openSUSE-SLE-15.3-2021-3242 Recommended update for apache2-mod_auth_mellon, lasso moderate SUSE Updates openSUSE-SLE 15.3 This update for lasso fixes the following issues: - Implement package 'apache2-mod_auth_mellon' along with its dependency 'lasso' in SLE-15-SP2. (jsc#SLE-8958, jsc#ECO-1309) apache2-mod_auth_mellon-0.17.0-5.4.1.src.rpm apache2-mod_auth_mellon-0.17.0-5.4.1.x86_64.rpm apache2-mod_auth_mellon-diagnostics-0.17.0-5.4.1.x86_64.rpm apache2-mod_auth_mellon-doc-0.17.0-5.4.1.x86_64.rpm lasso-2.6.1-16.2.src.rpm liblasso-devel-2.6.1-16.2.x86_64.rpm liblasso3-2.6.1-16.2.x86_64.rpm python3-lasso-2.6.1-16.2.x86_64.rpm apache2-mod_auth_mellon-0.17.0-5.4.1.s390x.rpm apache2-mod_auth_mellon-diagnostics-0.17.0-5.4.1.s390x.rpm apache2-mod_auth_mellon-doc-0.17.0-5.4.1.s390x.rpm liblasso-devel-2.6.1-16.2.s390x.rpm liblasso3-2.6.1-16.2.s390x.rpm python3-lasso-2.6.1-16.2.s390x.rpm liblasso-devel-2.6.1-16.2.ppc64le.rpm liblasso3-2.6.1-16.2.ppc64le.rpm python3-lasso-2.6.1-16.2.ppc64le.rpm apache2-mod_auth_mellon-0.17.0-5.4.1.aarch64.rpm apache2-mod_auth_mellon-diagnostics-0.17.0-5.4.1.aarch64.rpm apache2-mod_auth_mellon-doc-0.17.0-5.4.1.aarch64.rpm liblasso-devel-2.6.1-16.2.aarch64.rpm liblasso3-2.6.1-16.2.aarch64.rpm python3-lasso-2.6.1-16.2.aarch64.rpm openSUSE-SLE-15.3-2021-2125 Security update for wireshark important SUSE Updates openSUSE-SLE 15.3 This update for wireshark, libvirt, sbc and libqt5-qtmultimedia fixes the following issues: Update wireshark to version 3.4.5 - New and updated support and bug fixes for multiple protocols - Asynchronous DNS resolution is always enabled - Protobuf fields can be dissected as Wireshark (header) fields - UI improvements Including security fixes for: - CVE-2021-22191: Wireshark could open unsafe URLs (bsc#1183353). - CVE-2021-22207: MS-WSP dissector excessive memory consumption (bsc#1185128) - CVE-2020-26422: QUIC dissector crash (bsc#1180232) - CVE-2020-26418: Kafka dissector memory leak (bsc#1179930) - CVE-2020-26419: Multiple dissector memory leaks (bsc#1179931) - CVE-2020-26420: RTPS dissector memory leak (bsc#1179932) - CVE-2020-26421: USB HID dissector crash (bsc#1179933) - CVE-2021-22173: Fix USB HID dissector memory leak (bsc#1181598) - CVE-2021-22174: Fix USB HID dissector crash (bsc#1181599) libqt5-qtmultimedia and sbc are necessary dependencies. libvirt is needed to rebuild wireshark-plugin-libvirt. libsbc1-1.3-3.2.1.x86_64.rpm libsbc1-32bit-1.3-3.2.1.x86_64.rpm libwireshark14-3.4.5-3.53.1.x86_64.rpm libwiretap11-3.4.5-3.53.1.x86_64.rpm libwsutil12-3.4.5-3.53.1.x86_64.rpm sbc-1.3-3.2.1.src.rpm sbc-1.3-3.2.1.x86_64.rpm sbc-devel-1.3-3.2.1.x86_64.rpm wireshark-3.4.5-3.53.1.src.rpm wireshark-3.4.5-3.53.1.x86_64.rpm wireshark-devel-3.4.5-3.53.1.x86_64.rpm wireshark-ui-qt-3.4.5-3.53.1.x86_64.rpm libsbc1-1.3-3.2.1.s390x.rpm libwireshark14-3.4.5-3.53.1.s390x.rpm libwiretap11-3.4.5-3.53.1.s390x.rpm libwsutil12-3.4.5-3.53.1.s390x.rpm sbc-1.3-3.2.1.s390x.rpm sbc-devel-1.3-3.2.1.s390x.rpm wireshark-3.4.5-3.53.1.s390x.rpm wireshark-devel-3.4.5-3.53.1.s390x.rpm wireshark-ui-qt-3.4.5-3.53.1.s390x.rpm libsbc1-1.3-3.2.1.ppc64le.rpm libwireshark14-3.4.5-3.53.1.ppc64le.rpm libwiretap11-3.4.5-3.53.1.ppc64le.rpm libwsutil12-3.4.5-3.53.1.ppc64le.rpm sbc-1.3-3.2.1.ppc64le.rpm sbc-devel-1.3-3.2.1.ppc64le.rpm wireshark-3.4.5-3.53.1.ppc64le.rpm wireshark-devel-3.4.5-3.53.1.ppc64le.rpm wireshark-ui-qt-3.4.5-3.53.1.ppc64le.rpm libsbc1-1.3-3.2.1.aarch64.rpm libwireshark14-3.4.5-3.53.1.aarch64.rpm libwiretap11-3.4.5-3.53.1.aarch64.rpm libwsutil12-3.4.5-3.53.1.aarch64.rpm sbc-1.3-3.2.1.aarch64.rpm sbc-devel-1.3-3.2.1.aarch64.rpm wireshark-3.4.5-3.53.1.aarch64.rpm wireshark-devel-3.4.5-3.53.1.aarch64.rpm wireshark-ui-qt-3.4.5-3.53.1.aarch64.rpm openSUSE-SLE-15.3-2021-3233 Recommended update for xfsprogs moderate SUSE Updates openSUSE-SLE 15.3 This update for xfsprogs fixes the following issues: - Fixes an issue when 'fstests' with 'xfs' fail. (bsc#1181309, bsc#1181299) - xfsprogs: Split 'libhandle1' into a separate package, since nothing within xfsprogs dynamically links against it. The shared library is still required by xfsdump as a runtime dependency. - mkfs.xfs: Fix 'ASSERT' on too-small device with stripe geometry. (bsc#1181536) - mkfs.xfs: If either 'sunit' or 'swidth' is not zero, the other must be as well. (bsc#1085917, bsc#1181535) - xfs_growfs: Refactor geometry reporting. (bsc#1181306) - xfs_growfs: Allow mounted device node as argument. (bsc#1181299) - xfs_repair: Rebuild directory when non-root leafn blocks claim block 0. (bsc#1181309) - xfs_repair: Check plausibility of root dir pointer before trashing it. (bsc#1188651) - xfs_bmap: Remove '-c' from manpage. (bsc#1189552) - xfs_bmap: Do not reject '-e'. (bsc#1189552) - Implement 'libhandle1' through ECO. (jsc#SLE-20360) libhandle1-4.15.0-4.40.1.x86_64.rpm xfsprogs-4.15.0-4.40.1.src.rpm xfsprogs-4.15.0-4.40.1.x86_64.rpm xfsprogs-devel-4.15.0-4.40.1.x86_64.rpm libhandle1-4.15.0-4.40.1.s390x.rpm xfsprogs-4.15.0-4.40.1.s390x.rpm xfsprogs-devel-4.15.0-4.40.1.s390x.rpm libhandle1-4.15.0-4.40.1.ppc64le.rpm xfsprogs-4.15.0-4.40.1.ppc64le.rpm xfsprogs-devel-4.15.0-4.40.1.ppc64le.rpm libhandle1-4.15.0-4.40.1.aarch64.rpm xfsprogs-4.15.0-4.40.1.aarch64.rpm xfsprogs-devel-4.15.0-4.40.1.aarch64.rpm openSUSE-SLE-15.3-2021-1845 Security update for avahi important SUSE Updates openSUSE-SLE 15.3 This update for avahi fixes the following issues: - CVE-2021-3468: avoid infinite loop by handling HUP event in client_work (bsc#1184521). - CVE-2021-26720: drop privileges when invoking avahi-daemon-check-dns.sh (bsc#1180827) - Update avahi-daemon-check-dns.sh from Debian. Our previous version relied on ifconfig, route, and init.d. - Add sudo to requires: used to drop privileges. avahi-0.6.32-5.13.1.src.rpm avahi-glib2-0.6.32-5.13.1.src.rpm python-avahi-0.6.32-5.13.1.x86_64.rpm python-avahi-gtk-0.6.32-5.13.1.x86_64.rpm python-avahi-0.6.32-5.13.1.s390x.rpm python-avahi-gtk-0.6.32-5.13.1.s390x.rpm python-avahi-0.6.32-5.13.1.ppc64le.rpm python-avahi-gtk-0.6.32-5.13.1.ppc64le.rpm python-avahi-0.6.32-5.13.1.aarch64.rpm python-avahi-gtk-0.6.32-5.13.1.aarch64.rpm openSUSE-SLE-15.3-2021-1643 Recommended update for pam important SUSE Updates openSUSE-SLE 15.3 This update for pam fixes the following issues: - Fixed a bug, where the 'unlimited'/'-1' value was not interpreted correctly (bsc#1181443) - Fixed a bug, where pam_access interpreted the keyword 'LOCAL' incorrectly, leading to an attempt to resolve it as a hostname (bsc#1184358) - In the 32-bit compatibility package for 64-bit architectures, require "systemd-32bit" to be also installed as it contains pam_systemd.so for 32 bit applications. (bsc#1185562) pam-1.3.0-6.38.1.src.rpm pam-1.3.0-6.38.1.x86_64.rpm pam-32bit-1.3.0-6.38.1.x86_64.rpm pam-devel-1.3.0-6.38.1.x86_64.rpm pam-devel-32bit-1.3.0-6.38.1.x86_64.rpm pam-doc-1.3.0-6.38.1.noarch.rpm pam-extra-1.3.0-6.38.1.x86_64.rpm pam-extra-32bit-1.3.0-6.38.1.x86_64.rpm pam-1.3.0-6.38.1.s390x.rpm pam-devel-1.3.0-6.38.1.s390x.rpm pam-extra-1.3.0-6.38.1.s390x.rpm pam-1.3.0-6.38.1.ppc64le.rpm pam-devel-1.3.0-6.38.1.ppc64le.rpm pam-extra-1.3.0-6.38.1.ppc64le.rpm pam-1.3.0-6.38.1.aarch64.rpm pam-devel-1.3.0-6.38.1.aarch64.rpm pam-extra-1.3.0-6.38.1.aarch64.rpm openSUSE-SLE-15.3-2021-3227 Recommended update for createrepo_c, libmodulemd, and zchunk moderate SUSE Updates openSUSE-SLE 15.3 This update for createrepo_c fixes the following issues: createrepo_c: - Does no longer perform a dir walk when --recycle-pkglist is specified - Added automatic module metadata handling for repos - Fixed a couple of memory leaks - Added --arch-expand option - Added --recycle-pkglist option - Set global_exit_status on sigint so that .repodata are cleaned up - Enhance error handling when locating repositories libmodulemd: - Just a rebuild of the package, no source changes zchunk: - Initial shipment of zchunk to SUSE Linux Enterprise createrepo_c-0.16.0-3.3.1.src.rpm createrepo_c-0.16.0-3.3.1.x86_64.rpm libcreaterepo_c-devel-0.16.0-3.3.1.x86_64.rpm libcreaterepo_c0-0.16.0-3.3.1.x86_64.rpm libmodulemd-2.12.0-3.10.1.src.rpm libmodulemd-devel-2.12.0-3.10.1.x86_64.rpm libmodulemd2-2.12.0-3.10.1.x86_64.rpm libzck-devel-1.1.5-3.2.1.x86_64.rpm libzck1-1.1.5-3.2.1.x86_64.rpm modulemd-validator-2.12.0-3.10.1.x86_64.rpm python3-createrepo_c-0.16.0-3.3.1.x86_64.rpm python3-libmodulemd-2.12.0-3.10.1.x86_64.rpm typelib-1_0-Modulemd-2_0-2.12.0-3.10.1.x86_64.rpm zchunk-1.1.5-3.2.1.src.rpm zchunk-1.1.5-3.2.1.x86_64.rpm createrepo_c-0.16.0-3.3.1.s390x.rpm libcreaterepo_c-devel-0.16.0-3.3.1.s390x.rpm libcreaterepo_c0-0.16.0-3.3.1.s390x.rpm libmodulemd-devel-2.12.0-3.10.1.s390x.rpm libmodulemd2-2.12.0-3.10.1.s390x.rpm libzck-devel-1.1.5-3.2.1.s390x.rpm libzck1-1.1.5-3.2.1.s390x.rpm modulemd-validator-2.12.0-3.10.1.s390x.rpm python3-createrepo_c-0.16.0-3.3.1.s390x.rpm python3-libmodulemd-2.12.0-3.10.1.s390x.rpm typelib-1_0-Modulemd-2_0-2.12.0-3.10.1.s390x.rpm zchunk-1.1.5-3.2.1.s390x.rpm createrepo_c-0.16.0-3.3.1.ppc64le.rpm libcreaterepo_c-devel-0.16.0-3.3.1.ppc64le.rpm libcreaterepo_c0-0.16.0-3.3.1.ppc64le.rpm libmodulemd-devel-2.12.0-3.10.1.ppc64le.rpm libmodulemd2-2.12.0-3.10.1.ppc64le.rpm libzck-devel-1.1.5-3.2.1.ppc64le.rpm libzck1-1.1.5-3.2.1.ppc64le.rpm modulemd-validator-2.12.0-3.10.1.ppc64le.rpm python3-createrepo_c-0.16.0-3.3.1.ppc64le.rpm python3-libmodulemd-2.12.0-3.10.1.ppc64le.rpm typelib-1_0-Modulemd-2_0-2.12.0-3.10.1.ppc64le.rpm zchunk-1.1.5-3.2.1.ppc64le.rpm createrepo_c-0.16.0-3.3.1.aarch64.rpm libcreaterepo_c-devel-0.16.0-3.3.1.aarch64.rpm libcreaterepo_c0-0.16.0-3.3.1.aarch64.rpm libmodulemd-devel-2.12.0-3.10.1.aarch64.rpm libmodulemd2-2.12.0-3.10.1.aarch64.rpm libzck-devel-1.1.5-3.2.1.aarch64.rpm libzck1-1.1.5-3.2.1.aarch64.rpm modulemd-validator-2.12.0-3.10.1.aarch64.rpm python3-createrepo_c-0.16.0-3.3.1.aarch64.rpm python3-libmodulemd-2.12.0-3.10.1.aarch64.rpm typelib-1_0-Modulemd-2_0-2.12.0-3.10.1.aarch64.rpm zchunk-1.1.5-3.2.1.aarch64.rpm openSUSE-SLE-15.3-2021-1862 Recommended update for pacemaker moderate SUSE Updates openSUSE-SLE 15.3 This update for pacemaker fixes the following issues: - controller: Fix for the issue when the re-joined node gets the host names of non-DC nodes and fails. (bsc#1180618) - Fixed an issue when pacemaker generates invalid xml for certain failures. (rh#1931332) - fencer: Optimize merging of fencing history by removing unneeded entries on creation of history diff. (bsc#1181744) - fencing: Add a new function for checking if a fencing operation is in pending state. (bsc#1181744) - fencer: Update outdated pending operations according to returned ones from remote peer history. (bsc#1181744) - fencer: Fix if broadcast returned fencing operations to update outdated pending ones in remote peer history. (bsc#1181744) - execd: Skips merging of canceled fencing monitors. (#CLBZ5393) - liblrmd: Limit node name addition to proxied 'attrd' update commands. (rh#1907726) - controller, Pacemaker Explained: Improved the documentation of 'stonith-watchdog-timeout' cluster option. (bsc#1174696, bsc#1184557) - scheduler: Improved the documentation of 'have-watchdog' cluster option. (bsc#1174696, bsc#1184557) - libpe_status: Downgrade the message about the meaning of 'have-watchdog=true' to 'info'. (bsc#1174696, bsc#1184557) - scheduler: Update 'migrate-fail-9' test for migration code change. (bsc#1177212, bsc#1182607) - scheduler: Don't schedule a dangling migration stop if one already occurred. (bsc#1177212, bsc#1182607) libpacemaker-devel-2.0.5+20201202.ba59be712-4.3.23.x86_64.rpm libpacemaker3-2.0.5+20201202.ba59be712-4.3.23.x86_64.rpm pacemaker-2.0.5+20201202.ba59be712-4.3.23.src.rpm pacemaker-2.0.5+20201202.ba59be712-4.3.23.x86_64.rpm pacemaker-cli-2.0.5+20201202.ba59be712-4.3.23.x86_64.rpm pacemaker-cts-2.0.5+20201202.ba59be712-4.3.23.noarch.rpm pacemaker-remote-2.0.5+20201202.ba59be712-4.3.23.x86_64.rpm libpacemaker-devel-2.0.5+20201202.ba59be712-4.3.23.s390x.rpm libpacemaker3-2.0.5+20201202.ba59be712-4.3.23.s390x.rpm pacemaker-2.0.5+20201202.ba59be712-4.3.23.s390x.rpm