#1140322 LTC#176270).
   - mm, page_alloc: fix has_unmovable_pages for HugePages   (bsc#1127034).
   - mm: pagechage-limit: Calculate pagecache-limit based on node state
     (bsc#1136811)
   - mm: replace all open encodings for NUMA_NO_NODE (bsc#1140322 LTC#176270).
   - mm: thp: relax __GFP_THISNODE for MADV_HUGEPAGE mappings (bnc#1012382).
   - mm/vmscan.c: prevent useless kswapd loops (git fixes (mm/vmscan)).
   - module: Fix livepatch/ftrace module text permissions race (bsc#1071995
     fate#323487).
   - mount: copy the port field into the cloned nfs_server structure
     (bsc#1136990).
   - Move patch to correct directory.
   - Move stuff git_sort chokes on, out of the way
   - Move upstreamed ASoC patches into sorted section
   - mwifiex: Abort at too short BSS descriptor element (bsc#1136424
     CVE-2019-3846).
   - mwifiex: Don't abort on small, spec-compliant vendor IEs
     (CVE-2019-3846,bsc#1136424).
   - mwifiex: fix 802.11n/WPA detection (CVE-2019-3846,bsc#1136424).
   - mwifiex: Fix heap overflow in mwifiex_uap_parse_tail_ies() (bsc#1136935).
   - mwifiex: Fix possible buffer overflows at parsing bss descriptor
   - neighbor: Call __ipv4_neigh_lookup_noref in neigh_xmit (git-fixes).
   - neigh: fix use-after-free read in pneigh_get_next
     (networking-stable-19_06_18).
   - net/af_iucv: remove GFP_DMA restriction for HiperTransport (bsc#1142112
     bsc#1142221 LTC#179334 LTC#179332).
   - net: avoid weird emergency message (networking-stable-19_05_21).
   - net: fec: fix the clk mismatch in failed_reset path
     (networking-stable-19_05_31).
   - netfilter: conntrack: fix calculation of next bucket number in
     early_drop (git-fixes).
   - net-gro: fix use-after-free read in napi_gro_frags()
     (networking-stable-19_05_31).
   - net/ibmvnic: Remove tests of member address (bsc#1137739).
   - net/mlx4_core: Change the error print to info print
     (networking-stable-19_05_21).
   - net/mlx4_en: ethtool, Remove unsupported SFP EEPROM high pages query
     (networking-stable-19_06_09).
   - net/mlx5: Allocate root ns memory using kzalloc to match kfree
     (networking-stable-19_05_31).
   - net/mlx5: Avoid double free in fs init error unwinding path
     (networking-stable-19_05_31).
   - net: mvneta: Fix err code path of probe (networking-stable-19_05_31).
   - net: mvpp2: fix bad MVPP2_TXQ_SCHED_TOKEN_CNTR_REG queue value
     (networking-stable-19_05_31).
   - net: mvpp2: prs: Fix parser range for VID filtering (bsc#1098633).
   - net: mvpp2: prs: Use the correct helpers when removing all VID filters
     (bsc#1098633).
   - net: mvpp2: Use strscpy to handle stat strings (bsc#1098633).
   - netns: get more entropy from net_hash_mix() (CVE-2019-10638 bsc#1140575).
   - netns: provide pure entropy for net_hash_mix() (CVE-2019-10639
     bsc#1140577).
   - net: openvswitch: do not free vport if register_netdevice() is failed
     (networking-stable-19_06_18).
   - net/packet: fix memory leak in packet_set_ring() (git-fixes).
   - net: rds: fix memory leak in rds_ib_flush_mr_pool
     (networking-stable-19_06_09).
   - net: seeq: fix crash caused by not set dev.parent
     (networking-stable-19_05_14).
   - net: stmmac: fix reset gpio free missing (networking-stable-19_05_31).
   - net: unbreak CONFIG_RETPOLINE=n builds (bsc#1124503).
   - net: usb: qmi_wwan: add Telit 0x1260 and 0x1261 compositions
     (networking-stable-19_05_21).
   - net: use indirect call wrappers at GRO network layer (bsc#1124503).
   - net: use indirect call wrappers at GRO transport layer (bsc#1124503).
   - nfit/ars: Allow root to busy-poll the ARS state machine   (bsc#1140814).
   - nfit/ars: Avoid stale ARS results (jsc#SLE-5433).
   - nfit/ars: Introduce scrub_flags (jsc#SLE-5433).
   - NFS add module option to limit NFSv4 minor version (jsc#PM-231).
   - ntp: Allow TAI-UTC offset to be set to zero (bsc#1135642).
   - nvme: copy MTFA field from identify controller (bsc#1140715).
   - nvme: fix memory leak caused by incorrect subsystem free (bsc#1143185).
   - nvmem: allow to select i.MX nvmem driver for i.MX 7D (bsc#1051510).
   - nvmem: core: fix read buffer in place (bsc#1051510).
   - nvmem: correct Broadcom OTP controller driver writes (bsc#1051510).
   - nvmem: Don't let a NULL cell_id for nvmem_cell_get() crash us
     (bsc#1051510).
   - nvmem: imx-ocotp: Add i.MX7D timing write clock setup support
     (bsc#1051510).
   - nvmem: imx-ocotp: Add support for banked OTP addressing (bsc#1051510).
   - nvmem: imx-ocotp: Enable i.MX7D OTP write support (bsc#1051510).
   - nvmem: imx-ocotp: Move i.MX6 write clock setup to dedicated function
     (bsc#1051510).
   - nvmem: imx-ocotp: Pass parameters via a struct (bsc#1051510).
   - nvmem: imx-ocotp: Restrict OTP write to IMX6 processors (bsc#1051510).
   - nvmem: imx-ocotp: Update module description (bsc#1051510).
   - nvmem: properly handle returned value nvmem_reg_read (bsc#1051510).
   - nvme-rdma: fix double freeing of async event data (bsc#1120423).
   - nvme-rdma: fix possible double free of controller async event buffer
     (bsc#1120423).
   - nvme-rdma: fix possible free of a non-allocated async event buffer
     (bsc#1120423).
   - nvme: skip nvme_update_disk_info() if the controller is not live
     (bsc#1128432).
   - ocfs2: add first lock wait time in locking_state (bsc#1134390).