pacemaker-cli-2.0.5+20201202.ba59be712-4.3.23.s390x.rpm pacemaker-remote-2.0.5+20201202.ba59be712-4.3.23.s390x.rpm libpacemaker-devel-2.0.5+20201202.ba59be712-4.3.23.ppc64le.rpm libpacemaker3-2.0.5+20201202.ba59be712-4.3.23.ppc64le.rpm pacemaker-2.0.5+20201202.ba59be712-4.3.23.ppc64le.rpm pacemaker-cli-2.0.5+20201202.ba59be712-4.3.23.ppc64le.rpm pacemaker-remote-2.0.5+20201202.ba59be712-4.3.23.ppc64le.rpm libpacemaker-devel-2.0.5+20201202.ba59be712-4.3.23.aarch64.rpm libpacemaker3-2.0.5+20201202.ba59be712-4.3.23.aarch64.rpm pacemaker-2.0.5+20201202.ba59be712-4.3.23.aarch64.rpm pacemaker-cli-2.0.5+20201202.ba59be712-4.3.23.aarch64.rpm pacemaker-remote-2.0.5+20201202.ba59be712-4.3.23.aarch64.rpm openSUSE-SLE-15.3-2021-2244 Recommended update for sssd moderate SUSE Updates openSUSE-SLE 15.3 This update for sssd fixes the following issues: - Create timestamp attribute in cache objects if missing (bsc#1182637) - Fix sss_cache spurious error messages when invoked from shadow-utils (bsc#1185017) - Using now /run instead of /var/run for daemon PID files (bsc#1185185) libipa_hbac-devel-1.16.1-23.8.1.x86_64.rpm libipa_hbac0-1.16.1-23.8.1.x86_64.rpm libnfsidmap-sss-1.16.1-23.8.1.x86_64.rpm libsss_certmap-devel-1.16.1-23.8.1.x86_64.rpm libsss_certmap0-1.16.1-23.8.1.x86_64.rpm libsss_idmap-devel-1.16.1-23.8.1.x86_64.rpm libsss_idmap0-1.16.1-23.8.1.x86_64.rpm libsss_nss_idmap-devel-1.16.1-23.8.1.x86_64.rpm libsss_nss_idmap0-1.16.1-23.8.1.x86_64.rpm libsss_simpleifp-devel-1.16.1-23.8.1.x86_64.rpm libsss_simpleifp0-1.16.1-23.8.1.x86_64.rpm python3-ipa_hbac-1.16.1-23.8.1.x86_64.rpm python3-sss-murmur-1.16.1-23.8.1.x86_64.rpm python3-sss_nss_idmap-1.16.1-23.8.1.x86_64.rpm python3-sssd-config-1.16.1-23.8.1.x86_64.rpm sssd-1.16.1-23.8.1.src.rpm sssd-1.16.1-23.8.1.x86_64.rpm sssd-ad-1.16.1-23.8.1.x86_64.rpm sssd-common-1.16.1-23.8.1.x86_64.rpm sssd-dbus-1.16.1-23.8.1.x86_64.rpm sssd-ipa-1.16.1-23.8.1.x86_64.rpm sssd-krb5-1.16.1-23.8.1.x86_64.rpm sssd-krb5-common-1.16.1-23.8.1.x86_64.rpm sssd-ldap-1.16.1-23.8.1.x86_64.rpm sssd-proxy-1.16.1-23.8.1.x86_64.rpm sssd-tools-1.16.1-23.8.1.x86_64.rpm sssd-wbclient-1.16.1-23.8.1.x86_64.rpm sssd-wbclient-devel-1.16.1-23.8.1.x86_64.rpm sssd-winbind-idmap-1.16.1-23.8.1.x86_64.rpm libipa_hbac-devel-1.16.1-23.8.1.s390x.rpm libipa_hbac0-1.16.1-23.8.1.s390x.rpm libnfsidmap-sss-1.16.1-23.8.1.s390x.rpm libsss_certmap-devel-1.16.1-23.8.1.s390x.rpm libsss_certmap0-1.16.1-23.8.1.s390x.rpm libsss_idmap-devel-1.16.1-23.8.1.s390x.rpm libsss_idmap0-1.16.1-23.8.1.s390x.rpm libsss_nss_idmap-devel-1.16.1-23.8.1.s390x.rpm libsss_nss_idmap0-1.16.1-23.8.1.s390x.rpm libsss_simpleifp-devel-1.16.1-23.8.1.s390x.rpm libsss_simpleifp0-1.16.1-23.8.1.s390x.rpm python3-ipa_hbac-1.16.1-23.8.1.s390x.rpm python3-sss-murmur-1.16.1-23.8.1.s390x.rpm python3-sss_nss_idmap-1.16.1-23.8.1.s390x.rpm python3-sssd-config-1.16.1-23.8.1.s390x.rpm sssd-1.16.1-23.8.1.s390x.rpm sssd-ad-1.16.1-23.8.1.s390x.rpm sssd-common-1.16.1-23.8.1.s390x.rpm sssd-dbus-1.16.1-23.8.1.s390x.rpm sssd-ipa-1.16.1-23.8.1.s390x.rpm sssd-krb5-1.16.1-23.8.1.s390x.rpm sssd-krb5-common-1.16.1-23.8.1.s390x.rpm sssd-ldap-1.16.1-23.8.1.s390x.rpm sssd-proxy-1.16.1-23.8.1.s390x.rpm sssd-tools-1.16.1-23.8.1.s390x.rpm sssd-wbclient-1.16.1-23.8.1.s390x.rpm sssd-wbclient-devel-1.16.1-23.8.1.s390x.rpm sssd-winbind-idmap-1.16.1-23.8.1.s390x.rpm libipa_hbac-devel-1.16.1-23.8.1.ppc64le.rpm libipa_hbac0-1.16.1-23.8.1.ppc64le.rpm libnfsidmap-sss-1.16.1-23.8.1.ppc64le.rpm libsss_certmap-devel-1.16.1-23.8.1.ppc64le.rpm libsss_certmap0-1.16.1-23.8.1.ppc64le.rpm libsss_idmap-devel-1.16.1-23.8.1.ppc64le.rpm libsss_idmap0-1.16.1-23.8.1.ppc64le.rpm libsss_nss_idmap-devel-1.16.1-23.8.1.ppc64le.rpm libsss_nss_idmap0-1.16.1-23.8.1.ppc64le.rpm libsss_simpleifp-devel-1.16.1-23.8.1.ppc64le.rpm libsss_simpleifp0-1.16.1-23.8.1.ppc64le.rpm python3-ipa_hbac-1.16.1-23.8.1.ppc64le.rpm python3-sss-murmur-1.16.1-23.8.1.ppc64le.rpm python3-sss_nss_idmap-1.16.1-23.8.1.ppc64le.rpm python3-sssd-config-1.16.1-23.8.1.ppc64le.rpm sssd-1.16.1-23.8.1.ppc64le.rpm sssd-ad-1.16.1-23.8.1.ppc64le.rpm sssd-common-1.16.1-23.8.1.ppc64le.rpm sssd-dbus-1.16.1-23.8.1.ppc64le.rpm sssd-ipa-1.16.1-23.8.1.ppc64le.rpm sssd-krb5-1.16.1-23.8.1.ppc64le.rpm sssd-krb5-common-1.16.1-23.8.1.ppc64le.rpm sssd-ldap-1.16.1-23.8.1.ppc64le.rpm sssd-proxy-1.16.1-23.8.1.ppc64le.rpm sssd-tools-1.16.1-23.8.1.ppc64le.rpm sssd-wbclient-1.16.1-23.8.1.ppc64le.rpm sssd-wbclient-devel-1.16.1-23.8.1.ppc64le.rpm sssd-winbind-idmap-1.16.1-23.8.1.ppc64le.rpm libipa_hbac-devel-1.16.1-23.8.1.aarch64.rpm libipa_hbac0-1.16.1-23.8.1.aarch64.rpm libnfsidmap-sss-1.16.1-23.8.1.aarch64.rpm libsss_certmap-devel-1.16.1-23.8.1.aarch64.rpm libsss_certmap0-1.16.1-23.8.1.aarch64.rpm libsss_idmap-devel-1.16.1-23.8.1.aarch64.rpm libsss_idmap0-1.16.1-23.8.1.aarch64.rpm libsss_nss_idmap-devel-1.16.1-23.8.1.aarch64.rpm libsss_nss_idmap0-1.16.1-23.8.1.aarch64.rpm libsss_simpleifp-devel-1.16.1-23.8.1.aarch64.rpm libsss_simpleifp0-1.16.1-23.8.1.aarch64.rpm python3-ipa_hbac-1.16.1-23.8.1.aarch64.rpm python3-sss-murmur-1.16.1-23.8.1.aarch64.rpm python3-sss_nss_idmap-1.16.1-23.8.1.aarch64.rpm python3-sssd-config-1.16.1-23.8.1.aarch64.rpm sssd-1.16.1-23.8.1.aarch64.rpm sssd-ad-1.16.1-23.8.1.aarch64.rpm sssd-common-1.16.1-23.8.1.aarch64.rpm sssd-dbus-1.16.1-23.8.1.aarch64.rpm sssd-ipa-1.16.1-23.8.1.aarch64.rpm sssd-krb5-1.16.1-23.8.1.aarch64.rpm sssd-krb5-common-1.16.1-23.8.1.aarch64.rpm sssd-ldap-1.16.1-23.8.1.aarch64.rpm sssd-proxy-1.16.1-23.8.1.aarch64.rpm sssd-tools-1.16.1-23.8.1.aarch64.rpm sssd-wbclient-1.16.1-23.8.1.aarch64.rpm sssd-wbclient-devel-1.16.1-23.8.1.aarch64.rpm sssd-winbind-idmap-1.16.1-23.8.1.aarch64.rpm openSUSE-SLE-15.3-2021-2306 Recommended update for yast2-samba-client moderate SUSE Updates openSUSE-SLE 15.3 This update for yast2-samba-client fixes the following issues: - Fix joining a domain when running a clustered Samba environment. (bsc#1181595) yast2-samba-client-4.3.3-3.3.1.noarch.rpm yast2-samba-client-4.3.3-3.3.1.src.rpm openSUSE-SLE-15.3-2021-1840 Security update for xstream important SUSE Updates openSUSE-SLE 15.3 This update for xstream fixes the following issues: - Upgrade to 1.4.16 - CVE-2021-21351: remote attacker to load and execute arbitrary code (bsc#1184796) - CVE-2021-21349: SSRF can lead to a remote attacker to request data from internal resources (bsc#1184797) - CVE-2021-21350: arbitrary code execution (bsc#1184380) - CVE-2021-21348: remote attacker could cause denial of service by consuming maximum CPU time (bsc#1184374) - CVE-2021-21347: remote attacker to load and execute arbitrary code from a remote host (bsc#1184378) - CVE-2021-21344: remote attacker could load and execute arbitrary code from a remote host (bsc#1184375) - CVE-2021-21342: server-side forgery (bsc#1184379) - CVE-2021-21341: remote attacker could cause a denial of service by allocating 100% CPU time (bsc#1184377) - CVE-2021-21346: remote attacker could load and execute arbitrary code (bsc#1184373) - CVE-2021-21345: remote attacker with sufficient rights could execute commands (bsc#1184372) - CVE-2021-21343: replace or inject objects, that result in the deletion of files on the local host (bsc#1184376) xstream-1.4.16-3.8.1.noarch.rpm xstream-1.4.16-3.8.1.src.rpm xstream-benchmark-1.4.16-3.8.1.noarch.rpm xstream-javadoc-1.4.16-3.8.1.noarch.rpm xstream-parent-1.4.16-3.8.1.noarch.rpm openSUSE-SLE-15.3-2021-2221 Recommended update for resource-agents moderate SUSE Updates openSUSE-SLE 15.3 This update for resource-agents fixes the following issues: - Update to version 4.8.0 - HA-LVM systemid race condition introduces an error "active on 2 nodes". (bsc#1178680) - L3: azure-events puts both nodes in standby. (bsc#1183971) - 'ethmonitor' journal with warnings for VLAN. (bsc#1177796) - URL errors in 'azure-events' is fixed upstream. (bsc#1180590) - gcp-vpc-move-route resource agent file_cache is unavailable when using oauth2client. (bsc#1184607) - L3: anything RA stop operation fails if /root/.profile has unexpected content. (bsc#1179977) ldirectord-4.8.0+git30.d0077df0-8.5.1.x86_64.rpm monitoring-plugins-metadata-4.8.0+git30.d0077df0-8.5.1.noarch.rpm resource-agents-4.8.0+git30.d0077df0-8.5.1.src.rpm resource-agents-4.8.0+git30.d0077df0-8.5.1.x86_64.rpm ldirectord-4.8.0+git30.d0077df0-8.5.1.s390x.rpm resource-agents-4.8.0+git30.d0077df0-8.5.1.s390x.rpm ldirectord-4.8.0+git30.d0077df0-8.5.1.ppc64le.rpm resource-agents-4.8.0+git30.d0077df0-8.5.1.ppc64le.rpm ldirectord-4.8.0+git30.d0077df0-8.5.1.aarch64.rpm resource-agents-4.8.0+git30.d0077df0-8.5.1.aarch64.rpm openSUSE-SLE-15.3-2021-1630 Recommended update for crmsh moderate SUSE Updates openSUSE-SLE 15.3 This update for crmsh fixes the following issues: - Update to version 4.3.0: * Fix: bootstrap: add sbd via bootstrap stage on an existing cluster (bsc#1181906) * Fix: bootstrap: change StrictHostKeyChecking=no as a constants(bsc#1185437) * Dev: bootstrap: disable unnecessary warnings (bsc#1178118) * Fix: bootstrap: sync corosync.conf before finished joining(bsc#1183359) * Dev: add "crm corosync status qdevice" sub-command * Dev: ui_cluster: add qdevice help info * Fix for bootstrap: parse space in sbd device correctly. (bsc#1183883) * Fix for bootstrap: get the peer node name correctly. (bsc#1183654) * Update version and author. (bsc#1183689) * Dev: bootstrap: enable configuring qdevice on interactive mode. (jsc#ECO-3567) crmsh-4.3.0+20210507.bf02d791-5.50.1.noarch.rpm crmsh-4.3.0+20210507.bf02d791-5.50.1.src.rpm crmsh-scripts-4.3.0+20210507.bf02d791-5.50.1.noarch.rpm crmsh-test-4.3.0+20210507.bf02d791-5.50.1.noarch.rpm openSUSE-SLE-15.3-2021-2420 Recommended update for yast2-bootloader moderate SUSE Updates openSUSE-SLE 15.3 This update for yast2-bootloader fixes the following issues: - Fix crash when bootloader is not managed by yast and security module wants to show cpu mitigation. (bsc#1184968) - Add the os-prober package to the set of packages to install if the package is available and supported on the arch. (bsc#1186369) - Enable linuxefi/initrdefi on x86 only as grub does not understand those commands on other archs. (bsc#1183795) - Fixes for 'arm can boot on uefi'. (bsc#1183795) - arm can boot on uefi. (bsc#1183795) yast2-bootloader-4.3.30-3.5.1.src.rpm yast2-bootloader-4.3.30-3.5.1.x86_64.rpm yast2-bootloader-4.3.30-3.5.1.s390x.rpm yast2-bootloader-4.3.30-3.5.1.ppc64le.rpm yast2-bootloader-4.3.30-3.5.1.aarch64.rpm openSUSE-SLE-15.3-2021-1663 Recommended update for drbd-formula moderate SUSE Updates openSUSE-SLE 15.3 This update for drbd-formula fixes the following issues: - Support different backing device per node. (bsc#1179529) drbd-formula-0.4.2+git.1616116365.1e3ab34-3.6.1.noarch.rpm drbd-formula-0.4.2+git.1616116365.1e3ab34-3.6.1.src.rpm openSUSE-SLE-15.3-2021-1679 Recommended update for ddclient moderate SUSE Updates openSUSE-SLE 15.3 This update for ddclient fixes the following issues: - As '/var/run' is deprecated, replaced by '/run' in 'ddclient-tmpfiles.conf' (bsc#1185069) - Systemd expects the PID file to exist as soon as the main process exists. However, it takes quite a while until the pid file is created by the daemon process, so we delay the main process for 1 second before exit()ing. This gets rid of an annoying warning message in "systemctl status". ddclient-3.8.3-3.7.1.noarch.rpm ddclient-3.8.3-3.7.1.src.rpm openSUSE-SLE-15.3-2021-2172 Recommended update for python-matplotlib moderate SUSE Updates openSUSE-SLE 15.3 This update for python-matplotlib fixes the following issues: - Fix dependencies to explicit python3-* ones. (bsc#1184340) python-matplotlib-2.2.5-3.3.1.src.rpm python2-matplotlib-2.2.5-3.3.1.x86_64.rpm python2-matplotlib-cairo-2.2.5-3.3.1.x86_64.rpm python2-matplotlib-gtk3-2.2.5-3.3.1.x86_64.rpm python2-matplotlib-latex-2.2.5-3.3.1.x86_64.rpm python2-matplotlib-qt5-2.2.5-3.3.1.x86_64.rpm python2-matplotlib-tk-2.2.5-3.3.1.x86_64.rpm python2-matplotlib-web-2.2.5-3.3.1.x86_64.rpm python2-matplotlib-wx-2.2.5-3.3.1.x86_64.rpm python3-matplotlib-2.2.5-3.3.1.x86_64.rpm python3-matplotlib-cairo-2.2.5-3.3.1.x86_64.rpm python3-matplotlib-gtk3-2.2.5-3.3.1.x86_64.rpm