   - ocfs2: add last unlock times in locking_state (bsc#1134390).
   - ocfs2: add locking filter debugfs file (bsc#1134390).
   - ocfs2: try to reuse extent block in dealloc without meta_alloc
     (bsc#1128902).
   - ocfs2: turn on OCFS2_FS_STATS setting(bsc#1134393)
   - of: fix clang -Wunsequenced for be32_to_cpu() (bsc#1135642).
   - packet: Fix error path in packet_init (networking-stable-19_05_14).
   - packet: in recvmsg msg_name return at least sizeof sockaddr_ll
     (git-fixes).
   - parport: Fix mem leak in parport_register_dev_model (bsc#1051510).
   - patches.fixes/mm-Fix-modifying-of-page-protection-by-insert_pfn.patch:
     Fix buggy backport leading to MAP_SYNC failures (bsc#1137372)
   -
   patches.fixes/scsi-vmw_pscsi-Fix-use-after-free-in-pvscsi_queue_lc.patch: U
     pdate patch metadata
   - patches.suse/Btrfs-kill-btrfs_clear_path_blocking.patch: (bsc#1140139).
   - PCI: Always allow probing with driver_override (bsc#1051510).
   - PCI: Do not poll for PME if the device is in D3cold (bsc#1051510).
   - PCI: hv: Add hv_pci_remove_slots() when we unload the driver
     (bsc#1142701).
   - PCI: hv: Add pci_destroy_slot() in pci_devices_present_work(), if
     necessary (bsc#1142701).
   - PCI: hv: Fix a memory leak in hv_eject_device_work() (bsc#1142701).
   - PCI: hv: Fix a use-after-free bug in hv_eject_device_work()
     (bsc#1142701).
   - PCI: hv: Fix return value check in hv_pci_assign_slots() (bsc#1142701).
   - PCI: hv: Remove unused reason for refcount handler (bsc#1142701).
   - PCI: hv: support reporting serial number as slot information
     (bsc#1142701).
   - PCI: PM: Avoid possible suspend-to-idle issue (bsc#1051510).
   - PCI: PM: Skip devices in D0 for suspend-to-idle (bsc#1051510).
   - PCI: Return error if cannot probe VF (bsc#1051510).
   - PCI: rpadlpar: Fix leaked device_node references in add/remove paths
     (bsc#1051510).
   - perf tools: Add Hygon Dhyana support (fate#327735).
   - perf/x86/intel/cstate: Support multi-die/package (jsc#SLE-5454).
   - perf/x86/intel/rapl: Cosmetic rename internal variables in response to
     multi-die/pkg support (jsc#SLE-5454).
   - perf/x86/intel/rapl: Support multi-die/package (jsc#SLE-5454).
   - perf/x86/intel/uncore: Cosmetic renames in response to multi-die/pkg
     support (jsc#SLE-5454).
   - perf/x86/intel/uncore: Support multi-die/package (jsc#SLE-5454).
   - pkey: Indicate old mkvp only if old and current mkvp are different
     (bsc#1137827 LTC#178090).
   - pktgen: do not sleep with the thread lock held (git-fixes).
   - platform/chrome: cros_ec_proto: check for NULL transfer function
     (bsc#1051510).
   - platform/x86: asus-nb-wmi: Support ALS on the Zenbook UX430UQ
     (bsc#1051510).
   - platform/x86: asus-wmi: Only Tell EC the OS will handle display hotkeys
     from asus_nb_wmi (bsc#1051510).
   - platform/x86: intel_turbo_max_3: Remove restriction for HWP platforms
     (jsc#SLE-5439).
   - platform/x86: mlx-platform: Fix parent device in i2c-mux-reg device
     registration (bsc#1051510).
   - platform/x86: pmc_atom: Add CB4063 Beckhoff Automation board to
     critclk_systems DMI table (bsc#1051510).
   - PM / core: Propagate dev->power.wakeup_path when no callbacks
     (bsc#1051510).
   - powercap/intel_rapl: Simplify rapl_find_package() (jsc#SLE-5454).
   - powercap/intel_rapl: Support multi-die/package (jsc#SLE-5454).
   - powercap/intel_rapl: Update RAPL domain name and debug messages
     (jsc#SLE-5454).
   - powerpc/64s: Remove POWER9 DD1 support (bsc#1055117, LTC#159753,
     FATE#323286, git-fixes).
   - powerpc: Always initialize input array when calling epapr_hypercall()
     (bsc#1065729).
   - powerpc/cacheinfo: add cacheinfo_teardown, cacheinfo_rebuild
     (bsc#1138374, LTC#178199).
   - powerpc/crypto: Use cheaper random numbers for crc-vpmsum self-test
     (FATE#327696).
   - powerpc/eeh: Fix race with driver un/bind (bsc#1065729).
   - powerpc: Fix HMIs on big-endian with CONFIG_RELOCATABLE=y (bsc#1065729).
   - powerpc/mm: Change function prototype (bsc#1055117).
   - powerpc/mm: Consolidate numa_enable check and min_common_depth check
     (bsc#1140322 LTC#176270).
   - powerpc/mm/drconf: Use NUMA_NO_NODE on failures instead of node 0
     (bsc#1140322 LTC#176270).
   - powerpc/mm: Fix node look up with numa=off boot (bsc#1140322 LTC#176270).
   - powerpc/mm/hugetlb: Update huge_ptep_set_access_flags to call
     __ptep_set_access_flags directly (bsc#1055117).
   - powerpc/mm/radix: Change pte relax sequence to handle nest MMU hang
     (bsc#1055117).
   - powerpc/mm/radix: Move function from radix.h to pgtable-radix.c
     (bsc#1055117).
   - powerpc/msi: Fix NULL pointer access in teardown code (bsc#1065729).
   - powerpc/perf: Add PM_LD_MISS_L1 and PM_BR_2PATH to power9 event list
     (bsc#1137728, LTC#178106).
   - powerpc/perf: Add POWER9 alternate PM_RUN_CYC and PM_RUN_INST_CMPL
     events (bsc#1137728, LTC#178106).
   - powerpc/perf: Fix MMCRA corruption by bhrb_filter (bsc#1053043).
   - powerpc/powernv/idle: Restore IAMR after idle (bsc#1065729).
   - powerpc/process: Fix sparse address space warnings (bsc#1065729).
   - powerpc/pseries/dlpar: Fix a missing check in dlpar_parse_cc_property()
     (bsc#1137194, CVE-2019-12614).
   - powerpc/pseries: Fix oops in hotplug memory notifier (bsc#1138375,
     LTC#178204).
   - powerpc/pseries/mobility: prevent cpu hotplug during DT update
     (bsc#1138374, LTC#178199).
   - powerpc/pseries/mobility: rebuild cacheinfo hierarchy post-migration
     (bsc#1138374, LTC#178199).
   - powerpc/rtas: retry when cpu offline races with suspend/migration
     (bsc#1140428, LTC#178808).
   - powerpc/tm: Fix oops on sigreturn on systems without TM (bsc#1142265
     CVE-2019-13648).
   - powerpc/watchpoint: Restore NV GPRs while returning from exception
     (bsc#1140945 bsc#1141401 bsc#1141402 bsc#1141452 bsc#1141453 bsc#1141454
     LTC#178983 LTC#179191 LTC#179192 LTC#179193 LTC#179194 LTC#179195).
   - power: supply: max14656: fix potential use-before-alloc (bsc#1051510).
   - power: supply: sysfs: prevent endless uevent loop with
     CONFIG_POWER_SUPPLY_DEBUG (bsc#1051510).
   - ppp: deflate: Fix possible crash in deflate_init
     (networking-stable-19_05_21).
   - ppp: mppe: Add softdep to arc4 (bsc#1088047).
   - ptrace: Fix ->ptracer_cred handling for PTRACE_TRACEME (git-fixes).
   - ptrace: restore smp_rmb() in __ptrace_may_access() (git-fixes).
   - pwm: stm32: Use 3 cells ->of_xlate() (bsc#1111666).
   - qlcnic: Avoid potential NULL pointer dereference (bsc#1051510).
   - qmi_wwan: add network device usage statistics for qmimux devices
     (bsc#1051510).
   - qmi_wwan: Add quirk for Quectel dynamic config (bsc#1051510).
   - qmi_wwan: add support for QMAP padding in the RX path (bsc#1051510).
   - qmi_wwan: avoid RCU stalls on device disconnect when in QMAP mode
     (bsc#1051510).
   - qmi_wwan: extend permitted QMAP mux_id value range (bsc#1051510).
   - qmi_wwan: Fix out-of-bounds read (bsc#1111666).
   - rapidio: fix a NULL pointer dereference when create_workqueue() fails
     (bsc#1051510).
   - ras/CEC: Convert the timer callback to a workqueue (bsc#1114279).
   - ras/CEC: Fix binary search function (bsc#1114279).
   - rds: IB: fix 'passing zero to ERR_PTR()' warning (git-fixes).
   - regulator: s2mps11: Fix buck7 and buck8 wrong voltages (bsc#1051510).
   - Replace the bluetooth fix with the upstream commit (bsc#1135556)
   - Revert "alsa: hda/realtek - Improve the headset mic for Acer Aspire
     laptops" (bsc#1051510).
   - Revert "bcache: set CACHE_SET_IO_DISABLE in bch_cached_dev_error()"
     (bsc#1140652).
   - Revert "Drop multiversion(kernel) from the KMP template (fate#323189)"
     (bsc#1109137).
   - Revert "e1000e: fix cyclic resets at link up with active tx"
     (bsc#1051510).
   - Revert "HID: wacom: generic: Send BTN_TOOL_PEN in prox once the pen
     enters range" (bsc#1051510).
   - Revert "KMPs: obsolete older KMPs of the same flavour (bsc#1127155,
     bsc#1109137)."
   - Revert "KMPs: provide and conflict a kernel version specific KMP name"
   - Revert "livepatch: Remove reliable stacktrace check in
     klp_try_switch_task()" (bsc#1071995 fate#323487).
   - Revert "Revert "Drop multiversion(kernel) from the KMP template
     (fate#323189)""
   - Revert "Revert "KMPs: obsolete older KMPs of the same flavour
     (bsc#1127155, bsc#1109137).""
   - Revert "Revert "KMPs: provide and conflict a kernel version specific KMP
     name""
   - Revert "Revert "Revert "Drop multiversion(kernel) from the KMP template
     (fate#323189)"""
   - Revert "s390/jump_label: Use "jdd" constraint on gcc9 (bsc#1138589)."
   - Revert "serial: 8250: Don't service RX FIFO if interrupts are disabled"
     (bsc#1051510).
   - Revert "Sign non-x86 kernels when possible (boo#1134303)"
   - Revert "svm: Fix AVIC incomplete IPI emulation" (bsc#1140133).
   - rpm/kernel-binary.spec.in: Add back kernel-binary-base subpackage
     (jsc#SLE-3853).
   - rpm/kernel-binary.spec.in: Build livepatch support in SUSE release
     projects (bsc#1124167).
   - rpm/kernel-binary.spec.in: Update drm-kmp obsolete for
     SLE12-SP3/Leap-42.3
   - rpm/post.sh: correct typo in err msg (bsc#1137625)
   - rtc: 88pm860x: prevent use-after-free on device remove (bsc#1051510).
   - rtc: don't reference bogus function pointer in kdoc (bsc#1051510).
   - rtlwifi: fix a potential NULL pointer dereference (bsc#1051510).
   - rtnetlink: always put IFLA_LINK for links with a link-netnsid
     (networking-stable-19_05_21).
   - s390/dasd: fix using offset into zero size array error (bsc#1051510).
   - s390/jump_label: Use "jdd" constraint on gcc9 (bsc#1138589).
   - s390/jump_label: Use "jdd" constraint on gcc9 (bsc#1138589).
   - s390/qeth: be drop monitor friendly (bsc#1142220 LTC#179335).
   - s390/qeth: fix race when initializing the IP address table (bsc#1051510).
   - s390/qeth: fix VLAN attribute in bridge_hostnotify udev event
     (bsc#1051510).
   - s390/setup: fix early warning messages (bsc#1051510).
   - s390/virtio: handle find on invalid queue gracefully (bsc#1051510).
   - s390/vtime: steal time exponential moving average (bsc#1119222).
   - s390/zcrypt: Fix wrong dispatching for control domain CPRBs (bsc#1137811
     LTC#178088).
   - sbitmap: fix improper use of smp_mb__before_atomic() (bsc#1140658).
   - sched/topology: Improve load balancing on AMD EPYC (bsc#1137366).
   - scripts/tar-up.sh: do not make assumptions about the remote name
     (bsc#1141488)
   - scsi: core: add new RDAC LENOVO/DE_Series device (bsc#1132390).
   - scsi: ibmvfc: fix WARN_ON during event pool release (bsc#1137458
     LTC#178093).