python3-matplotlib-latex-2.2.5-3.3.1.x86_64.rpm python3-matplotlib-qt5-2.2.5-3.3.1.x86_64.rpm python3-matplotlib-tk-2.2.5-3.3.1.x86_64.rpm python3-matplotlib-web-2.2.5-3.3.1.x86_64.rpm python2-matplotlib-2.2.5-3.3.1.s390x.rpm python2-matplotlib-cairo-2.2.5-3.3.1.s390x.rpm python2-matplotlib-gtk3-2.2.5-3.3.1.s390x.rpm python2-matplotlib-latex-2.2.5-3.3.1.s390x.rpm python2-matplotlib-qt5-2.2.5-3.3.1.s390x.rpm python2-matplotlib-tk-2.2.5-3.3.1.s390x.rpm python2-matplotlib-web-2.2.5-3.3.1.s390x.rpm python2-matplotlib-wx-2.2.5-3.3.1.s390x.rpm python3-matplotlib-2.2.5-3.3.1.s390x.rpm python3-matplotlib-cairo-2.2.5-3.3.1.s390x.rpm python3-matplotlib-gtk3-2.2.5-3.3.1.s390x.rpm python3-matplotlib-latex-2.2.5-3.3.1.s390x.rpm python3-matplotlib-qt5-2.2.5-3.3.1.s390x.rpm python3-matplotlib-tk-2.2.5-3.3.1.s390x.rpm python3-matplotlib-web-2.2.5-3.3.1.s390x.rpm python2-matplotlib-2.2.5-3.3.1.ppc64le.rpm python2-matplotlib-cairo-2.2.5-3.3.1.ppc64le.rpm python2-matplotlib-gtk3-2.2.5-3.3.1.ppc64le.rpm python2-matplotlib-latex-2.2.5-3.3.1.ppc64le.rpm python2-matplotlib-qt5-2.2.5-3.3.1.ppc64le.rpm python2-matplotlib-tk-2.2.5-3.3.1.ppc64le.rpm python2-matplotlib-web-2.2.5-3.3.1.ppc64le.rpm python2-matplotlib-wx-2.2.5-3.3.1.ppc64le.rpm python3-matplotlib-2.2.5-3.3.1.ppc64le.rpm python3-matplotlib-cairo-2.2.5-3.3.1.ppc64le.rpm python3-matplotlib-gtk3-2.2.5-3.3.1.ppc64le.rpm python3-matplotlib-latex-2.2.5-3.3.1.ppc64le.rpm python3-matplotlib-qt5-2.2.5-3.3.1.ppc64le.rpm python3-matplotlib-tk-2.2.5-3.3.1.ppc64le.rpm python3-matplotlib-web-2.2.5-3.3.1.ppc64le.rpm python2-matplotlib-2.2.5-3.3.1.aarch64.rpm python2-matplotlib-cairo-2.2.5-3.3.1.aarch64.rpm python2-matplotlib-gtk3-2.2.5-3.3.1.aarch64.rpm python2-matplotlib-latex-2.2.5-3.3.1.aarch64.rpm python2-matplotlib-qt5-2.2.5-3.3.1.aarch64.rpm python2-matplotlib-tk-2.2.5-3.3.1.aarch64.rpm python2-matplotlib-web-2.2.5-3.3.1.aarch64.rpm python2-matplotlib-wx-2.2.5-3.3.1.aarch64.rpm python3-matplotlib-2.2.5-3.3.1.aarch64.rpm python3-matplotlib-cairo-2.2.5-3.3.1.aarch64.rpm python3-matplotlib-gtk3-2.2.5-3.3.1.aarch64.rpm python3-matplotlib-latex-2.2.5-3.3.1.aarch64.rpm python3-matplotlib-qt5-2.2.5-3.3.1.aarch64.rpm python3-matplotlib-tk-2.2.5-3.3.1.aarch64.rpm python3-matplotlib-web-2.2.5-3.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-1983 Recommended update for ovmf moderate SUSE Updates openSUSE-SLE 15.3 This update for ovmf fixes the following issues: - Enabled S3 support for ovmf-x86_64-smm. (bsc#1184938) - Added "acpi-s4" tag to allow libvirt enable hibernation. (bsc#1182886) ovmf-202008-10.5.1.src.rpm ovmf-202008-10.5.1.x86_64.rpm ovmf-tools-202008-10.5.1.x86_64.rpm qemu-ovmf-ia32-202008-10.5.1.noarch.rpm qemu-ovmf-x86_64-202008-10.5.1.noarch.rpm qemu-ovmf-x86_64-debug-202008-10.5.1.x86_64.rpm qemu-uefi-aarch32-202008-10.5.1.noarch.rpm qemu-uefi-aarch64-202008-10.5.1.noarch.rpm ovmf-202008-10.5.1.aarch64.rpm ovmf-tools-202008-10.5.1.aarch64.rpm openSUSE-SLE-15.3-2021-1662 Recommended update for saphanabootstrap-formula moderate SUSE Updates openSUSE-SLE 15.3 This update for saphanabootstrap-formula fixes the following issues: - Fix the HANA sidadm usage to transform to lowercase some states managing the sudoers file in ha_cluster.sls state file. (bsc#1185090) saphanabootstrap-formula-0.7.1+git.1619008686.8600866-3.11.1.noarch.rpm saphanabootstrap-formula-0.7.1+git.1619008686.8600866-3.11.1.src.rpm openSUSE-SLE-15.3-2021-3188 Recommended update for sapnwbootstrap-formula moderate SUSE Updates openSUSE-SLE 15.3 This update for sapnwbootstrap-formula fixes the following issues: Update to version 0.6.4+git.1621842068.a86c37c: - Set the default empty dictionary for 'virtual_addresses'. (bsc#1185627) - This also ensures that a dictionary is obtained if the value is None (needed by SUSE Manager) - Fix issue when 'azure-lb' resource for 'ASCS/ERS' is not added in the corresponding Resource Group (bsc#1186236) - Set the virtual ip addresses as permanent, except for HA scenarios, to have them even after a reboot of the machine. (bsc#1185093) - Give the option to mount '/sapmnt' folder locally without using a 'NFS' share. - Make '/sapmnt' path configurable using 'sapmnt_path' pillar variable - Update PAS and AAS templates to use HANA sid and instance number to create the configuration file - Fix error about missing instance installation requisite when monitoring is enabled. (bsc#1181541) sapnwbootstrap-formula-0.6.4+git.1621842068.a86c37c-10.1.noarch.rpm sapnwbootstrap-formula-0.6.4+git.1621842068.a86c37c-10.1.src.rpm openSUSE-SLE-15.3-2021-1826 Security update for bind important SUSE Updates openSUSE-SLE 15.3 This update for bind fixes the following issues: - CVE-2021-25214: Fixed a broken inbound incremental zone update (IXFR) which could have caused named to terminate unexpectedly (bsc#1185345). - CVE-2021-25215: Fixed an assertion check which could have failed while answering queries for DNAME records that required the DNAME to be processed to resolve itself (bsc#1185345). - Switched from /var/run to /run (bsc#1185073) - Hardening: Compiled binary with PIE flags to make it position independent bind-9.16.6-22.7.1.src.rpm bind-9.16.6-22.7.1.x86_64.rpm bind-chrootenv-9.16.6-22.7.1.x86_64.rpm bind-devel-9.16.6-22.7.1.x86_64.rpm bind-doc-9.16.6-22.7.1.noarch.rpm bind-utils-9.16.6-22.7.1.x86_64.rpm libbind9-1600-9.16.6-22.7.1.x86_64.rpm libdns1605-9.16.6-22.7.1.x86_64.rpm libirs-devel-9.16.6-22.7.1.x86_64.rpm libirs1601-9.16.6-22.7.1.x86_64.rpm libisc1606-9.16.6-22.7.1.x86_64.rpm libisccc1600-9.16.6-22.7.1.x86_64.rpm libisccfg1600-9.16.6-22.7.1.x86_64.rpm libns1604-9.16.6-22.7.1.x86_64.rpm python3-bind-9.16.6-22.7.1.noarch.rpm bind-9.16.6-22.7.1.s390x.rpm bind-chrootenv-9.16.6-22.7.1.s390x.rpm bind-devel-9.16.6-22.7.1.s390x.rpm bind-utils-9.16.6-22.7.1.s390x.rpm libbind9-1600-9.16.6-22.7.1.s390x.rpm libdns1605-9.16.6-22.7.1.s390x.rpm libirs-devel-9.16.6-22.7.1.s390x.rpm libirs1601-9.16.6-22.7.1.s390x.rpm libisc1606-9.16.6-22.7.1.s390x.rpm libisccc1600-9.16.6-22.7.1.s390x.rpm libisccfg1600-9.16.6-22.7.1.s390x.rpm libns1604-9.16.6-22.7.1.s390x.rpm bind-9.16.6-22.7.1.ppc64le.rpm bind-chrootenv-9.16.6-22.7.1.ppc64le.rpm bind-devel-9.16.6-22.7.1.ppc64le.rpm bind-utils-9.16.6-22.7.1.ppc64le.rpm libbind9-1600-9.16.6-22.7.1.ppc64le.rpm libdns1605-9.16.6-22.7.1.ppc64le.rpm libirs-devel-9.16.6-22.7.1.ppc64le.rpm libirs1601-9.16.6-22.7.1.ppc64le.rpm libisc1606-9.16.6-22.7.1.ppc64le.rpm libisccc1600-9.16.6-22.7.1.ppc64le.rpm libisccfg1600-9.16.6-22.7.1.ppc64le.rpm libns1604-9.16.6-22.7.1.ppc64le.rpm bind-9.16.6-22.7.1.aarch64.rpm bind-chrootenv-9.16.6-22.7.1.aarch64.rpm bind-devel-9.16.6-22.7.1.aarch64.rpm bind-utils-9.16.6-22.7.1.aarch64.rpm libbind9-1600-9.16.6-22.7.1.aarch64.rpm libdns1605-9.16.6-22.7.1.aarch64.rpm libirs-devel-9.16.6-22.7.1.aarch64.rpm libirs1601-9.16.6-22.7.1.aarch64.rpm libisc1606-9.16.6-22.7.1.aarch64.rpm libisccc1600-9.16.6-22.7.1.aarch64.rpm libisccfg1600-9.16.6-22.7.1.aarch64.rpm libns1604-9.16.6-22.7.1.aarch64.rpm openSUSE-SLE-15.3-2021-3187 Security update for samba important SUSE Updates openSUSE-SLE 15.3 This update for samba fixes the following issues: - CVE-2021-20277: Fixed an out of bounds read in ldb_handler_fold (bsc#1183574). - CVE-2021-20254: Fixed a buffer overrun in sids_to_unixids() (bsc#1184677). - CVE-2020-27840: Fixed an unauthenticated remote heap corruption via bad DNs (bsc#1183572). - Spec file fixes around systemd and requires (bsc#1182830) - Fix dependency problem upgrading from libndr0 to libndr1 (bsc#1189875) - Fix dependency problem upgrading from libsmbldap0 to libsmbldap2 (bsc#1189875) ctdb-4.13.6+git.211.555d60b24ba-3.7.1.x86_64.rpm ctdb-pcp-pmda-4.13.6+git.211.555d60b24ba-3.7.1.x86_64.rpm ctdb-tests-4.13.6+git.211.555d60b24ba-3.7.1.x86_64.rpm libdcerpc-binding0-32bit-4.13.6+git.211.555d60b24ba-3.7.1.x86_64.rpm libdcerpc-binding0-4.13.6+git.211.555d60b24ba-3.7.1.x86_64.rpm libdcerpc-devel-4.13.6+git.211.555d60b24ba-3.7.1.x86_64.rpm libdcerpc-samr-devel-4.13.6+git.211.555d60b24ba-3.7.1.x86_64.rpm libdcerpc-samr0-32bit-4.13.6+git.211.555d60b24ba-3.7.1.x86_64.rpm libdcerpc-samr0-4.13.6+git.211.555d60b24ba-3.7.1.x86_64.rpm libdcerpc0-32bit-4.13.6+git.211.555d60b24ba-3.7.1.x86_64.rpm libdcerpc0-4.13.6+git.211.555d60b24ba-3.7.1.x86_64.rpm libndr-devel-4.13.6+git.211.555d60b24ba-3.7.1.x86_64.rpm libndr-krb5pac-devel-4.13.6+git.211.555d60b24ba-3.7.1.x86_64.rpm libndr-krb5pac0-32bit-4.13.6+git.211.555d60b24ba-3.7.1.x86_64.rpm libndr-krb5pac0-4.13.6+git.211.555d60b24ba-3.7.1.x86_64.rpm libndr-nbt-devel-4.13.6+git.211.555d60b24ba-3.7.1.x86_64.rpm libndr-nbt0-32bit-4.13.6+git.211.555d60b24ba-3.7.1.x86_64.rpm libndr-nbt0-4.13.6+git.211.555d60b24ba-3.7.1.x86_64.rpm libndr-standard-devel-4.13.6+git.211.555d60b24ba-3.7.1.x86_64.rpm libndr-standard0-32bit-4.13.6+git.211.555d60b24ba-3.7.1.x86_64.rpm libndr-standard0-4.13.6+git.211.555d60b24ba-3.7.1.x86_64.rpm libndr1-32bit-4.13.6+git.211.555d60b24ba-3.7.1.x86_64.rpm libndr1-4.13.6+git.211.555d60b24ba-3.7.1.x86_64.rpm libnetapi-devel-32bit-4.13.6+git.211.555d60b24ba-3.7.1.x86_64.rpm libnetapi-devel-4.13.6+git.211.555d60b24ba-3.7.1.x86_64.rpm libnetapi0-32bit-4.13.6+git.211.555d60b24ba-3.7.1.x86_64.rpm libnetapi0-4.13.6+git.211.555d60b24ba-3.7.1.x86_64.rpm libsamba-credentials-devel-4.13.6+git.211.555d60b24ba-3.7.1.x86_64.rpm libsamba-credentials0-32bit-4.13.6+git.211.555d60b24ba-3.7.1.x86_64.rpm libsamba-credentials0-4.13.6+git.211.555d60b24ba-3.7.1.x86_64.rpm libsamba-errors-devel-4.13.6+git.211.555d60b24ba-3.7.1.x86_64.rpm libsamba-errors0-32bit-4.13.6+git.211.555d60b24ba-3.7.1.x86_64.rpm libsamba-errors0-4.13.6+git.211.555d60b24ba-3.7.1.x86_64.rpm libsamba-hostconfig-devel-4.13.6+git.211.555d60b24ba-3.7.1.x86_64.rpm libsamba-hostconfig0-32bit-4.13.6+git.211.555d60b24ba-3.7.1.x86_64.rpm libsamba-hostconfig0-4.13.6+git.211.555d60b24ba-3.7.1.x86_64.rpm libsamba-passdb-devel-4.13.6+git.211.555d60b24ba-3.7.1.x86_64.rpm libsamba-passdb0-32bit-4.13.6+git.211.555d60b24ba-3.7.1.x86_64.rpm libsamba-passdb0-4.13.6+git.211.555d60b24ba-3.7.1.x86_64.rpm libsamba-policy-devel-4.13.6+git.211.555d60b24ba-3.7.1.x86_64.rpm libsamba-policy-python3-devel-4.13.6+git.211.555d60b24ba-3.7.1.x86_64.rpm libsamba-policy0-python3-32bit-4.13.6+git.211.555d60b24ba-3.7.1.x86_64.rpm libsamba-policy0-python3-4.13.6+git.211.555d60b24ba-3.7.1.x86_64.rpm libsamba-util-devel-4.13.6+git.211.555d60b24ba-3.7.1.x86_64.rpm libsamba-util0-32bit-4.13.6+git.211.555d60b24ba-3.7.1.x86_64.rpm libsamba-util0-4.13.6+git.211.555d60b24ba-3.7.1.x86_64.rpm libsamdb-devel-4.13.6+git.211.555d60b24ba-3.7.1.x86_64.rpm libsamdb0-32bit-4.13.6+git.211.555d60b24ba-3.7.1.x86_64.rpm libsamdb0-4.13.6+git.211.555d60b24ba-3.7.1.x86_64.rpm libsmbclient-devel-4.13.6+git.211.555d60b24ba-3.7.1.x86_64.rpm libsmbclient0-32bit-4.13.6+git.211.555d60b24ba-3.7.1.x86_64.rpm libsmbclient0-4.13.6+git.211.555d60b24ba-3.7.1.x86_64.rpm libsmbconf-devel-4.13.6+git.211.555d60b24ba-3.7.1.x86_64.rpm libsmbconf0-32bit-4.13.6+git.211.555d60b24ba-3.7.1.x86_64.rpm libsmbconf0-4.13.6+git.211.555d60b24ba-3.7.1.x86_64.rpm libsmbldap-devel-4.13.6+git.211.555d60b24ba-3.7.1.x86_64.rpm libsmbldap2-32bit-4.13.6+git.211.555d60b24ba-3.7.1.x86_64.rpm libsmbldap2-4.13.6+git.211.555d60b24ba-3.7.1.x86_64.rpm libtevent-util-devel-4.13.6+git.211.555d60b24ba-3.7.1.x86_64.rpm libtevent-util0-32bit-4.13.6+git.211.555d60b24ba-3.7.1.x86_64.rpm libtevent-util0-4.13.6+git.211.555d60b24ba-3.7.1.x86_64.rpm libwbclient-devel-4.13.6+git.211.555d60b24ba-3.7.1.x86_64.rpm libwbclient0-32bit-4.13.6+git.211.555d60b24ba-3.7.1.x86_64.rpm libwbclient0-4.13.6+git.211.555d60b24ba-3.7.1.x86_64.rpm samba-4.13.6+git.211.555d60b24ba-3.7.1.src.rpm samba-4.13.6+git.211.555d60b24ba-3.7.1.x86_64.rpm samba-ad-dc-32bit-4.13.6+git.211.555d60b24ba-3.7.1.x86_64.rpm samba-ad-dc-4.13.6+git.211.555d60b24ba-3.7.1.x86_64.rpm samba-ceph-4.13.6+git.211.555d60b24ba-3.7.1.x86_64.rpm samba-client-32bit-4.13.6+git.211.555d60b24ba-3.7.1.x86_64.rpm samba-client-4.13.6+git.211.555d60b24ba-3.7.1.x86_64.rpm samba-core-devel-4.13.6+git.211.555d60b24ba-3.7.1.x86_64.rpm