   - scsi: libsas: fix a race condition when smp task timeout (CVE-2018-20836
     bsc#1134395).
   - scsi: megaraid_sas: return error when create DMA pool failed
     (CVE-2019-11810 bsc#1134399).
   - scsi: mpt3sas_ctl: fix double-fetch bug in _ctl_ioctl_main()
     (bsc#1136922 CVE-2019-12456).
   - scsi: qla2xxx: Declare local functions 'static' (bsc#1137444).
   - scsi: qla2xxx: Fix abort handling in tcm_qla2xxx_write_pending()
     (bsc#1140727).
   - scsi: qla2xxx: fix error message on <qla2400 (bsc#1118139).
   - scsi: qla2xxx: Fix FC-AL connection target discovery (bsc#1094555).
   - scsi: qla2xxx: Fix function argument descriptions (bsc#1118139).
   - scsi: qla2xxx: Fix incorrect region-size setting in optrom SYSFS
     routines (bsc#1140728).
   - scsi: qla2xxx: Fix memory corruption during hba reset test (bsc#1118139).
   - scsi: qla2xxx: Fix N2N target discovery with Local loop (bsc#1094555).
   - scsi: qla2xxx: fix spelling mistake: "existant" -> "existent"
     (bsc#1118139).
   - scsi: qla2xxx: fully convert to the generic DMA API (bsc#1137444).
   - scsi: qla2xxx: fx00 copypaste typo (bsc#1118139).
   - scsi: qla2xxx: Improve several kernel-doc headers (bsc#1137444).
   - scsi: qla2xxx: Introduce a switch/case statement in qlt_xmit_tm_rsp()
     (bsc#1137444).
   - scsi: qla2xxx: Make qla2x00_sysfs_write_nvram() easier to analyze
     (bsc#1137444).
   - scsi: qla2xxx: Make sure that qlafx00_ioctl_iosb_entry() initializes
     'res' (bsc#1137444).
   - scsi: qla2xxx: NULL check before some freeing functions is not needed
     (bsc#1137444).
   - scsi: qla2xxx: Remove a set-but-not-used variable (bsc#1137444).
   - scsi: qla2xxx: remove the unused tcm_qla2xxx_cmd_wq (bsc#1118139).
   - scsi: qla2xxx: Remove two arguments from qlafx00_error_entry()
     (bsc#1137444).
   - scsi: qla2xxx: Remove unused symbols (bsc#1118139).
   - scsi: qla2xxx: Split the __qla2x00_abort_all_cmds() function
     (bsc#1137444).
   - scsi: qla2xxx: use lower_32_bits and upper_32_bits instead of
     reinventing them (bsc#1137444).
   - scsi: qla2xxx: Use %p for printing pointers (bsc#1118139).
   - scsi: target/iblock: Fix overrun in WRITE SAME emulation (bsc#1140424).
   - scsi: vmw_pscsi: Fix use-after-free in pvscsi_queue_lck() (bsc#1135296).
   - scsi: zfcp: fix missing zfcp_port reference put on -EBUSY from
     port_remove (bsc#1051510).
   - scsi: zfcp: fix rport unblock if deleted SCSI devices on Scsi_Host
     (bsc#1051510).
   - scsi: zfcp: fix scsi_eh host reset with port_forced ERP for non-NPIV FCP
     devices (bsc#1051510).
   - scsi: zfcp: fix to prevent port_remove with pure auto scan LUNs (only
     sdevs) (bsc#1051510).
   - sctp: Free cookie before we memdup a new one
     (networking-stable-19_06_18).
   - sctp: silence warns on sctp_stream_init allocations (bsc#1083710).
   - serial: sh-sci: disable DMA for uart_console (bsc#1051510).
   - serial: uartps: Do not add a trailing semicolon to macro (bsc#1051510).
   - serial: uartps: Fix long line over 80 chars (bsc#1051510).
   - serial: uartps: Fix multiple line dereference (bsc#1051510).
   - serial: uartps: Remove useless return from cdns_uart_poll_put_char
     (bsc#1051510).
   - signal/ptrace: Don't leak unitialized kernel memory with
     PTRACE_PEEK_SIGINFO (git-fixes).
   - Sign non-x86 kernels when possible (boo#1134303)
   - SMB3: Fix endian warning (bsc#1137884).
   - soc: mediatek: pwrap: Zero initialize rdata in pwrap_init_cipher
     (bsc#1051510).
   - soc: rockchip: Set the proper PWM for rk3288 (bsc#1051510).
   - spi: bitbang: Fix NULL pointer dereference in spi_unregister_master
     (bsc#1051510).
   - spi: Fix zero length xfer bug (bsc#1051510).
   - spi: pxa2xx: Add support for Intel Comet Lake (jsc#SLE-5331).
   - spi: pxa2xx: fix SCR (divisor) calculation (bsc#1051510).
   - spi: spi-fsl-spi: call spi_finalize_current_message() at the end
     (bsc#1051510).
   - spi : spi-topcliff-pch: Fix to handle empty DMA buffers (bsc#1051510).
   - spi: tegra114: reset controller on probe (bsc#1051510).
   - staging: comedi: amplc_pci230: fix null pointer deref on interrupt
     (bsc#1051510).
   - staging: comedi: dt282x: fix a null pointer deref on interrupt
     (bsc#1051510).
   - staging: comedi: ni_mio_common: Fix divide-by-zero for DIO cmdtest
     (bsc#1051510).
   - staging:iio:ad7150: fix threshold mode config bit (bsc#1051510).
   - staging: rtl8712: reduce stack usage, again (bsc#1051510).
   - Staging: vc04_services: Fix a couple error codes (bsc#1051510).
   - staging: vc04_services: prevent integer overflow in create_pagelist()
     (bsc#1051510).
   - staging: wlan-ng: fix adapter initialization failure (bsc#1051510).
   - sunhv: Fix device naming inconsistency between sunhv_console and
     sunhv_reg (networking-stable-19_06_18).
   - svm: Add warning message for AVIC IPI invalid target (bsc#1140133).
   - svm: Fix AVIC incomplete IPI emulation (bsc#1140133).
   - sysctl: handle overflow in proc_get_long (bsc#1051510).
   - tcp: add tcp_min_snd_mss sysctl (bsc#1137586).
   - tcp: be more careful in tcp_fragment() (CVE-2019-11478   bsc#1137586
     bsc#1139751).
   - tcp: enforce tcp_min_snd_mss in tcp_mtu_probing() (bsc#1137586).
   - tcp: fix fack_count accounting on tcp_shift_skb_data() (CVE-2019-11477
     bsc#1137586).
   - tcp: limit payload size of sacked skbs (bsc#1137586).