samba-doc-4.13.6+git.211.555d60b24ba-3.7.1.noarch.rpm samba-dsdb-modules-4.13.6+git.211.555d60b24ba-3.7.1.x86_64.rpm samba-libs-32bit-4.13.6+git.211.555d60b24ba-3.7.1.x86_64.rpm samba-libs-4.13.6+git.211.555d60b24ba-3.7.1.x86_64.rpm samba-libs-python3-32bit-4.13.6+git.211.555d60b24ba-3.7.1.x86_64.rpm samba-libs-python3-4.13.6+git.211.555d60b24ba-3.7.1.x86_64.rpm samba-python3-4.13.6+git.211.555d60b24ba-3.7.1.x86_64.rpm samba-test-4.13.6+git.211.555d60b24ba-3.7.1.x86_64.rpm samba-winbind-32bit-4.13.6+git.211.555d60b24ba-3.7.1.x86_64.rpm samba-winbind-4.13.6+git.211.555d60b24ba-3.7.1.x86_64.rpm ctdb-4.13.6+git.211.555d60b24ba-3.7.1.s390x.rpm ctdb-pcp-pmda-4.13.6+git.211.555d60b24ba-3.7.1.s390x.rpm ctdb-tests-4.13.6+git.211.555d60b24ba-3.7.1.s390x.rpm libdcerpc-binding0-4.13.6+git.211.555d60b24ba-3.7.1.s390x.rpm libdcerpc-devel-4.13.6+git.211.555d60b24ba-3.7.1.s390x.rpm libdcerpc-samr-devel-4.13.6+git.211.555d60b24ba-3.7.1.s390x.rpm libdcerpc-samr0-4.13.6+git.211.555d60b24ba-3.7.1.s390x.rpm libdcerpc0-4.13.6+git.211.555d60b24ba-3.7.1.s390x.rpm libndr-devel-4.13.6+git.211.555d60b24ba-3.7.1.s390x.rpm libndr-krb5pac-devel-4.13.6+git.211.555d60b24ba-3.7.1.s390x.rpm libndr-krb5pac0-4.13.6+git.211.555d60b24ba-3.7.1.s390x.rpm libndr-nbt-devel-4.13.6+git.211.555d60b24ba-3.7.1.s390x.rpm libndr-nbt0-4.13.6+git.211.555d60b24ba-3.7.1.s390x.rpm libndr-standard-devel-4.13.6+git.211.555d60b24ba-3.7.1.s390x.rpm libndr-standard0-4.13.6+git.211.555d60b24ba-3.7.1.s390x.rpm libndr1-4.13.6+git.211.555d60b24ba-3.7.1.s390x.rpm libnetapi-devel-4.13.6+git.211.555d60b24ba-3.7.1.s390x.rpm libnetapi0-4.13.6+git.211.555d60b24ba-3.7.1.s390x.rpm libsamba-credentials-devel-4.13.6+git.211.555d60b24ba-3.7.1.s390x.rpm libsamba-credentials0-4.13.6+git.211.555d60b24ba-3.7.1.s390x.rpm libsamba-errors-devel-4.13.6+git.211.555d60b24ba-3.7.1.s390x.rpm libsamba-errors0-4.13.6+git.211.555d60b24ba-3.7.1.s390x.rpm libsamba-hostconfig-devel-4.13.6+git.211.555d60b24ba-3.7.1.s390x.rpm libsamba-hostconfig0-4.13.6+git.211.555d60b24ba-3.7.1.s390x.rpm libsamba-passdb-devel-4.13.6+git.211.555d60b24ba-3.7.1.s390x.rpm libsamba-passdb0-4.13.6+git.211.555d60b24ba-3.7.1.s390x.rpm libsamba-policy-devel-4.13.6+git.211.555d60b24ba-3.7.1.s390x.rpm libsamba-policy-python3-devel-4.13.6+git.211.555d60b24ba-3.7.1.s390x.rpm libsamba-policy0-python3-4.13.6+git.211.555d60b24ba-3.7.1.s390x.rpm libsamba-util-devel-4.13.6+git.211.555d60b24ba-3.7.1.s390x.rpm libsamba-util0-4.13.6+git.211.555d60b24ba-3.7.1.s390x.rpm libsamdb-devel-4.13.6+git.211.555d60b24ba-3.7.1.s390x.rpm libsamdb0-4.13.6+git.211.555d60b24ba-3.7.1.s390x.rpm libsmbclient-devel-4.13.6+git.211.555d60b24ba-3.7.1.s390x.rpm libsmbclient0-4.13.6+git.211.555d60b24ba-3.7.1.s390x.rpm libsmbconf-devel-4.13.6+git.211.555d60b24ba-3.7.1.s390x.rpm libsmbconf0-4.13.6+git.211.555d60b24ba-3.7.1.s390x.rpm libsmbldap-devel-4.13.6+git.211.555d60b24ba-3.7.1.s390x.rpm libsmbldap2-4.13.6+git.211.555d60b24ba-3.7.1.s390x.rpm libtevent-util-devel-4.13.6+git.211.555d60b24ba-3.7.1.s390x.rpm libtevent-util0-4.13.6+git.211.555d60b24ba-3.7.1.s390x.rpm libwbclient-devel-4.13.6+git.211.555d60b24ba-3.7.1.s390x.rpm libwbclient0-4.13.6+git.211.555d60b24ba-3.7.1.s390x.rpm samba-4.13.6+git.211.555d60b24ba-3.7.1.s390x.rpm samba-ad-dc-4.13.6+git.211.555d60b24ba-3.7.1.s390x.rpm samba-client-4.13.6+git.211.555d60b24ba-3.7.1.s390x.rpm samba-core-devel-4.13.6+git.211.555d60b24ba-3.7.1.s390x.rpm samba-dsdb-modules-4.13.6+git.211.555d60b24ba-3.7.1.s390x.rpm samba-libs-4.13.6+git.211.555d60b24ba-3.7.1.s390x.rpm samba-libs-python3-4.13.6+git.211.555d60b24ba-3.7.1.s390x.rpm samba-python3-4.13.6+git.211.555d60b24ba-3.7.1.s390x.rpm samba-test-4.13.6+git.211.555d60b24ba-3.7.1.s390x.rpm samba-winbind-4.13.6+git.211.555d60b24ba-3.7.1.s390x.rpm ctdb-4.13.6+git.211.555d60b24ba-3.7.1.ppc64le.rpm ctdb-pcp-pmda-4.13.6+git.211.555d60b24ba-3.7.1.ppc64le.rpm ctdb-tests-4.13.6+git.211.555d60b24ba-3.7.1.ppc64le.rpm libdcerpc-binding0-4.13.6+git.211.555d60b24ba-3.7.1.ppc64le.rpm libdcerpc-devel-4.13.6+git.211.555d60b24ba-3.7.1.ppc64le.rpm libdcerpc-samr-devel-4.13.6+git.211.555d60b24ba-3.7.1.ppc64le.rpm libdcerpc-samr0-4.13.6+git.211.555d60b24ba-3.7.1.ppc64le.rpm libdcerpc0-4.13.6+git.211.555d60b24ba-3.7.1.ppc64le.rpm libndr-devel-4.13.6+git.211.555d60b24ba-3.7.1.ppc64le.rpm libndr-krb5pac-devel-4.13.6+git.211.555d60b24ba-3.7.1.ppc64le.rpm libndr-krb5pac0-4.13.6+git.211.555d60b24ba-3.7.1.ppc64le.rpm libndr-nbt-devel-4.13.6+git.211.555d60b24ba-3.7.1.ppc64le.rpm libndr-nbt0-4.13.6+git.211.555d60b24ba-3.7.1.ppc64le.rpm libndr-standard-devel-4.13.6+git.211.555d60b24ba-3.7.1.ppc64le.rpm libndr-standard0-4.13.6+git.211.555d60b24ba-3.7.1.ppc64le.rpm libndr1-4.13.6+git.211.555d60b24ba-3.7.1.ppc64le.rpm libnetapi-devel-4.13.6+git.211.555d60b24ba-3.7.1.ppc64le.rpm libnetapi0-4.13.6+git.211.555d60b24ba-3.7.1.ppc64le.rpm libsamba-credentials-devel-4.13.6+git.211.555d60b24ba-3.7.1.ppc64le.rpm libsamba-credentials0-4.13.6+git.211.555d60b24ba-3.7.1.ppc64le.rpm libsamba-errors-devel-4.13.6+git.211.555d60b24ba-3.7.1.ppc64le.rpm libsamba-errors0-4.13.6+git.211.555d60b24ba-3.7.1.ppc64le.rpm libsamba-hostconfig-devel-4.13.6+git.211.555d60b24ba-3.7.1.ppc64le.rpm libsamba-hostconfig0-4.13.6+git.211.555d60b24ba-3.7.1.ppc64le.rpm libsamba-passdb-devel-4.13.6+git.211.555d60b24ba-3.7.1.ppc64le.rpm libsamba-passdb0-4.13.6+git.211.555d60b24ba-3.7.1.ppc64le.rpm libsamba-policy-devel-4.13.6+git.211.555d60b24ba-3.7.1.ppc64le.rpm libsamba-policy-python3-devel-4.13.6+git.211.555d60b24ba-3.7.1.ppc64le.rpm libsamba-policy0-python3-4.13.6+git.211.555d60b24ba-3.7.1.ppc64le.rpm libsamba-util-devel-4.13.6+git.211.555d60b24ba-3.7.1.ppc64le.rpm libsamba-util0-4.13.6+git.211.555d60b24ba-3.7.1.ppc64le.rpm libsamdb-devel-4.13.6+git.211.555d60b24ba-3.7.1.ppc64le.rpm libsamdb0-4.13.6+git.211.555d60b24ba-3.7.1.ppc64le.rpm libsmbclient-devel-4.13.6+git.211.555d60b24ba-3.7.1.ppc64le.rpm libsmbclient0-4.13.6+git.211.555d60b24ba-3.7.1.ppc64le.rpm libsmbconf-devel-4.13.6+git.211.555d60b24ba-3.7.1.ppc64le.rpm libsmbconf0-4.13.6+git.211.555d60b24ba-3.7.1.ppc64le.rpm libsmbldap-devel-4.13.6+git.211.555d60b24ba-3.7.1.ppc64le.rpm libsmbldap2-4.13.6+git.211.555d60b24ba-3.7.1.ppc64le.rpm libtevent-util-devel-4.13.6+git.211.555d60b24ba-3.7.1.ppc64le.rpm libtevent-util0-4.13.6+git.211.555d60b24ba-3.7.1.ppc64le.rpm libwbclient-devel-4.13.6+git.211.555d60b24ba-3.7.1.ppc64le.rpm libwbclient0-4.13.6+git.211.555d60b24ba-3.7.1.ppc64le.rpm samba-4.13.6+git.211.555d60b24ba-3.7.1.ppc64le.rpm samba-ad-dc-4.13.6+git.211.555d60b24ba-3.7.1.ppc64le.rpm samba-client-4.13.6+git.211.555d60b24ba-3.7.1.ppc64le.rpm samba-core-devel-4.13.6+git.211.555d60b24ba-3.7.1.ppc64le.rpm samba-dsdb-modules-4.13.6+git.211.555d60b24ba-3.7.1.ppc64le.rpm samba-libs-4.13.6+git.211.555d60b24ba-3.7.1.ppc64le.rpm samba-libs-python3-4.13.6+git.211.555d60b24ba-3.7.1.ppc64le.rpm samba-python3-4.13.6+git.211.555d60b24ba-3.7.1.ppc64le.rpm samba-test-4.13.6+git.211.555d60b24ba-3.7.1.ppc64le.rpm samba-winbind-4.13.6+git.211.555d60b24ba-3.7.1.ppc64le.rpm ctdb-4.13.6+git.211.555d60b24ba-3.7.1.aarch64.rpm ctdb-pcp-pmda-4.13.6+git.211.555d60b24ba-3.7.1.aarch64.rpm ctdb-tests-4.13.6+git.211.555d60b24ba-3.7.1.aarch64.rpm libdcerpc-binding0-4.13.6+git.211.555d60b24ba-3.7.1.aarch64.rpm libdcerpc-devel-4.13.6+git.211.555d60b24ba-3.7.1.aarch64.rpm libdcerpc-samr-devel-4.13.6+git.211.555d60b24ba-3.7.1.aarch64.rpm libdcerpc-samr0-4.13.6+git.211.555d60b24ba-3.7.1.aarch64.rpm libdcerpc0-4.13.6+git.211.555d60b24ba-3.7.1.aarch64.rpm libndr-devel-4.13.6+git.211.555d60b24ba-3.7.1.aarch64.rpm libndr-krb5pac-devel-4.13.6+git.211.555d60b24ba-3.7.1.aarch64.rpm libndr-krb5pac0-4.13.6+git.211.555d60b24ba-3.7.1.aarch64.rpm libndr-nbt-devel-4.13.6+git.211.555d60b24ba-3.7.1.aarch64.rpm libndr-nbt0-4.13.6+git.211.555d60b24ba-3.7.1.aarch64.rpm libndr-standard-devel-4.13.6+git.211.555d60b24ba-3.7.1.aarch64.rpm libndr-standard0-4.13.6+git.211.555d60b24ba-3.7.1.aarch64.rpm libndr1-4.13.6+git.211.555d60b24ba-3.7.1.aarch64.rpm libnetapi-devel-4.13.6+git.211.555d60b24ba-3.7.1.aarch64.rpm libnetapi0-4.13.6+git.211.555d60b24ba-3.7.1.aarch64.rpm libsamba-credentials-devel-4.13.6+git.211.555d60b24ba-3.7.1.aarch64.rpm libsamba-credentials0-4.13.6+git.211.555d60b24ba-3.7.1.aarch64.rpm libsamba-errors-devel-4.13.6+git.211.555d60b24ba-3.7.1.aarch64.rpm libsamba-errors0-4.13.6+git.211.555d60b24ba-3.7.1.aarch64.rpm libsamba-hostconfig-devel-4.13.6+git.211.555d60b24ba-3.7.1.aarch64.rpm libsamba-hostconfig0-4.13.6+git.211.555d60b24ba-3.7.1.aarch64.rpm libsamba-passdb-devel-4.13.6+git.211.555d60b24ba-3.7.1.aarch64.rpm libsamba-passdb0-4.13.6+git.211.555d60b24ba-3.7.1.aarch64.rpm libsamba-policy-devel-4.13.6+git.211.555d60b24ba-3.7.1.aarch64.rpm libsamba-policy-python3-devel-4.13.6+git.211.555d60b24ba-3.7.1.aarch64.rpm libsamba-policy0-python3-4.13.6+git.211.555d60b24ba-3.7.1.aarch64.rpm libsamba-util-devel-4.13.6+git.211.555d60b24ba-3.7.1.aarch64.rpm libsamba-util0-4.13.6+git.211.555d60b24ba-3.7.1.aarch64.rpm libsamdb-devel-4.13.6+git.211.555d60b24ba-3.7.1.aarch64.rpm libsamdb0-4.13.6+git.211.555d60b24ba-3.7.1.aarch64.rpm libsmbclient-devel-4.13.6+git.211.555d60b24ba-3.7.1.aarch64.rpm libsmbclient0-4.13.6+git.211.555d60b24ba-3.7.1.aarch64.rpm libsmbconf-devel-4.13.6+git.211.555d60b24ba-3.7.1.aarch64.rpm libsmbconf0-4.13.6+git.211.555d60b24ba-3.7.1.aarch64.rpm libsmbldap-devel-4.13.6+git.211.555d60b24ba-3.7.1.aarch64.rpm libsmbldap2-4.13.6+git.211.555d60b24ba-3.7.1.aarch64.rpm libtevent-util-devel-4.13.6+git.211.555d60b24ba-3.7.1.aarch64.rpm libtevent-util0-4.13.6+git.211.555d60b24ba-3.7.1.aarch64.rpm libwbclient-devel-4.13.6+git.211.555d60b24ba-3.7.1.aarch64.rpm libwbclient0-4.13.6+git.211.555d60b24ba-3.7.1.aarch64.rpm samba-4.13.6+git.211.555d60b24ba-3.7.1.aarch64.rpm samba-ad-dc-4.13.6+git.211.555d60b24ba-3.7.1.aarch64.rpm samba-ceph-4.13.6+git.211.555d60b24ba-3.7.1.aarch64.rpm samba-client-4.13.6+git.211.555d60b24ba-3.7.1.aarch64.rpm samba-core-devel-4.13.6+git.211.555d60b24ba-3.7.1.aarch64.rpm samba-dsdb-modules-4.13.6+git.211.555d60b24ba-3.7.1.aarch64.rpm samba-libs-4.13.6+git.211.555d60b24ba-3.7.1.aarch64.rpm samba-libs-python3-4.13.6+git.211.555d60b24ba-3.7.1.aarch64.rpm samba-python3-4.13.6+git.211.555d60b24ba-3.7.1.aarch64.rpm samba-test-4.13.6+git.211.555d60b24ba-3.7.1.aarch64.rpm samba-winbind-4.13.6+git.211.555d60b24ba-3.7.1.aarch64.rpm openSUSE-SLE-15.3-2021-1954 Security update for containerd, docker, runc important SUSE Updates openSUSE-SLE 15.3 This update for containerd, docker, runc fixes the following issues: Docker was updated to 20.10.6-ce (bsc#1184768, bsc#1182947, bsc#1181594) * Switch version to use -ce suffix rather than _ce to avoid confusing other tools (bsc#1182476). * CVE-2021-21284: Fixed a potential privilege escalation when the root user in the remapped namespace has access to the host filesystem (bsc#1181732) * CVE-2021-21285: Fixed an issue where pulling a malformed Docker image manifest crashes the dockerd daemon (bsc#1181730). * btrfs quotas being removed by Docker regularly (bsc#1183855, bsc#1175081) runc was updated to v1.0.0~rc93 (bsc#1182451, bsc#1175821 bsc#1184962). * Use the upstream runc package (bsc#1181641, bsc#1181677, bsc#1175821). * Fixed /dev/null is not available (bsc#1168481). * CVE-2021-30465: Fixed a symlink-exchange attack vulnarability (bsc#1185405). containerd was updated to v1.4.4 * CVE-2021-21334: Fixed a potential information leak through environment variables (bsc#1183397). * Handle a requirement from docker (bsc#1181594). Updating docker will restart the docker service, which may stop some of your docker containers. Do you want to proceed with the update? containerd-1.4.4-5.32.1.src.rpm containerd-1.4.4-5.32.1.x86_64.rpm containerd-ctr-1.4.4-5.32.1.x86_64.rpm docker-20.10.6_ce-6.49.3.src.rpm docker-20.10.6_ce-6.49.3.x86_64.rpm docker-bash-completion-20.10.6_ce-6.49.3.noarch.rpm docker-fish-completion-20.10.6_ce-6.49.3.noarch.rpm docker-zsh-completion-20.10.6_ce-6.49.3.noarch.rpm runc-1.0.0~rc93-1.14.2.src.rpm runc-1.0.0~rc93-1.14.2.x86_64.rpm containerd-1.4.4-5.32.1.s390x.rpm containerd-ctr-1.4.4-5.32.1.s390x.rpm