   - tcp: reduce tcp_fastretrans_alert() verbosity (git-fixes).
   - tcp: refine memory limit test in tcp_fragment() (CVE-2019-11478
     bsc#1137586 bsc#1139751).
   - tcp: tcp_fragment() should apply sane memory limits (bsc#1137586).
   - team: Always enable vlan tx offload (bsc#1051510).
   - test_firmware: Use correct snprintf() limit (bsc#1135642).
   - thermal: rcar_gen3_thermal: disable interrupt in .remove (bsc#1051510).
   - thermal/x86_pkg_temp_thermal: Cosmetic: Rename internal variables to
     zones from packages (jsc#SLE-5454).
   - thermal/x86_pkg_temp_thermal: Support multi-die/package (jsc#SLE-5454).
   - thunderbolt: Fix to check for kmemdup failure (bsc#1051510).
   - tipc: fix hanging clients using poll with EPOLLOUT flag (git-fixes).
   - tmpfs: fix link accounting when a tmpfile is linked in (bsc#1051510).
   - tmpfs: fix uninitialized return value in shmem_link (bsc#1051510).
   - tools/cpupower: Add Hygon Dhyana support (fate#327735).
   - topology: Create core_cpus and die_cpus sysfs attributes (jsc#SLE-5454).
   - topology: Create package_cpus sysfs attribute (jsc#SLE-5454).
   - tracing/snapshot: Resize spare buffer if size changed (bsc#1140726).
   - treewide: Use DEVICE_ATTR_WO (bsc#1137739).
   - Trim build dependencies of sample subpackage spec file (FATE#326579,
     jsc#SLE-4117, jsc#SLE-3853, bsc#1128910).
   - tty: ipwireless: fix missing checks for ioremap (bsc#1051510).
   - tty: max310x: Fix external crystal register setup (bsc#1051510).
   - tty: rocket: fix incorrect forward declaration of 'rp_init()'
     (bsc#1051510).
   - tty: serial_core: Set port active bit in uart_port_activate
     (bsc#1051510).
   - tty: serial: cpm_uart - fix init when SMC is relocated (bsc#1051510).
   - tty: serial: msm_serial: Fix XON/XOFF (bsc#1051510).
   - tty/vt: fix write/write race in ioctl(KDSKBSENT) handler (bsc#1051510).
   - tuntap: synchronize through tfiles array instead of tun->numqueues
     (networking-stable-19_05_14).
   - udp: use indirect call wrappers for GRO socket lookup (bsc#1124503).
   - Update config files for NFSv4.2
   - Update
   patches.fixes/0001-mwifiex-Fix-heap-overflow-in-mwifiex_uap_parse_tail_.pat
     ch (bsc#1136935 CVE-2019-10126). Added CVE number
   - Update
     patches.fixes/nfsd-COPY-and-CLONE-operations-require-the-saved-fil.patch
     (git-fixes, bsc#1137103, CVE-2018-16871).
   - Update patches.suse/do-not-default-to-ibrs-on-skl.patch (bsc#1068032
     CVE-2017-5753 bsc#1112824 jsc#SLE-7074).
   - Update patch referecens for two sercurity fixes (CVE-2019-12819,
     bsc#1138291, CVE-2019-12818, bsc#1138293).
   - Update References field to
     patches.suse/0275-bcache-never-writeback-a-discard-operation.patch
     (bsc#1130972, bsc#1102247).
   - Update "SACK Panic" patches to reflect upstream state.
   - Update upstream patch tags
   - USB: Add LPM quirk for Surface Dock GigE adapter (bsc#1051510).
   - usb: chipidea: udc: workaround for endpoint conflict issue (bsc#1135642).
   - usb: core: Add PM runtime calls to usb_hcd_platform_shutdown
     (bsc#1051510).
   - USB: core: Don't unbind interfaces following device reset failure
     (bsc#1051510).
   - usb: dwc2: Fix DMA cache alignment issues (bsc#1051510).
   - usb: dwc2: host: Fix wMaxPacketSize handling (fix webcam regression)
     (bsc#1135642).
   - USB: Fix chipmunk-like voice when using Logitech C270 for recording
     audio (bsc#1051510).
   - USB: Fix slab-out-of-bounds write in usb_get_bos_descriptor
     (bsc#1051510).
   - usb: gadget: ether: Fix race between gether_disconnect and rx_submit
     (bsc#1051510).
   - usb: gadget: fusb300_udc: Fix memory leak of fusb300->ep[i]
     (bsc#1051510).
   - usb: gadget: udc: lpc32xx: allocate descriptor with GFP_ATOMIC
     (bsc#1051510).
   - usbip: usbip_host: fix BUG: sleeping function called from invalid
     context (bsc#1051510).
   - usbip: usbip_host: fix stub_dev lock context imbalance regression
     (bsc#1051510).
   - usbnet: fix kernel crash after disconnect (bsc#1051510).
   - usbnet: ipheth: fix racing condition (bsc#1051510).
   - usb: pci-quirks: Correct AMD PLL quirk detection (bsc#1051510).
   - USB: rio500: fix memory leak in close after disconnect (bsc#1051510).
   - USB: rio500: refuse more than one device at a time (bsc#1051510).
   - USB: serial: fix initial-termios handling (bsc#1135642).
   - USB: serial: ftdi_sio: add ID for isodebug v1 (bsc#1051510).
   - USB: serial: option: add support for GosunCn ME3630 RNDIS mode
     (bsc#1051510).
   - USB: serial: option: add support for Simcom SIM7500/SIM7600 RNDIS mode
     (bsc#1051510).
   - USB: serial: option: add Telit 0x1260 and 0x1261 compositions
     (bsc#1051510).
   - USB: serial: pl2303: add Allied Telesis VT-Kit3 (bsc#1051510).
   - USB: serial: pl2303: fix tranceiver suspend mode (bsc#1135642).
   - USB: sisusbvga: fix oops in error path of sisusb_probe (bsc#1051510).
   - USB: usb-storage: Add new ID to ums-realtek (bsc#1051510).
   - usb: xhci: avoid null pointer deref when bos field is NULL (bsc#1135642).
   - vfio: ccw: only free cp on final interrupt (bsc#1051510).
   - video: hgafb: fix potential NULL pointer dereference (bsc#1051510).
   - video: imsttfb: fix potential NULL pointer dereferences (bsc#1051510).
   - virtio_console: initialize vtermno value for ports (bsc#1051510).
   - vlan: disable SIOCSHWTSTAMP in container (bsc#1051510).
   - VMCI: Fix integer overflow in VMCI handle arrays (bsc#1051510).
   - vrf: sit mtu should not be updated when vrf netdev is the link
     (networking-stable-19_05_14).
   - vsock/virtio: free packets during the socket release
     (networking-stable-19_05_21).
   - vsock/virtio: set SOCK_DONE on peer shutdown
     (networking-stable-19_06_18).
   - vxlan: trivial indenting fix (bsc#1051510).
   - vxlan: use __be32 type for the param vni in __vxlan_fdb_delete
     (bsc#1051510).
   - w1: fix the resume command API (bsc#1051510).
   - watchdog: imx2_wdt: Fix set_timeout for big timeout values (bsc#1051510).
   - wil6210: fix potential out-of-bounds read (bsc#1051510).
   - x86/alternative: Init ideal_nops for Hygon Dhyana (fate#327735).
   - x86/amd_nb: Add support for Raven Ridge CPUs (FATE#327735).
   - x86/amd_nb: Check vendor in AMD-only functions (fate#327735).
   - x86/apic: Add Hygon Dhyana support (fate#327735).
   - x86/bugs: Add Hygon Dhyana to the respective mitigation   machinery
     (fate#327735).
   - x86/CPU/AMD: Don't force the CPB cap when running under a hypervisor
     (bsc#1114279).
   - x86/cpu: Create Hygon Dhyana architecture support file (fate#327735).
   - x86/cpufeatures: Carve out CQM features retrieval (jsc#SLE-5382).
   - x86/cpufeatures: Combine word 11 and 12 into a new scattered features
     word (jsc#SLE-5382).
   - x86/cpufeatures: Enumerate the new AVX512 BFLOAT16 instructions
     (jsc#SLE-5382).
   - x86/cpu: Get cache info and setup cache cpumap for Hygon Dhyana
     (fate#327735).
   - x86/CPU/hygon: Fix phys_proc_id calculation logic for multi-die
     processors (fate#327735).
   - x86/cpu/mtrr: Support TOP_MEM2 and get MTRR number (fate#327735).
   - x86/events: Add Hygon Dhyana support to PMU infrastructure (fate#327735).
   - x86/kvm: Add Hygon Dhyana support to KVM (fate#327735).
   - x86/mce: Add Hygon Dhyana support to the MCA infrastructure
     (fate#327735).
   - x86/mce: Don't disable MCA banks when offlining a CPU on AMD
     (fate#327735).
   - x86/mce: Fix machine_check_poll() tests for error types (bsc#1114279).
   - x86/microcode, cpuhotplug: Add a microcode loader CPU hotplug callback
     (bsc#1114279).
   - x86/microcode: Fix microcode hotplug state (bsc#1114279).
   - x86/microcode: Fix the ancient deprecated microcode loading method
     (bsc#1114279).
   - x86, mm: fix fast GUP with hyper-based TLB flushing (VM Functionality,
     bsc#1140903).
   - x86/mm/mem_encrypt: Disable all instrumentation for early SME setup
     (bsc#1114279).
   - x86/pci, x86/amd_nb: Add Hygon Dhyana support to PCI and northbridge
     (fate#327735).
   - x86/smpboot: Do not use BSP INIT delay and MWAIT to idle on Dhyana
     (fate#327735).
   - x86/smpboot: Rename match_die() to match_pkg() (jsc#SLE-5454).
   - x86/speculation/mds: Revert CPU buffer clear on double fault exit
     (bsc#1114279).
   - x86/speculation/swapgs: Exclude ATOMs from speculation through   SWAPGS
     (bsc#1139358, CVE-2019-1125).
   - x86/topology: Add CPUID.1F multi-die/package support   (jsc#SLE-5454).
   - x86/topology: Create topology_max_die_per_package() (jsc#SLE-5454).
   - x86/topology: Define topology_die_id() (jsc#SLE-5454).
   - x86/topology: Define topology_logical_die_id() (jsc#SLE-5454).
   - x86/xen: Add Hygon Dhyana support to Xen (fate#327735).
   - xen: let alloc_xenballooned_pages() fail if not enough memory free
     (bsc#1142450 XSA-300).
   - xen/pciback: Don't disable PCI_COMMAND on PCI device reset (bsc#1065600).
   - xfs: do not set the page uptodate in xfs_writepage_map (bsc#1138003).
   - xfs: don't clear imap_valid for a non-uptodate buffers (bsc#1138018).
   - xfs: don't look at buffer heads in xfs_add_to_ioend (bsc#1138013).
   - xfs: don't overflow xattr listent buffer (bsc#1143105).
   - xfs: don't use XFS_BMAPI_ENTRIRE in xfs_get_blocks (bsc#1137999).
   - xfs: don't use XFS_BMAPI_IGSTATE in xfs_map_blocks (bsc#1138005).
   - xfs: eof trim writeback mapping as soon as it is cached (bsc#1138019).
   - xfs: fix s_maxbytes overflow problems (bsc#1137996).
   - xfs: make xfs_writepage_map extent map centric (bsc#1138009).
   - xfs: minor cleanup for xfs_get_blocks (bsc#1138000).
   - xfs: move all writeback buffer_head manipulation into xfs_map_at_offset
     (bsc#1138014).
   - xfs: refactor the tail of xfs_writepage_map (bsc#1138016).
   - xfs: remove the imap_valid flag (bsc#1138012).
   - xfs: remove unused parameter from xfs_writepage_map (bsc#1137995).
   - xfs: remove XFS_IO_INVALID (bsc#1138017).
   - xfs: remove xfs_map_cow (bsc#1138007).
   - xfs: remove xfs_reflink_find_cow_mapping (bsc#1138010).
   - xfs: remove xfs_reflink_trim_irec_to_next_cow (bsc#1138006).
   - xfs: remove xfs_start_page_writeback (bsc#1138015).
   - xfs: rename the offset variable in xfs_writepage_map (bsc#1138008).
   - xfs: simplify xfs_map_blocks by using xfs_iext_lookup_extent directly
     (bsc#1138011).
   - xfs: skip CoW writes past EOF when writeback races with truncate
     (bsc#1137998).
   - xfs: xfs_reflink_convert_cow() memory allocation deadlock (bsc#1138002).
   - xhci: Convert xhci_handshake() to use readl_poll_timeout_atomic()
     (bsc#1051510).
   - xhci: update bounce buffer with correct sg num (bsc#1051510).
   - xhci: Use %zu for printing size_t type (bsc#1051510).