docker-20.10.6_ce-6.49.3.s390x.rpm runc-1.0.0~rc93-1.14.2.s390x.rpm containerd-1.4.4-5.32.1.ppc64le.rpm containerd-ctr-1.4.4-5.32.1.ppc64le.rpm docker-20.10.6_ce-6.49.3.ppc64le.rpm runc-1.0.0~rc93-1.14.2.ppc64le.rpm containerd-1.4.4-5.32.1.aarch64.rpm containerd-ctr-1.4.4-5.32.1.aarch64.rpm docker-20.10.6_ce-6.49.3.aarch64.rpm runc-1.0.0~rc93-1.14.2.aarch64.rpm openSUSE-SLE-15.3-2021-3044 Security update for ghostscript critical SUSE Updates openSUSE-SLE 15.3 This update for ghostscript fixes the following issues: Security issue fixed: - CVE-2021-3781: Fixed a trivial -dSAFER bypass command injection (bsc#1190381) Also a hardening fix was added: - Link as position independent executable (bsc#1184123) ghostscript-9.52-155.1.src.rpm ghostscript-9.52-155.1.x86_64.rpm ghostscript-devel-9.52-155.1.x86_64.rpm ghostscript-x11-9.52-155.1.x86_64.rpm libspectre-0.2.8-3.12.1.src.rpm libspectre-devel-0.2.8-3.12.1.x86_64.rpm libspectre1-0.2.8-3.12.1.x86_64.rpm ghostscript-9.52-155.1.s390x.rpm ghostscript-devel-9.52-155.1.s390x.rpm ghostscript-x11-9.52-155.1.s390x.rpm libspectre-devel-0.2.8-3.12.1.s390x.rpm libspectre1-0.2.8-3.12.1.s390x.rpm ghostscript-9.52-155.1.ppc64le.rpm ghostscript-devel-9.52-155.1.ppc64le.rpm ghostscript-x11-9.52-155.1.ppc64le.rpm libspectre-devel-0.2.8-3.12.1.ppc64le.rpm libspectre1-0.2.8-3.12.1.ppc64le.rpm ghostscript-9.52-155.1.aarch64.rpm ghostscript-devel-9.52-155.1.aarch64.rpm ghostscript-x11-9.52-155.1.aarch64.rpm libspectre-devel-0.2.8-3.12.1.aarch64.rpm libspectre1-0.2.8-3.12.1.aarch64.rpm openSUSE-SLE-15.3-2021-2107 Recommended update for golang-github-prometheus-node_exporter moderate SUSE Updates openSUSE-SLE 15.3 This update for golang-github-prometheus-node_exporter fixes the following issues: Update from version 1.0.1 to version 1.1.2 - Bug fixes: - Do not include sources (bsc#1151558) - Handle errors from disabled `Pressure Stall Information (PSI)` subsystem - Sanitize strings from `/sys/class/power_supply` - Silence missing `netclass` errors - Fix `ineffassign` issue - Demote some warning to `Debug` level - `filesystem_freebsd`: Fix label values - Fix various `procfs` parsing errors - Handle no data from the power supply class - `udp_queues_linux.go`: change `upd` to `udp` in two error strings - Fix `node_scrape_collector_success` behavior - Fix `NodeRAIDDegraded` to not use a string rule expressions - Fix `node_md_disks` state label from fail to failed - Handle `EPERM` for syscall in timex collector - `bcache`: fix typo in a metric name - Fix XFS read/write stats - Enhancements: - Improve filter flag names - Add `btrfs` and `powersupplyclass` to list of exporters enabled by default - Add more `InfiniBand` counters - Add a flag to aggregate `ipvs` metrics to avoid high cardinality metrics - Add `backlog/current` queue length to `qdisc` collector - Include `TCP OutRsts` in `netstat` metrics - Add the `pool size` to entropy collector - Remove `CGO` dependencies for OpenBSD amd64 - `bcache`: add `writeback_rate_debug` statistics - Add `check state` for `mdadm` arrays via `node_md_state metric` - Expose `XFS inode` statistics - Expose `zfs zpool` state - Add the ability to pass `collector.supervisord.url` via `SUPERVISORD_URL` environment variable - Features: - Add fiber channel collector - Expose cpu bugs and flags as info metrics. - Add `network_route` collector - Add `zoneinfo` collector golang-github-prometheus-node_exporter-1.1.2-3.9.3.src.rpm golang-github-prometheus-node_exporter-1.1.2-3.9.3.x86_64.rpm golang-github-prometheus-node_exporter-1.1.2-3.9.3.s390x.rpm golang-github-prometheus-node_exporter-1.1.2-3.9.3.ppc64le.rpm golang-github-prometheus-node_exporter-1.1.2-3.9.3.aarch64.rpm openSUSE-SLE-15.3-2021-1984 Recommended update for sbd low SUSE Updates openSUSE-SLE 15.3 This update for sbd fixes the following issues: - Deprecated path "/var/run/" used in systemd-services (bsc#1185182) sbd-1.4.2+20210305.926b554-3.3.1.src.rpm sbd-1.4.2+20210305.926b554-3.3.1.x86_64.rpm sbd-devel-1.4.2+20210305.926b554-3.3.1.x86_64.rpm sbd-1.4.2+20210305.926b554-3.3.1.s390x.rpm sbd-devel-1.4.2+20210305.926b554-3.3.1.s390x.rpm sbd-1.4.2+20210305.926b554-3.3.1.ppc64le.rpm sbd-devel-1.4.2+20210305.926b554-3.3.1.ppc64le.rpm sbd-1.4.2+20210305.926b554-3.3.1.aarch64.rpm sbd-devel-1.4.2+20210305.926b554-3.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-1877 Recommended update for gpm low SUSE Updates openSUSE-SLE 15.3 This update for gpm fixes the following issues: - Removed unnecessary StandardOutput override in the unit definition file. (bsc#1182147) - Fixed a compilation issue when using -fno-common during compilation (bsc#1160873) gpm-1.20.7-7.3.1.src.rpm gpm-1.20.7-7.3.1.x86_64.rpm gpm-devel-1.20.7-7.3.1.x86_64.rpm libgpm2-1.20.7-7.3.1.x86_64.rpm libgpm2-32bit-1.20.7-7.3.1.x86_64.rpm gpm-1.20.7-7.3.1.s390x.rpm gpm-devel-1.20.7-7.3.1.s390x.rpm libgpm2-1.20.7-7.3.1.s390x.rpm gpm-1.20.7-7.3.1.ppc64le.rpm gpm-devel-1.20.7-7.3.1.ppc64le.rpm libgpm2-1.20.7-7.3.1.ppc64le.rpm gpm-1.20.7-7.3.1.aarch64.rpm gpm-devel-1.20.7-7.3.1.aarch64.rpm libgpm2-1.20.7-7.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-1852 Recommended update for libstoragemgmt low SUSE Updates openSUSE-SLE 15.3 This update for libstoragemgmt fixes the following issues: - Moved from /var/run to /run because of deprecation warnings (bsc#1185067) libstoragemgmt-1.8.5-3.3.1.src.rpm libstoragemgmt-1.8.5-3.3.1.x86_64.rpm libstoragemgmt-arcconf-plugin-1.8.5-3.3.1.noarch.rpm libstoragemgmt-devel-1.8.5-3.3.1.x86_64.rpm libstoragemgmt-hpsa-plugin-1.8.5-3.3.1.noarch.rpm libstoragemgmt-local-plugin-1.8.5-3.3.1.noarch.rpm libstoragemgmt-megaraid-plugin-1.8.5-3.3.1.noarch.rpm libstoragemgmt-netapp-plugin-1.8.5-3.3.1.noarch.rpm libstoragemgmt-nfs-plugin-1.8.5-3.3.1.noarch.rpm libstoragemgmt-nfs-plugin-clibs-1.8.5-3.3.1.x86_64.rpm libstoragemgmt-nstor-plugin-1.8.5-3.3.1.noarch.rpm libstoragemgmt-smis-plugin-1.8.5-3.3.1.noarch.rpm libstoragemgmt-targetd-plugin-1.8.5-3.3.1.noarch.rpm libstoragemgmt-udev-1.8.5-3.3.1.x86_64.rpm libstoragemgmt1-1.8.5-3.3.1.x86_64.rpm python3-libstoragemgmt-1.8.5-3.3.1.noarch.rpm python3-libstoragemgmt-clibs-1.8.5-3.3.1.x86_64.rpm libstoragemgmt-1.8.5-3.3.1.s390x.rpm libstoragemgmt-devel-1.8.5-3.3.1.s390x.rpm libstoragemgmt-nfs-plugin-clibs-1.8.5-3.3.1.s390x.rpm libstoragemgmt-udev-1.8.5-3.3.1.s390x.rpm libstoragemgmt1-1.8.5-3.3.1.s390x.rpm python3-libstoragemgmt-clibs-1.8.5-3.3.1.s390x.rpm libstoragemgmt-1.8.5-3.3.1.ppc64le.rpm libstoragemgmt-devel-1.8.5-3.3.1.ppc64le.rpm libstoragemgmt-nfs-plugin-clibs-1.8.5-3.3.1.ppc64le.rpm libstoragemgmt-udev-1.8.5-3.3.1.ppc64le.rpm libstoragemgmt1-1.8.5-3.3.1.ppc64le.rpm python3-libstoragemgmt-clibs-1.8.5-3.3.1.ppc64le.rpm libstoragemgmt-1.8.5-3.3.1.aarch64.rpm libstoragemgmt-devel-1.8.5-3.3.1.aarch64.rpm libstoragemgmt-nfs-plugin-clibs-1.8.5-3.3.1.aarch64.rpm libstoragemgmt-udev-1.8.5-3.3.1.aarch64.rpm libstoragemgmt1-1.8.5-3.3.1.aarch64.rpm python3-libstoragemgmt-clibs-1.8.5-3.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-1986 Recommended update for mcelog low SUSE Updates openSUSE-SLE 15.3 This update for mcelog fixes the following issues: - Removed the deprecated "StandardOutput=syslog" option from the systemd unit file in order to fix a warning from systemd (bsc#1185151) mcelog-175-3.3.1.src.rpm mcelog-175-3.3.1.x86_64.rpm openSUSE-SLE-15.3-2021-1853 Recommended update for exfatprogs moderate SUSE Updates openSUSE-SLE 15.3 This update for exfatprogs fixes the following issue: - Make `set_bit_le()` 64-bit compatible. (bsc#1184882) bitmap data is not written normally in bitmap location s390x (64bit big endian system) and this fix makes it 64-bit compatible. exfatprogs-1.0.4-3.3.1.src.rpm exfatprogs-1.0.4-3.3.1.x86_64.rpm exfatprogs-1.0.4-3.3.1.s390x.rpm exfatprogs-1.0.4-3.3.1.ppc64le.rpm exfatprogs-1.0.4-3.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-1974 Recommended update for kexec-tools moderate SUSE Updates openSUSE-SLE 15.3 This update for kexec-tools fixes the following issue: - Hardening: link as Position-Independent Executable PIE (bsc#1185020). kexec-tools-2.0.20-10.3.1.src.rpm kexec-tools-2.0.20-10.3.1.x86_64.rpm kexec-tools-2.0.20-10.3.1.s390x.rpm kexec-tools-2.0.20-10.3.1.ppc64le.rpm kexec-tools-2.0.20-10.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-1664 Security update for libass moderate SUSE Updates openSUSE-SLE 15.3 This update for libass fixes the following issues: - CVE-2020-24994: Fixed a stack overflow in the parse_tag (bsc#1184153). libass-0.14.0-3.6.1.src.rpm libass-devel-0.14.0-3.6.1.x86_64.rpm libass9-0.14.0-3.6.1.x86_64.rpm libass9-32bit-0.14.0-3.6.1.x86_64.rpm libass-devel-0.14.0-3.6.1.s390x.rpm libass9-0.14.0-3.6.1.s390x.rpm libass-devel-0.14.0-3.6.1.ppc64le.rpm libass9-0.14.0-3.6.1.ppc64le.rpm libass-devel-0.14.0-3.6.1.aarch64.rpm libass9-0.14.0-3.6.1.aarch64.rpm openSUSE-SLE-15.3-2021-2275 Recommended update for yast2-country moderate SUSE Updates openSUSE-SLE 15.3 This update for yast2-country fixes the following issues: - Fix wrong keyboard layout codes. (bsc#1181952) yast2-country-4.3.14-3.3.1.src.rpm yast2-country-4.3.14-3.3.1.x86_64.rpm yast2-country-data-4.3.14-3.3.1.x86_64.rpm yast2-country-4.3.14-3.3.1.s390x.rpm yast2-country-data-4.3.14-3.3.1.s390x.rpm yast2-country-4.3.14-3.3.1.ppc64le.rpm yast2-country-data-4.3.14-3.3.1.ppc64le.rpm yast2-country-4.3.14-3.3.1.aarch64.rpm yast2-country-data-4.3.14-3.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-1833 Recommended update for zypper moderate SUSE Updates openSUSE-SLE 15.3 This update for zypper fixes the following issues: zypper was upgraded to 1.14.44: - man page: Recommend the needs-rebooting command to test whether a system reboot is suggested. - patch: Let a patch's reboot-needed flag overrule included packages. (bsc#1183268) - Quickfix setting "openSUSE_Tumbleweed" as default platform for "MicroOS". (bsc#1153687) - Protect against strict/relaxed user umask via sudo. (bsc#1183589) - xml summary: Add solvables repository alias. (bsc#1182372) libzypp was upgraded from version 17.25.8 to version 17.25.10 - Properly handle permission denied when providing optional files. (bsc#1185239) - Fix service detection with `cgroupv2`. (bsc#1184997) - Add missing includes for GCC 11. (bsc#1181874) - Fix unsafe usage of static in media verifier. - `Solver`: Avoid segfault if no system is loaded. (bsc#1183628) - `MediaVerifier`: Relax media set verification in case of a single not-volatile medium. (bsc#1180851) - Do no cleanup in custom cache dirs. (bsc#1182936) - `ZConfig`: let `pubkeyCachePath` follow `repoCachePath`. libzypp-17.25.10-6.1.src.rpm True libzypp-17.25.10-6.1.x86_64.rpm True libzypp-devel-17.25.10-6.1.x86_64.rpm True libzypp-devel-doc-17.25.10-6.1.x86_64.rpm True zypper-1.14.44-7.1.src.rpm True zypper-1.14.44-7.1.x86_64.rpm True zypper-aptitude-1.14.44-7.1.noarch.rpm True zypper-log-1.14.44-7.1.noarch.rpm True zypper-needs-restarting-1.14.44-7.1.noarch.rpm True libzypp-17.25.10-6.1.s390x.rpm True libzypp-devel-17.25.10-6.1.s390x.rpm True libzypp-devel-doc-17.25.10-6.1.s390x.rpm True zypper-1.14.44-7.1.s390x.rpm True libzypp-17.25.10-6.1.ppc64le.rpm True libzypp-devel-17.25.10-6.1.ppc64le.rpm True libzypp-devel-doc-17.25.10-6.1.ppc64le.rpm True zypper-1.14.44-7.1.ppc64le.rpm True libzypp-17.25.10-6.1.aarch64.rpm True libzypp-devel-17.25.10-6.1.aarch64.rpm True libzypp-devel-doc-17.25.10-6.1.aarch64.rpm True zypper-1.14.44-7.1.aarch64.rpm True openSUSE-SLE-15.3-2021-1806 Security update for python-httplib2 moderate SUSE Updates openSUSE-SLE 15.3 This update for python-httplib2 fixes the following issues: - Update to version 0.19.0 (bsc#1182053). - CVE-2021-21240: Fixed regular expression denial of service via malicious header (bsc#1182053). - CVE-2020-11078: Fixed unescaped part of uri where an attacker could change request headers and body (bsc#1182053). python-httplib2-0.19.0-3.3.1.src.rpm python2-httplib2-0.19.0-3.3.1.noarch.rpm python3-httplib2-0.19.0-3.3.1.noarch.rpm openSUSE-SLE-15.3-2021-1863 Security update for umoci important SUSE Updates openSUSE-SLE 15.3 This