Special Instructions and Notes:

   Please reboot the system after installing this update.

Patch Instructions:

   To install this SUSE Security Update use the SUSE recommended installation methods
   like YaST online_update or "zypper patch".

   Alternatively you can run the command listed for your product:

   - SUSE Linux Enterprise Real Time Extension 12-SP4:

      zypper in -t patch SUSE-SLE-RT-12-SP4-2019-2450=1



Package List:

   - SUSE Linux Enterprise Real Time Extension 12-SP4 (noarch):

      kernel-devel-rt-4.12.14-8.3.1
      kernel-source-rt-4.12.14-8.3.1

   - SUSE Linux Enterprise Real Time Extension 12-SP4 (x86_64):

      cluster-md-kmp-rt-4.12.14-8.3.1
      dlm-kmp-rt-4.12.14-8.3.1
      gfs2-kmp-rt-4.12.14-8.3.1
      kernel-rt-4.12.14-8.3.1
      kernel-rt-base-4.12.14-8.3.1
      kernel-rt-devel-4.12.14-8.3.1
      kernel-rt_debug-devel-4.12.14-8.3.1
      kernel-syms-rt-4.12.14-8.3.1
      ocfs2-kmp-rt-4.12.14-8.3.1


References:

   https://www.suse.com/security/cve/CVE-2018-16871.html
   https://www.suse.com/security/cve/CVE-2018-20836.html
   https://www.suse.com/security/cve/CVE-2018-20855.html
   https://www.suse.com/security/cve/CVE-2019-10126.html
   https://www.suse.com/security/cve/CVE-2019-10638.html
   https://www.suse.com/security/cve/CVE-2019-10639.html
   https://www.suse.com/security/cve/CVE-2019-1125.html
   https://www.suse.com/security/cve/CVE-2019-11477.html
   https://www.suse.com/security/cve/CVE-2019-11478.html
   https://www.suse.com/security/cve/CVE-2019-11599.html
   https://www.suse.com/security/cve/CVE-2019-11810.html
   https://www.suse.com/security/cve/CVE-2019-12380.html
   https://www.suse.com/security/cve/CVE-2019-12456.html
   https://www.suse.com/security/cve/CVE-2019-12614.html
   https://www.suse.com/security/cve/CVE-2019-12818.html
   https://www.suse.com/security/cve/CVE-2019-12819.html
   https://www.suse.com/security/cve/CVE-2019-13631.html
   https://www.suse.com/security/cve/CVE-2019-13648.html
   https://www.suse.com/security/cve/CVE-2019-14283.html
   https://www.suse.com/security/cve/CVE-2019-14284.html
   https://www.suse.com/security/cve/CVE-2019-3846.html
   https://bugzilla.suse.com/1012382
   https://bugzilla.suse.com/1051510
   https://bugzilla.suse.com/1053043
   https://bugzilla.suse.com/1055117
   https://bugzilla.suse.com/1061840
   https://bugzilla.suse.com/1065600
   https://bugzilla.suse.com/1065729
   https://bugzilla.suse.com/1068032
   https://bugzilla.suse.com/1071995
   https://bugzilla.suse.com/1083647
   https://bugzilla.suse.com/1083710
   https://bugzilla.suse.com/1088047
   https://bugzilla.suse.com/1094555
   https://bugzilla.suse.com/1098633
   https://bugzilla.suse.com/1102247
   https://bugzilla.suse.com/1106383
   https://bugzilla.suse.com/1106751
   https://bugzilla.suse.com/1109137
   https://bugzilla.suse.com/1111666
   https://bugzilla.suse.com/11123080
   https://bugzilla.suse.com/1112824
   https://bugzilla.suse.com/1113722
   https://bugzilla.suse.com/1114279
   https://bugzilla.suse.com/1115688
   https://bugzilla.suse.com/1117158
   https://bugzilla.suse.com/1118139
   https://bugzilla.suse.com/1119222
   https://bugzilla.suse.com/1120423
   https://bugzilla.suse.com/1120566
   https://bugzilla.suse.com/1124167
   https://bugzilla.suse.com/1124503
   https://bugzilla.suse.com/1127034
   https://bugzilla.suse.com/1127155
   https://bugzilla.suse.com/1127315
   https://bugzilla.suse.com/1128432
   https://bugzilla.suse.com/1128902
   https://bugzilla.suse.com/1128910
   https://bugzilla.suse.com/1129770
   https://bugzilla.suse.com/1130972
   https://bugzilla.suse.com/1132154
   https://bugzilla.suse.com/1132390
   https://bugzilla.suse.com/1133021
   https://bugzilla.suse.com/1133401
   https://bugzilla.suse.com/1133738
   https://bugzilla.suse.com/1134097
   https://bugzilla.suse.com/1134303
   https://bugzilla.suse.com/1134390
   https://bugzilla.suse.com/1134393
   https://bugzilla.suse.com/1134395
   https://bugzilla.suse.com/1134399
   https://bugzilla.suse.com/1134671
   https://bugzilla.suse.com/1135296
   https://bugzilla.suse.com/1135335
   https://bugzilla.suse.com/1135556
   https://bugzilla.suse.com/1135642
   https://bugzilla.suse.com/1135661
   https://bugzilla.suse.com/1136157
   https://bugzilla.suse.com/1136424
   https://bugzilla.suse.com/1136598
   https://bugzilla.suse.com/1136811
   https://bugzilla.suse.com/1136896
   https://bugzilla.suse.com/1136922