update for umoci fixes the following issues: Update to v0.4.7 (bsc#1184147). - CVE-2021-29136: Fixed overwriting of host files via malicious layer (bsc#1184147). umoci-0.4.7-3.12.1.src.rpm umoci-0.4.7-3.12.1.x86_64.rpm umoci-0.4.7-3.12.1.s390x.rpm umoci-0.4.7-3.12.1.ppc64le.rpm umoci-0.4.7-3.12.1.aarch64.rpm openSUSE-SLE-15.3-2021-1942 Security update for qemu important SUSE Updates openSUSE-SLE 15.3 This update for qemu fixes the following issues: - Switch method of splitting off hw-s390x-virtio-gpu-ccw.so as a module to what was accepted upstream (bsc#1181103) - Fix OOB access in sdhci interface (CVE-2020-17380, bsc#1175144, CVE-2020-25085, bsc#1176681, CVE-2021-3409, bsc#1182282) - Fix potential privilege escalation in virtiofsd tool (CVE-2021-20263, bsc#1183373) - Fix OOB access (stack overflow) in rtl8139 NIC emulation (CVE-2021-3416, bsc#1182968) - Fix heap overflow in MSIx emulation (CVE-2020-27821, bsc#1179686) - Fix package scripts to not use hard coded paths for temporary working directories and log files (bsc#1182425) - QEMU BIOS fails to read stage2 loader on s390x (bsc#1186290) - For the record, these issues are fixed in this package already. Most are alternate references to previously mentioned issues: (CVE-2019-15890, bsc#1149813, CVE-2020-8608, bsc#1163019, CVE-2020-14364, bsc#1175534, CVE-2020-25707, bsc#1178683, CVE-2020-25723, bsc#1178935, CVE-2020-29130, bsc#1179477, CVE-2020-29129, bsc#1179484, CVE-2021-3419, bsc#1182975) qemu-5.2.0-17.1.src.rpm qemu-5.2.0-17.1.x86_64.rpm qemu-arm-5.2.0-17.1.x86_64.rpm qemu-audio-alsa-5.2.0-17.1.x86_64.rpm qemu-audio-pa-5.2.0-17.1.x86_64.rpm qemu-audio-spice-5.2.0-17.1.x86_64.rpm qemu-block-curl-5.2.0-17.1.x86_64.rpm qemu-block-dmg-5.2.0-17.1.x86_64.rpm qemu-block-gluster-5.2.0-17.1.x86_64.rpm qemu-block-iscsi-5.2.0-17.1.x86_64.rpm qemu-block-nfs-5.2.0-17.1.x86_64.rpm qemu-block-rbd-5.2.0-17.1.x86_64.rpm qemu-block-ssh-5.2.0-17.1.x86_64.rpm qemu-chardev-baum-5.2.0-17.1.x86_64.rpm qemu-chardev-spice-5.2.0-17.1.x86_64.rpm qemu-extra-5.2.0-17.1.x86_64.rpm qemu-guest-agent-5.2.0-17.1.x86_64.rpm qemu-hw-display-qxl-5.2.0-17.1.x86_64.rpm qemu-hw-display-virtio-gpu-5.2.0-17.1.x86_64.rpm qemu-hw-display-virtio-gpu-pci-5.2.0-17.1.x86_64.rpm qemu-hw-display-virtio-vga-5.2.0-17.1.x86_64.rpm qemu-hw-s390x-virtio-gpu-ccw-5.2.0-17.1.x86_64.rpm qemu-hw-usb-redirect-5.2.0-17.1.x86_64.rpm qemu-hw-usb-smartcard-5.2.0-17.1.x86_64.rpm qemu-ipxe-1.0.0+-17.1.noarch.rpm qemu-ivshmem-tools-5.2.0-17.1.x86_64.rpm qemu-ksm-5.2.0-17.1.x86_64.rpm qemu-kvm-5.2.0-17.1.x86_64.rpm qemu-lang-5.2.0-17.1.x86_64.rpm qemu-microvm-5.2.0-17.1.noarch.rpm qemu-ppc-5.2.0-17.1.x86_64.rpm qemu-s390x-5.2.0-17.1.x86_64.rpm qemu-seabios-1.14.0_0_g155821a-17.1.noarch.rpm qemu-sgabios-8-17.1.noarch.rpm qemu-skiboot-5.2.0-17.1.noarch.rpm qemu-tools-5.2.0-17.1.x86_64.rpm qemu-ui-curses-5.2.0-17.1.x86_64.rpm qemu-ui-gtk-5.2.0-17.1.x86_64.rpm qemu-ui-opengl-5.2.0-17.1.x86_64.rpm qemu-ui-spice-app-5.2.0-17.1.x86_64.rpm qemu-ui-spice-core-5.2.0-17.1.x86_64.rpm qemu-vgabios-1.14.0_0_g155821a-17.1.noarch.rpm qemu-vhost-user-gpu-5.2.0-17.1.x86_64.rpm qemu-x86-5.2.0-17.1.x86_64.rpm qemu-5.2.0-17.1.s390x.rpm qemu-arm-5.2.0-17.1.s390x.rpm qemu-audio-alsa-5.2.0-17.1.s390x.rpm qemu-audio-pa-5.2.0-17.1.s390x.rpm qemu-audio-spice-5.2.0-17.1.s390x.rpm qemu-block-curl-5.2.0-17.1.s390x.rpm qemu-block-dmg-5.2.0-17.1.s390x.rpm qemu-block-gluster-5.2.0-17.1.s390x.rpm qemu-block-iscsi-5.2.0-17.1.s390x.rpm qemu-block-nfs-5.2.0-17.1.s390x.rpm qemu-block-rbd-5.2.0-17.1.s390x.rpm qemu-block-ssh-5.2.0-17.1.s390x.rpm qemu-chardev-baum-5.2.0-17.1.s390x.rpm qemu-chardev-spice-5.2.0-17.1.s390x.rpm qemu-extra-5.2.0-17.1.s390x.rpm qemu-guest-agent-5.2.0-17.1.s390x.rpm qemu-hw-display-qxl-5.2.0-17.1.s390x.rpm qemu-hw-display-virtio-gpu-5.2.0-17.1.s390x.rpm qemu-hw-display-virtio-gpu-pci-5.2.0-17.1.s390x.rpm qemu-hw-display-virtio-vga-5.2.0-17.1.s390x.rpm qemu-hw-s390x-virtio-gpu-ccw-5.2.0-17.1.s390x.rpm qemu-hw-usb-redirect-5.2.0-17.1.s390x.rpm qemu-hw-usb-smartcard-5.2.0-17.1.s390x.rpm qemu-ivshmem-tools-5.2.0-17.1.s390x.rpm qemu-ksm-5.2.0-17.1.s390x.rpm qemu-kvm-5.2.0-17.1.s390x.rpm qemu-lang-5.2.0-17.1.s390x.rpm qemu-ppc-5.2.0-17.1.s390x.rpm qemu-s390x-5.2.0-17.1.s390x.rpm qemu-tools-5.2.0-17.1.s390x.rpm qemu-ui-curses-5.2.0-17.1.s390x.rpm qemu-ui-gtk-5.2.0-17.1.s390x.rpm qemu-ui-opengl-5.2.0-17.1.s390x.rpm qemu-ui-spice-app-5.2.0-17.1.s390x.rpm qemu-ui-spice-core-5.2.0-17.1.s390x.rpm qemu-vhost-user-gpu-5.2.0-17.1.s390x.rpm qemu-x86-5.2.0-17.1.s390x.rpm qemu-5.2.0-17.1.ppc64le.rpm qemu-arm-5.2.0-17.1.ppc64le.rpm qemu-audio-alsa-5.2.0-17.1.ppc64le.rpm qemu-audio-pa-5.2.0-17.1.ppc64le.rpm qemu-audio-spice-5.2.0-17.1.ppc64le.rpm qemu-block-curl-5.2.0-17.1.ppc64le.rpm qemu-block-dmg-5.2.0-17.1.ppc64le.rpm qemu-block-gluster-5.2.0-17.1.ppc64le.rpm qemu-block-iscsi-5.2.0-17.1.ppc64le.rpm qemu-block-nfs-5.2.0-17.1.ppc64le.rpm qemu-block-rbd-5.2.0-17.1.ppc64le.rpm qemu-block-ssh-5.2.0-17.1.ppc64le.rpm qemu-chardev-baum-5.2.0-17.1.ppc64le.rpm qemu-chardev-spice-5.2.0-17.1.ppc64le.rpm qemu-extra-5.2.0-17.1.ppc64le.rpm qemu-guest-agent-5.2.0-17.1.ppc64le.rpm qemu-hw-display-qxl-5.2.0-17.1.ppc64le.rpm qemu-hw-display-virtio-gpu-5.2.0-17.1.ppc64le.rpm qemu-hw-display-virtio-gpu-pci-5.2.0-17.1.ppc64le.rpm qemu-hw-display-virtio-vga-5.2.0-17.1.ppc64le.rpm qemu-hw-s390x-virtio-gpu-ccw-5.2.0-17.1.ppc64le.rpm qemu-hw-usb-redirect-5.2.0-17.1.ppc64le.rpm qemu-hw-usb-smartcard-5.2.0-17.1.ppc64le.rpm qemu-ivshmem-tools-5.2.0-17.1.ppc64le.rpm qemu-ksm-5.2.0-17.1.ppc64le.rpm qemu-lang-5.2.0-17.1.ppc64le.rpm qemu-ppc-5.2.0-17.1.ppc64le.rpm qemu-s390x-5.2.0-17.1.ppc64le.rpm qemu-tools-5.2.0-17.1.ppc64le.rpm qemu-ui-curses-5.2.0-17.1.ppc64le.rpm qemu-ui-gtk-5.2.0-17.1.ppc64le.rpm qemu-ui-opengl-5.2.0-17.1.ppc64le.rpm qemu-ui-spice-app-5.2.0-17.1.ppc64le.rpm qemu-ui-spice-core-5.2.0-17.1.ppc64le.rpm qemu-vhost-user-gpu-5.2.0-17.1.ppc64le.rpm qemu-x86-5.2.0-17.1.ppc64le.rpm qemu-5.2.0-17.1.aarch64.rpm qemu-arm-5.2.0-17.1.aarch64.rpm qemu-audio-alsa-5.2.0-17.1.aarch64.rpm qemu-audio-pa-5.2.0-17.1.aarch64.rpm qemu-audio-spice-5.2.0-17.1.aarch64.rpm qemu-block-curl-5.2.0-17.1.aarch64.rpm qemu-block-dmg-5.2.0-17.1.aarch64.rpm qemu-block-gluster-5.2.0-17.1.aarch64.rpm qemu-block-iscsi-5.2.0-17.1.aarch64.rpm qemu-block-nfs-5.2.0-17.1.aarch64.rpm qemu-block-rbd-5.2.0-17.1.aarch64.rpm qemu-block-ssh-5.2.0-17.1.aarch64.rpm qemu-chardev-baum-5.2.0-17.1.aarch64.rpm qemu-chardev-spice-5.2.0-17.1.aarch64.rpm qemu-extra-5.2.0-17.1.aarch64.rpm qemu-guest-agent-5.2.0-17.1.aarch64.rpm qemu-hw-display-qxl-5.2.0-17.1.aarch64.rpm qemu-hw-display-virtio-gpu-5.2.0-17.1.aarch64.rpm qemu-hw-display-virtio-gpu-pci-5.2.0-17.1.aarch64.rpm qemu-hw-display-virtio-vga-5.2.0-17.1.aarch64.rpm qemu-hw-s390x-virtio-gpu-ccw-5.2.0-17.1.aarch64.rpm qemu-hw-usb-redirect-5.2.0-17.1.aarch64.rpm qemu-hw-usb-smartcard-5.2.0-17.1.aarch64.rpm qemu-ivshmem-tools-5.2.0-17.1.aarch64.rpm qemu-ksm-5.2.0-17.1.aarch64.rpm qemu-lang-5.2.0-17.1.aarch64.rpm qemu-ppc-5.2.0-17.1.aarch64.rpm qemu-s390x-5.2.0-17.1.aarch64.rpm qemu-tools-5.2.0-17.1.aarch64.rpm qemu-ui-curses-5.2.0-17.1.aarch64.rpm qemu-ui-gtk-5.2.0-17.1.aarch64.rpm qemu-ui-opengl-5.2.0-17.1.aarch64.rpm qemu-ui-spice-app-5.2.0-17.1.aarch64.rpm qemu-ui-spice-core-5.2.0-17.1.aarch64.rpm qemu-vhost-user-gpu-5.2.0-17.1.aarch64.rpm qemu-x86-5.2.0-17.1.aarch64.rpm openSUSE-SLE-15.3-2021-1859 Security update for python-py moderate SUSE Updates openSUSE-SLE 15.3 This update for python-py fixes the following issues: - CVE-2020-29651: Fixed regular expression denial of service in svnwc.py (bsc#1179805, bsc#1184505). python-py-1.8.1-5.6.1.src.rpm python2-py-1.8.1-5.6.1.noarch.rpm python3-py-1.8.1-5.6.1.noarch.rpm openSUSE-SLE-15.3-2021-2817 Security update for aws-cli, python-boto3, python-botocore, python-service_identity, python-trustme, python-urllib3 moderate SUSE Updates openSUSE-SLE 15.3 This patch updates the Python AWS SDK stack in SLE 15: General: # aws-cli - Version updated to upstream release v1.19.9 For a detailed list of all changes, please refer to the changelog file of this package. # python-boto3 - Version updated to upstream release 1.17.9 For a detailed list of all changes, please refer to the changelog file of this package. # python-botocore - Version updated to upstream release 1.20.9 For a detailed list of all changes, please refer to the changelog file of this package. # python-urllib3 - Version updated to upstream release 1.25.10 For a detailed list of all changes, please refer to the changelog file of this package. # python-service_identity - Added this new package to resolve runtime dependencies for other packages. Version: 18.1.0 # python-trustme - Added this new package to resolve runtime dependencies for other packages. Version: 0.6.0 Security fixes: # python-urllib3: - CVE-2020-26137: urllib3 before 1.25.9 allows CRLF injection if the attacker controls the HTTP request method, as demonstrated by inserting CR and LF control characters in the first argument of putrequest() (bsc#1177120) aws-cli-1.19.9-26.1.noarch.rpm aws-cli-1.19.9-26.1.src.rpm python-asn1crypto-0.24.0-3.2.1.src.rpm python-boto3-1.17.9-19.1.src.rpm python-botocore-1.20.9-33.1.src.rpm python-cffi-1.13.2-3.2.5.src.rpm python-cryptography-2.8-10.1.src.rpm python-pyasn1-0.4.2-3.2.1.src.rpm python-pycparser-2.17-3.2.1.src.rpm python-urllib3-1.25.10-9.14.1.src.rpm python2-asn1crypto-0.24.0-3.2.1.noarch.rpm python2-boto3-1.17.9-19.1.noarch.rpm python2-botocore-1.20.9-33.1.noarch.rpm python2-cffi-1.13.2-3.2.5.x86_64.rpm python2-cryptography-2.8-10.1.x86_64.rpm python2-pyasn1-0.4.2-3.2.1.noarch.rpm python2-pycparser-2.17-3.2.1.noarch.rpm python2-urllib3-1.25.10-9.14.1.noarch.rpm python3-asn1crypto-0.24.0-3.2.1.noarch.rpm python3-boto3-1.17.9-19.1.noarch.rpm python3-botocore-1.20.9-33.1.noarch.rpm python3-cffi-1.13.2-3.2.5.x86_64.rpm python3-cryptography-2.8-10.1.x86_64.rpm python3-pyasn1-0.4.2-3.2.1.noarch.rpm python3-pycparser-2.17-3.2.1.noarch.rpm python2-cffi-1.13.2-3.2.5.s390x.rpm python2-cryptography-2.8-10.1.s390x.rpm python3-cffi-1.13.2-3.2.5.s390x.rpm python3-cryptography-2.8-10.1.s390x.rpm python2-cffi-1.13.2-3.2.5.ppc64le.rpm python2-cryptography-2.8-10.1.ppc64le.rpm python3-cffi-1.13.2-3.2.5.ppc64le.rpm python3-cryptography-2.8-10.1.ppc64le.rpm python2-cffi-1.13.2-3.2.5.aarch64.rpm python2-cryptography-2.8-10.1.aarch64.rpm python3-cffi-1.13.2-3.2.5.aarch64.rpm python3-cryptography-2.8-10.1.aarch64.rpm openSUSE-SLE-15.3-2021-1526 Recommended update for bash important SUSE Updates openSUSE-SLE 15.3 This update for bash fixes the following issues: - Fixed a segmentation fault that used to occur when bash read a history file that was malformed in a very specific way. (bsc#1183064) bash-4.4-19.3.1.src.rpm bash-4.4-19.3.1.x86_64.rpm bash-devel-4.4-19.3.1.x86_64.rpm bash-doc-4.4-19.3.1.noarch.rpm bash-lang-4.4-19.3.1.noarch.rpm bash-loadables-4.4-19.3.1.x86_64.rpm libreadline7-32bit-7.0-19.3.1.x86_64.rpm libreadline7-7.0-19.3.1.x86_64.rpm readline-devel-32bit-7.0-19.3.1.x86_64.rpm readline-devel-7.0-19.3.1.x86_64.rpm readline-devel-static-7.0-19.3.1.x86_64.rpm readline-doc-7.0-19.3.1.noarch.rpm bash-4.4-19.3.1.s390x.rpm bash-devel-4.4-19.3.1.s390x.rpm bash-loadables-4.4-19.3.1.s390x.rpm libreadline7-7.0-19.3.1.s390x.rpm readline-devel-7.0-19.3.1.s390x.rpm readline-devel-static-7.0-19.3.1.s390x.rpm bash-4.4-19.3.1.ppc64le.rpm bash-devel-4.4-19.3.1.ppc64le.rpm bash-loadables-4.4-19.3.1.ppc64le.rpm libreadline7-7.0-19.3.1.ppc64le.rpm readline-devel-7.0-19.3.1.ppc64le.rpm readline-devel-static-7.0-19.3.1.ppc64le.rpm bash-4.4-19.3.1.aarch64.rpm bash-devel-4.4-19.3.1.aarch64.rpm bash-loadables-4.4-19.3.1.aarch64.rpm libreadline7-7.0-19.3.1.aarch64.rpm readline-devel-7.0-19.3.1.aarch64.rpm readline-devel-static-7.0-19.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-1861 Recommended update for gcc10 moderate SUSE Updates openSUSE-SLE 15.3 This update for gcc10 fixes the following issues: - Disable nvptx offloading for aarch64 again since it doesn't work - Fixed a build failure issue. (bsc#1182016) - Fix for memory miscompilation on 'aarch64'. (bsc#1178624, bsc#1178577) - Fix 32bit 'libgnat.so' link. (bsc#1178675) - prepare usrmerge: Install libgcc_s into %_libdir. ABI wise it stays /%lib. (bsc#1029961) - Build complete set of multilibs for arm-none target. (bsc#1106014) cpp10-10.3.0+git1587-1.6.4.x86_64.rpm cross-aarch64-gcc10-10.3.0+git1587-1.6.3.src.rpm cross-aarch64-gcc10-10.3.0+git1587-1.6.3.x86_64.rpm cross-aarch64-gcc10-icecream-backend-10.3.0+git1587-1.6.3.x86_64.rpm cross-arm-gcc10-10.3.0+git1587-1.6.3.src.rpm cross-arm-gcc10-10.3.0+git1587-1.6.3.x86_64.rpm cross-arm-gcc10-icecream-backend-10.3.0+git1587-1.6.3.x86_64.rpm cross-hppa-gcc10-10.3.0+git1587-1.6.3.src.rpm cross-hppa-gcc10-10.3.0+git1587-1.6.3.x86_64.rpm cross-hppa-gcc10-icecream-backend-10.3.0+git1587-1.6.3.x86_64.rpm cross-i386-gcc10-10.3.0+git1587-1.6.3.src.rpm cross-i386-gcc10-10.3.0+git1587-1.6.3.x86_64.rpm cross-i386-gcc10-icecream-backend-10.3.0+git1587-1.6.3.x86_64.rpm cross-m68k-gcc10-10.3.0+git1587-1.6.3.src.rpm cross-m68k-gcc10-10.3.0+git1587-1.6.3.x86_64.rpm cross-m68k-gcc10-icecream-backend-10.3.0+git1587-1.6.3.x86_64.rpm cross-mips-gcc10-10.3.0+git1587-1.6.3.src.rpm cross-mips-gcc10-10.3.0+git1587-1.6.3.x86_64.rpm cross-mips-gcc10-icecream-backend-10.3.0+git1587-1.6.3.x86_64.rpm cross-nvptx-gcc10-10.3.0+git1587-1.6.3.src.rpm cross-nvptx-gcc10-10.3.0+git1587-1.6.3.x86_64.rpm cross-nvptx-newlib10-devel-10.3.0+git1587-1.6.3.x86_64.rpm cross-ppc64-gcc10-10.3.0+git1587-1.6.3.src.rpm cross-ppc64-gcc10-10.3.0+git1587-1.6.3.x86_64.rpm cross-ppc64-gcc10-icecream-backend-10.3.0+git1587-1.6.3.x86_64.rpm cross-ppc64le-gcc10-10.3.0+git1587-1.6.3.src.rpm cross-ppc64le-gcc10-10.3.0+git1587-1.6.3.x86_64.rpm cross-ppc64le-gcc10-icecream-backend-10.3.0+git1587-1.6.3.x86_64.rpm cross-riscv64-gcc10-10.3.0+git1587-1.6.3.src.rpm cross-riscv64-gcc10-10.3.0+git1587-1.6.3.x86_64.rpm cross-riscv64-gcc10-icecream-backend-10.3.0+git1587-1.6.3.x86_64.rpm cross-s390x-gcc10-10.3.0+git1587-1.6.3.src.rpm cross-s390x-gcc10-10.3.0+git1587-1.6.3.x86_64.rpm cross-s390x-gcc10-icecream-backend-10.3.0+git1587-1.6.3.x86_64.rpm cross-sparc-gcc10-10.3.0+git1587-1.6.3.src.rpm cross-sparc-gcc10-10.3.0+git1587-1.6.3.x86_64.rpm cross-sparc64-gcc10-10.3.0+git1587-1.6.3.src.rpm cross-sparc64-gcc10-10.3.0+git1587-1.6.3.x86_64.rpm cross-sparc64-gcc10-icecream-backend-10.3.0+git1587-1.6.3.x86_64.rpm cross-sparcv9-gcc10-icecream-backend-10.3.0+git1587-1.6.3.x86_64.rpm gcc10-10.3.0+git1587-1.6.4.src.rpm gcc10-10.3.0+git1587-1.6.4.x86_64.rpm gcc10-32bit-10.3.0+git1587-1.6.4.x86_64.rpm gcc10-ada-10.3.0+git1587-1.6.4.x86_64.rpm gcc10-ada-32bit-10.3.0+git1587-1.6.4.x86_64.rpm gcc10-c++-10.3.0+git1587-1.6.4.x86_64.rpm gcc10-c++-32bit-10.3.0+git1587-1.6.4.x86_64.rpm gcc10-d-10.3.0+git1587-1.6.4.x86_64.rpm gcc10-d-32bit-10.3.0+git1587-1.6.4.x86_64.rpm gcc10-fortran-10.3.0+git1587-1.6.4.x86_64.rpm gcc10-fortran-32bit-10.3.0+git1587-1.6.4.x86_64.rpm gcc10-go-10.3.0+git1587-1.6.4.x86_64.rpm gcc10-go-32bit-10.3.0+git1587-1.6.4.x86_64.rpm gcc10-info-10.3.0+git1587-1.6.4.noarch.rpm gcc10-locale-10.3.0+git1587-1.6.4.x86_64.rpm gcc10-obj-c++-10.3.0+git1587-1.6.4.x86_64.rpm gcc10-obj-c++-32bit-10.3.0+git1587-1.6.4.x86_64.rpm gcc10-objc-10.3.0+git1587-1.6.4.x86_64.rpm gcc10-objc-32bit-10.3.0+git1587-1.6.4.x86_64.rpm gcc10-testresults-10.3.0+git1587-1.6.7.src.rpm gcc10-testresults-10.3.0+git1587-1.6.7.x86_64.rpm libada10-10.3.0+git1587-1.6.4.x86_64.rpm libada10-32bit-10.3.0+git1587-1.6.4.x86_64.rpm libasan6-10.3.0+git1587-1.6.4.x86_64.rpm libasan6-32bit-10.3.0+git1587-1.6.4.x86_64.rpm libatomic1-10.3.0+git1587-1.6.4.x86_64.rpm libatomic1-32bit-10.3.0+git1587-1.6.4.x86_64.rpm libgcc_s1-10.3.0+git1587-1.6.4.x86_64.rpm libgcc_s1-32bit-10.3.0+git1587-1.6.4.x86_64.rpm libgdruntime1-10.3.0+git1587-1.6.4.x86_64.rpm libgdruntime1-32bit-10.3.0+git1587-1.6.4.x86_64.rpm libgfortran5-10.3.0+git1587-1.6.4.x86_64.rpm libgfortran5-32bit-10.3.0+git1587-1.6.4.x86_64.rpm libgo16-10.3.0+git1587-1.6.4.x86_64.rpm libgo16-32bit-10.3.0+git1587-1.6.4.x86_64.rpm libgomp1-10.3.0+git1587-1.6.4.x86_64.rpm libgomp1-32bit-10.3.0+git1587-1.6.4.x86_64.rpm libgphobos1-10.3.0+git1587-1.6.4.x86_64.rpm libgphobos1-32bit-10.3.0+git1587-1.6.4.x86_64.rpm libitm1-10.3.0+git1587-1.6.4.x86_64.rpm libitm1-32bit-10.3.0+git1587-1.6.4.x86_64.rpm liblsan0-10.3.0+git1587-1.6.4.x86_64.rpm libobjc4-10.3.0+git1587-1.6.4.x86_64.rpm libobjc4-32bit-10.3.0+git1587-1.6.4.x86_64.rpm libquadmath0-10.3.0+git1587-1.6.4.x86_64.rpm libquadmath0-32bit-10.3.0+git1587-1.6.4.x86_64.rpm libstdc++6-10.3.0+git1587-1.6.4.x86_64.rpm libstdc++6-32bit-10.3.0+git1587-1.6.4.x86_64.rpm libstdc++6-devel-gcc10-10.3.0+git1587-1.6.4.x86_64.rpm libstdc++6-devel-gcc10-32bit-10.3.0+git1587-1.6.4.x86_64.rpm libstdc++6-locale-10.3.0+git1587-1.6.4.x86_64.rpm libstdc++6-pp-gcc10-10.3.0+git1587-1.6.4.x86_64.rpm libstdc++6-pp-gcc10-32bit-10.3.0+git1587-1.6.4.x86_64.rpm libtsan0-10.3.0+git1587-1.6.4.x86_64.rpm libubsan1-10.3.0+git1587-1.6.4.x86_64.rpm libubsan1-32bit-10.3.0+git1587-1.6.4.x86_64.rpm cpp10-10.3.0+git1587-1.6.4.s390x.rpm cross-aarch64-gcc10-10.3.0+git1587-1.6.3.s390x.rpm cross-aarch64-gcc10-icecream-backend-10.3.0+git1587-1.6.3.s390x.rpm cross-arm-gcc10-10.3.0+git1587-1.6.3.s390x.rpm cross-arm-gcc10-icecream-backend-10.3.0+git1587-1.6.3.s390x.rpm cross-hppa-gcc10-10.3.0+git1587-1.6.3.s390x.rpm cross-hppa-gcc10-icecream-backend-10.3.0+git1587-1.6.3.s390x.rpm cross-i386-gcc10-10.3.0+git1587-1.6.3.s390x.rpm cross-i386-gcc10-icecream-backend-10.3.0+git1587-1.6.3.s390x.rpm cross-m68k-gcc10-10.3.0+git1587-1.6.3.s390x.rpm cross-m68k-gcc10-icecream-backend-10.3.0+git1587-1.6.3.s390x.rpm cross-mips-gcc10-10.3.0+git1587-1.6.3.s390x.rpm cross-mips-gcc10-icecream-backend-10.3.0+git1587-1.6.3.s390x.rpm cross-ppc64-gcc10-10.3.0+git1587-1.6.3.s390x.rpm cross-ppc64-gcc10-icecream-backend-10.3.0+git1587-1.6.3.s390x.rpm cross-ppc64le-gcc10-10.3.0+git1587-1.6.3.s390x.rpm cross-ppc64le-gcc10-icecream-backend-10.3.0+git1587-1.6.3.s390x.rpm cross-riscv64-gcc10-10.3.0+git1587-1.6.3.s390x.rpm cross-riscv64-gcc10-icecream-backend-10.3.0+git1587-1.6.3.s390x.rpm cross-sparc-gcc10-10.3.0+git1587-1.6.3.s390x.rpm cross-sparc64-gcc10-10.3.0+git1587-1.6.3.s390x.rpm cross-sparc64-gcc10-icecream-backend-10.3.0+git1587-1.6.3.s390x.rpm cross-sparcv9-gcc10-icecream-backend-10.3.0+git1587-1.6.3.s390x.rpm cross-x86_64-gcc10-10.3.0+git1587-1.6.3.s390x.rpm cross-x86_64-gcc10-10.3.0+git1587-1.6.3.src.rpm cross-x86_64-gcc10-icecream-backend-10.3.0+git1587-1.6.3.s390x.rpm gcc10-10.3.0+git1587-1.6.4.s390x.rpm gcc10-32bit-10.3.0+git1587-1.6.4.s390x.rpm gcc10-ada-10.3.0+git1587-1.6.4.s390x.rpm gcc10-ada-32bit-10.3.0+git1587-1.6.4.s390x.rpm gcc10-c++-10.3.0+git1587-1.6.4.s390x.rpm gcc10-c++-32bit-10.3.0+git1587-1.6.4.s390x.rpm gcc10-d-10.3.0+git1587-1.6.4.s390x.rpm gcc10-d-32bit-10.3.0+git1587-1.6.4.s390x.rpm gcc10-fortran-10.3.0+git1587-1.6.4.s390x.rpm gcc10-fortran-32bit-10.3.0+git1587-1.6.4.s390x.rpm gcc10-go-10.3.0+git1587-1.6.4.s390x.rpm gcc10-go-32bit-10.3.0+git1587-1.6.4.s390x.rpm gcc10-locale-10.3.0+git1587-1.6.4.s390x.rpm gcc10-obj-c++-10.3.0+git1587-1.6.4.s390x.rpm gcc10-obj-c++-32bit-10.3.0+git1587-1.6.4.s390x.rpm gcc10-objc-10.3.0+git1587-1.6.4.s390x.rpm gcc10-objc-32bit-10.3.0+git1587-1.6.4.s390x.rpm gcc10-testresults-10.3.0+git1587-1.6.7.s390x.rpm libada10-10.3.0+git1587-1.6.4.s390x.rpm libada10-32bit-10.3.0+git1587-1.6.4.s390x.rpm libasan6-10.3.0+git1587-1.6.4.s390x.rpm libasan6-32bit-10.3.0+git1587-1.6.4.s390x.rpm libatomic1-10.3.0+git1587-1.6.4.s390x.rpm libatomic1-32bit-10.3.0+git1587-1.6.4.s390x.rpm libgcc_s1-10.3.0+git1587-1.6.4.s390x.rpm libgcc_s1-32bit-10.3.0+git1587-1.6.4.s390x.rpm libgdruntime1-10.3.0+git1587-1.6.4.s390x.rpm libgdruntime1-32bit-10.3.0+git1587-1.6.4.s390x.rpm libgfortran5-10.3.0+git1587-1.6.4.s390x.rpm libgfortran5-32bit-10.3.0+git1587-1.6.4.s390x.rpm libgo16-10.3.0+git1587-1.6.4.s390x.rpm libgo16-32bit-10.3.0+git1587-1.6.4.s390x.rpm libgomp1-10.3.0+git1587-1.6.4.s390x.rpm libgomp1-32bit-10.3.0+git1587-1.6.4.s390x.rpm libgphobos1-10.3.0+git1587-1.6.4.s390x.rpm libgphobos1-32bit-10.3.0+git1587-1.6.4.s390x.rpm libitm1-10.3.0+git1587-1.6.4.s390x.rpm libitm1-32bit-10.3.0+git1587-1.6.4.s390x.rpm libobjc4-10.3.0+git1587-1.6.4.s390x.rpm libobjc4-32bit-10.3.0+git1587-1.6.4.s390x.rpm libstdc++6-10.3.0+git1587-1.6.4.s390x.rpm libstdc++6-32bit-10.3.0+git1587-1.6.4.s390x.rpm libstdc++6-devel-gcc10-10.3.0+git1587-1.6.4.s390x.rpm libstdc++6-devel-gcc10-32bit-10.3.0+git1587-1.6.4.s390x.rpm libstdc++6-locale-10.3.0+git1587-1.6.4.s390x.rpm libstdc++6-pp-gcc10-10.3.0+git1587-1.6.4.s390x.rpm libstdc++6-pp-gcc10-32bit-10.3.0+git1587-1.6.4.s390x.rpm libubsan1-10.3.0+git1587-1.6.4.s390x.rpm libubsan1-32bit-10.3.0+git1587-1.6.4.s390x.rpm cpp10-10.3.0+git1587-1.6.4.ppc64le.rpm cross-aarch64-gcc10-10.3.0+git1587-1.6.3.ppc64le.rpm cross-aarch64-gcc10-icecream-backend-10.3.0+git1587-1.6.3.ppc64le.rpm cross-arm-gcc10-10.3.0+git1587-1.6.3.ppc64le.rpm cross-arm-gcc10-icecream-backend-10.3.0+git1587-1.6.3.ppc64le.rpm cross-hppa-gcc10-10.3.0+git1587-1.6.3.ppc64le.rpm cross-hppa-gcc10-icecream-backend-10.3.0+git1587-1.6.3.ppc64le.rpm cross-i386-gcc10-10.3.0+git1587-1.6.3.ppc64le.rpm cross-i386-gcc10-icecream-backend-10.3.0+git1587-1.6.3.ppc64le.rpm cross-m68k-gcc10-10.3.0+git1587-1.6.3.ppc64le.rpm cross-m68k-gcc10-icecream-backend-10.3.0+git1587-1.6.3.ppc64le.rpm cross-mips-gcc10-10.3.0+git1587-1.6.3.ppc64le.rpm cross-mips-gcc10-icecream-backend-10.3.0+git1587-1.6.3.ppc64le.rpm cross-ppc64-gcc10-10.3.0+git1587-1.6.3.ppc64le.rpm cross-ppc64-gcc10-icecream-backend-10.3.0+git1587-1.6.3.ppc64le.rpm cross-riscv64-gcc10-10.3.0+git1587-1.6.3.ppc64le.rpm cross-riscv64-gcc10-icecream-backend-10.3.0+git1587-1.6.3.ppc64le.rpm cross-s390x-gcc10-10.3.0+git1587-1.6.3.ppc64le.rpm cross-s390x-gcc10-icecream-backend-10.3.0+git1587-1.6.3.ppc64le.rpm cross-sparc-gcc10-10.3.0+git1587-1.6.3.ppc64le.rpm cross-sparc64-gcc10-10.3.0+git1587-1.6.3.ppc64le.rpm cross-sparc64-gcc10-icecream-backend-10.3.0+git1587-1.6.3.ppc64le.rpm cross-sparcv9-gcc10-icecream-backend-10.3.0+git1587-1.6.3.ppc64le.rpm cross-x86_64-gcc10-10.3.0+git1587-1.6.3.ppc64le.rpm cross-x86_64-gcc10-icecream-backend-10.3.0+git1587-1.6.3.ppc64le.rpm gcc10-10.3.0+git1587-1.6.4.ppc64le.rpm gcc10-ada-10.3.0+git1587-1.6.4.ppc64le.rpm gcc10-c++-10.3.0+git1587-1.6.4.ppc64le.rpm gcc10-fortran-10.3.0+git1587-1.6.4.ppc64le.rpm gcc10-go-10.3.0+git1587-1.6.4.ppc64le.rpm gcc10-locale-10.3.0+git1587-1.6.4.ppc64le.rpm gcc10-obj-c++-10.3.0+git1587-1.6.4.ppc64le.rpm gcc10-objc-10.3.0+git1587-1.6.4.ppc64le.rpm gcc10-testresults-10.3.0+git1587-1.6.7.ppc64le.rpm libada10-10.3.0+git1587-1.6.4.ppc64le.rpm libasan6-10.3.0+git1587-1.6.4.ppc64le.rpm libatomic1-10.3.0+git1587-1.6.4.ppc64le.rpm libgcc_s1-10.3.0+git1587-1.6.4.ppc64le.rpm libgfortran5-10.3.0+git1587-1.6.4.ppc64le.rpm libgo16-10.3.0+git1587-1.6.4.ppc64le.rpm libgomp1-10.3.0+git1587-1.6.4.ppc64le.rpm libitm1-10.3.0+git1587-1.6.4.ppc64le.rpm liblsan0-10.3.0+git1587-1.6.4.ppc64le.rpm libobjc4-10.3.0+git1587-1.6.4.ppc64le.rpm libquadmath0-10.3.0+git1587-1.6.4.ppc64le.rpm libstdc++6-10.3.0+git1587-1.6.4.ppc64le.rpm libstdc++6-devel-gcc10-10.3.0+git1587-1.6.4.ppc64le.rpm libstdc++6-locale-10.3.0+git1587-1.6.4.ppc64le.rpm libstdc++6-pp-gcc10-10.3.0+git1587-1.6.4.ppc64le.rpm libtsan0-10.3.0+git1587-1.6.4.ppc64le.rpm libubsan1-10.3.0+git1587-1.6.4.ppc64le.rpm cpp10-10.3.0+git1587-1.6.4.aarch64.rpm cross-arm-gcc10-10.3.0+git1587-1.6.3.aarch64.rpm cross-arm-gcc10-icecream-backend-10.3.0+git1587-1.6.3.aarch64.rpm cross-hppa-gcc10-10.3.0+git1587-1.6.3.aarch64.rpm cross-hppa-gcc10-icecream-backend-10.3.0+git1587-1.6.3.aarch64.rpm cross-i386-gcc10-10.3.0+git1587-1.6.3.aarch64.rpm cross-i386-gcc10-icecream-backend-10.3.0+git1587-1.6.3.aarch64.rpm cross-m68k-gcc10-10.3.0+git1587-1.6.3.aarch64.rpm cross-m68k-gcc10-icecream-backend-10.3.0+git1587-1.6.3.aarch64.rpm cross-mips-gcc10-10.3.0+git1587-1.6.3.aarch64.rpm cross-mips-gcc10-icecream-backend-10.3.0+git1587-1.6.3.aarch64.rpm cross-ppc64-gcc10-10.3.0+git1587-1.6.3.aarch64.rpm cross-ppc64-gcc10-icecream-backend-10.3.0+git1587-1.6.3.aarch64.rpm