   https://bugzilla.suse.com/1136935
   https://bugzilla.suse.com/1136990
   https://bugzilla.suse.com/1137103
   https://bugzilla.suse.com/1137162
   https://bugzilla.suse.com/1137194
   https://bugzilla.suse.com/1137366
   https://bugzilla.suse.com/1137372
   https://bugzilla.suse.com/1137429
   https://bugzilla.suse.com/1137444
   https://bugzilla.suse.com/1137458
   https://bugzilla.suse.com/1137534
   https://bugzilla.suse.com/1137535
   https://bugzilla.suse.com/1137584
   https://bugzilla.suse.com/1137586
   https://bugzilla.suse.com/1137609
   https://bugzilla.suse.com/1137625
   https://bugzilla.suse.com/1137728
   https://bugzilla.suse.com/1137739
   https://bugzilla.suse.com/1137752
   https://bugzilla.suse.com/1137811
   https://bugzilla.suse.com/1137827
   https://bugzilla.suse.com/1137884
   https://bugzilla.suse.com/1137995
   https://bugzilla.suse.com/1137996
   https://bugzilla.suse.com/1137998
   https://bugzilla.suse.com/1137999
   https://bugzilla.suse.com/1138000
   https://bugzilla.suse.com/1138002
   https://bugzilla.suse.com/1138003
   https://bugzilla.suse.com/1138005
   https://bugzilla.suse.com/1138006
   https://bugzilla.suse.com/1138007
   https://bugzilla.suse.com/1138008
   https://bugzilla.suse.com/1138009
   https://bugzilla.suse.com/1138010
   https://bugzilla.suse.com/1138011
   https://bugzilla.suse.com/1138012
   https://bugzilla.suse.com/1138013
   https://bugzilla.suse.com/1138014
   https://bugzilla.suse.com/1138015
   https://bugzilla.suse.com/1138016
   https://bugzilla.suse.com/1138017
   https://bugzilla.suse.com/1138018
   https://bugzilla.suse.com/1138019
   https://bugzilla.suse.com/1138291
   https://bugzilla.suse.com/1138293
   https://bugzilla.suse.com/1138374
   https://bugzilla.suse.com/1138375
   https://bugzilla.suse.com/1138589
   https://bugzilla.suse.com/1138719
   https://bugzilla.suse.com/1139358
   https://bugzilla.suse.com/1139751
   https://bugzilla.suse.com/1139771
   https://bugzilla.suse.com/1139782
   https://bugzilla.suse.com/1139865
   https://bugzilla.suse.com/1140133
   https://bugzilla.suse.com/1140139
   https://bugzilla.suse.com/1140322
   https://bugzilla.suse.com/1140328
   https://bugzilla.suse.com/1140405
   https://bugzilla.suse.com/1140424
   https://bugzilla.suse.com/1140428
   https://bugzilla.suse.com/1140575
   https://bugzilla.suse.com/1140577
   https://bugzilla.suse.com/1140637
   https://bugzilla.suse.com/1140652
   https://bugzilla.suse.com/1140658
   https://bugzilla.suse.com/1140715
   https://bugzilla.suse.com/1140719
   https://bugzilla.suse.com/1140726
   https://bugzilla.suse.com/1140727
   https://bugzilla.suse.com/1140728
   https://bugzilla.suse.com/1140814
   https://bugzilla.suse.com/1140887
   https://bugzilla.suse.com/1140888
   https://bugzilla.suse.com/1140889
   https://bugzilla.suse.com/1140891
   https://bugzilla.suse.com/1140893
   https://bugzilla.suse.com/1140903
   https://bugzilla.suse.com/1140945
   https://bugzilla.suse.com/1140954
   https://bugzilla.suse.com/1140955
   https://bugzilla.suse.com/1140956
   https://bugzilla.suse.com/1140957
   https://bugzilla.suse.com/1140958
   https://bugzilla.suse.com/1140959
   https://bugzilla.suse.com/1140960
   https://bugzilla.suse.com/1140961
   https://bugzilla.suse.com/1140962
   https://bugzilla.suse.com/1140964
   https://bugzilla.suse.com/1140971
   https://bugzilla.suse.com/1140972
   https://bugzilla.suse.com/1140992
   https://bugzilla.suse.com/1141401
   https://bugzilla.suse.com/1141402
   https://bugzilla.suse.com/1141452
   https://bugzilla.suse.com/1141453
   https://bugzilla.suse.com/1141454
   https://bugzilla.suse.com/1141478
   https://bugzilla.suse.com/1141488
   https://bugzilla.suse.com/1142023
   https://bugzilla.suse.com/1142112
   https://bugzilla.suse.com/1142220
   https://bugzilla.suse.com/1142221
   https://bugzilla.suse.com/1142265
   https://bugzilla.suse.com/1142350
   https://bugzilla.suse.com/1142351
   https://bugzilla.suse.com/1142354
   https://bugzilla.suse.com/1142359
   https://bugzilla.suse.com/1142450
   https://bugzilla.suse.com/1142701
   https://bugzilla.suse.com/1142868
   https://bugzilla.suse.com/1143003
   https://bugzilla.suse.com/1143045
   https://bugzilla.suse.com/1143105
   https://bugzilla.suse.com/1143185
   https://bugzilla.suse.com/1143189
   https://bugzilla.suse.com/1143191
   https://bugzilla.suse.com/1143507



More information about the sle-security-updates mailing list