cross-ppc64le-gcc10-10.3.0+git1587-1.6.3.aarch64.rpm cross-ppc64le-gcc10-icecream-backend-10.3.0+git1587-1.6.3.aarch64.rpm cross-riscv64-gcc10-10.3.0+git1587-1.6.3.aarch64.rpm cross-riscv64-gcc10-icecream-backend-10.3.0+git1587-1.6.3.aarch64.rpm cross-s390x-gcc10-10.3.0+git1587-1.6.3.aarch64.rpm cross-s390x-gcc10-icecream-backend-10.3.0+git1587-1.6.3.aarch64.rpm cross-sparc-gcc10-10.3.0+git1587-1.6.3.aarch64.rpm cross-sparc64-gcc10-10.3.0+git1587-1.6.3.aarch64.rpm cross-sparc64-gcc10-icecream-backend-10.3.0+git1587-1.6.3.aarch64.rpm cross-sparcv9-gcc10-icecream-backend-10.3.0+git1587-1.6.3.aarch64.rpm cross-x86_64-gcc10-10.3.0+git1587-1.6.3.aarch64.rpm cross-x86_64-gcc10-icecream-backend-10.3.0+git1587-1.6.3.aarch64.rpm gcc10-10.3.0+git1587-1.6.4.aarch64.rpm gcc10-ada-10.3.0+git1587-1.6.4.aarch64.rpm gcc10-c++-10.3.0+git1587-1.6.4.aarch64.rpm gcc10-d-10.3.0+git1587-1.6.4.aarch64.rpm gcc10-fortran-10.3.0+git1587-1.6.4.aarch64.rpm gcc10-go-10.3.0+git1587-1.6.4.aarch64.rpm gcc10-locale-10.3.0+git1587-1.6.4.aarch64.rpm gcc10-obj-c++-10.3.0+git1587-1.6.4.aarch64.rpm gcc10-objc-10.3.0+git1587-1.6.4.aarch64.rpm gcc10-testresults-10.3.0+git1587-1.6.7.aarch64.rpm libada10-10.3.0+git1587-1.6.4.aarch64.rpm libasan6-10.3.0+git1587-1.6.4.aarch64.rpm libatomic1-10.3.0+git1587-1.6.4.aarch64.rpm libgcc_s1-10.3.0+git1587-1.6.4.aarch64.rpm libgdruntime1-10.3.0+git1587-1.6.4.aarch64.rpm libgfortran5-10.3.0+git1587-1.6.4.aarch64.rpm libgo16-10.3.0+git1587-1.6.4.aarch64.rpm libgomp1-10.3.0+git1587-1.6.4.aarch64.rpm libgphobos1-10.3.0+git1587-1.6.4.aarch64.rpm libitm1-10.3.0+git1587-1.6.4.aarch64.rpm liblsan0-10.3.0+git1587-1.6.4.aarch64.rpm libobjc4-10.3.0+git1587-1.6.4.aarch64.rpm libstdc++6-10.3.0+git1587-1.6.4.aarch64.rpm libstdc++6-devel-gcc10-10.3.0+git1587-1.6.4.aarch64.rpm libstdc++6-locale-10.3.0+git1587-1.6.4.aarch64.rpm libstdc++6-pp-gcc10-10.3.0+git1587-1.6.4.aarch64.rpm libtsan0-10.3.0+git1587-1.6.4.aarch64.rpm libubsan1-10.3.0+git1587-1.6.4.aarch64.rpm openSUSE-SLE-15.3-2021-1973 Recommended update for libreoffice and xmlsec1 important SUSE Updates openSUSE-SLE 15.3 This update for libreoffice and xmlsec1 fixes the following issues: libreoffice: Update from version 7.1.2.2 to version 7.1.3.2 - Searching in PPTX document makes LibreOffice crash. (bsc#1185797) - Fix a text highlight issue when saving as PPTX. (bsc#1185505) - Recommend `libreoffice-qt5` only when it is actually created - Fix a build error with GCC11. (bsc#1186110) - LibreOffice requires at least java 1.8.0 to run properly. - Fix a potential dataloss in LibreOffice Math. (bsc#1184961, bsc#1184527) The issue occurred only while trying to close the document via shortcuts. In this case LibreOffice Math was closed without asking to save the document. xmlsec1: - Provide missing binaries to SUSE Linux Enterprise 15-SP3 with l3 support level. (bsc#1186706) myspell-dictionaries: - Provide missing binaries to SUSE Linux Enterprise 15-SP3 with l2 support level. (bsc#1186706) libraptor-devel-2.0.15-9.5.1.x86_64.rpm libraptor2-0-2.0.15-9.5.1.x86_64.rpm libraptor2-0-32bit-2.0.15-9.5.1.x86_64.rpm libreoffice-7.1.3.2-4.5.3.src.rpm libreoffice-7.1.3.2-4.5.3.x86_64.rpm libreoffice-base-7.1.3.2-4.5.3.x86_64.rpm libreoffice-base-drivers-postgresql-7.1.3.2-4.5.3.x86_64.rpm libreoffice-branding-upstream-7.1.3.2-4.5.3.noarch.rpm libreoffice-calc-7.1.3.2-4.5.3.x86_64.rpm libreoffice-calc-extensions-7.1.3.2-4.5.3.x86_64.rpm libreoffice-draw-7.1.3.2-4.5.3.x86_64.rpm libreoffice-filters-optional-7.1.3.2-4.5.3.x86_64.rpm libreoffice-gdb-pretty-printers-7.1.3.2-4.5.3.noarch.rpm libreoffice-glade-7.1.3.2-4.5.3.noarch.rpm libreoffice-gnome-7.1.3.2-4.5.3.x86_64.rpm libreoffice-gtk3-7.1.3.2-4.5.3.x86_64.rpm libreoffice-icon-themes-7.1.3.2-4.5.3.noarch.rpm libreoffice-impress-7.1.3.2-4.5.3.x86_64.rpm libreoffice-l10n-af-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-am-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-ar-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-as-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-ast-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-be-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-bg-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-bn-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-bn_IN-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-bo-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-br-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-brx-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-bs-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-ca-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-ca_valencia-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-ckb-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-cs-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-cy-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-da-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-de-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-dgo-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-dsb-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-dz-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-el-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-en-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-en_GB-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-en_ZA-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-eo-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-es-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-et-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-eu-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-fa-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-fi-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-fr-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-fur-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-fy-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-ga-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-gd-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-gl-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-gu-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-gug-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-he-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-hi-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-hr-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-hsb-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-hu-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-id-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-is-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-it-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-ja-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-ka-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-kab-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-kk-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-km-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-kmr_Latn-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-kn-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-ko-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-kok-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-ks-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-lb-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-lo-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-lt-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-lv-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-mai-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-mk-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-ml-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-mn-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-mni-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-mr-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-my-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-nb-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-ne-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-nl-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-nn-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-nr-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-nso-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-oc-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-om-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-or-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-pa-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-pl-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-pt_BR-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-pt_PT-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-ro-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-ru-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-rw-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-sa_IN-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-sat-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-sd-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-si-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-sid-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-sk-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-sl-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-sq-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-sr-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-ss-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-st-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-sv-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-sw_TZ-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-szl-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-ta-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-te-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-tg-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-th-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-tn-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-tr-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-ts-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-tt-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-ug-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-uk-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-uz-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-ve-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-vec-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-vi-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-xh-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-zh_CN-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-zh_TW-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-zu-7.1.3.2-4.5.3.noarch.rpm libreoffice-librelogo-7.1.3.2-4.5.3.x86_64.rpm libreoffice-mailmerge-7.1.3.2-4.5.3.x86_64.rpm libreoffice-math-7.1.3.2-4.5.3.x86_64.rpm libreoffice-officebean-7.1.3.2-4.5.3.x86_64.rpm libreoffice-pyuno-7.1.3.2-4.5.3.x86_64.rpm libreoffice-qt5-7.1.3.2-4.5.3.x86_64.rpm libreoffice-sdk-7.1.3.2-4.5.3.x86_64.rpm libreoffice-sdk-doc-7.1.3.2-4.5.3.x86_64.rpm libreoffice-writer-7.1.3.2-4.5.3.x86_64.rpm libreoffice-writer-extensions-7.1.3.2-4.5.3.x86_64.rpm libreofficekit-7.1.3.2-4.5.3.x86_64.rpm libreofficekit-devel-7.1.3.2-4.5.3.x86_64.rpm libucpp13-1.3.4-3.2.1.x86_64.rpm libxmlsec1-1-1.2.28-7.7.1.x86_64.rpm libxmlsec1-gcrypt1-1.2.28-7.7.1.x86_64.rpm libxmlsec1-gnutls1-1.2.28-7.7.1.x86_64.rpm libxmlsec1-nss1-1.2.28-7.7.1.x86_64.rpm libxmlsec1-openssl1-1.2.28-7.7.1.x86_64.rpm myspell-af_NA-20191219-3.19.1.noarch.rpm myspell-af_ZA-20191219-3.19.1.noarch.rpm myspell-an-20191219-3.19.1.noarch.rpm myspell-an_ES-20191219-3.19.1.noarch.rpm myspell-ar-20191219-3.19.1.noarch.rpm myspell-ar_AE-20191219-3.19.1.noarch.rpm myspell-ar_BH-20191219-3.19.1.noarch.rpm myspell-ar_DZ-20191219-3.19.1.noarch.rpm myspell-ar_EG-20191219-3.19.1.noarch.rpm myspell-ar_IQ-20191219-3.19.1.noarch.rpm myspell-ar_JO-20191219-3.19.1.noarch.rpm myspell-ar_KW-20191219-3.19.1.noarch.rpm myspell-ar_LB-20191219-3.19.1.noarch.rpm myspell-ar_LY-20191219-3.19.1.noarch.rpm myspell-ar_MA-20191219-3.19.1.noarch.rpm myspell-ar_OM-20191219-3.19.1.noarch.rpm myspell-ar_QA-20191219-3.19.1.noarch.rpm myspell-ar_SA-20191219-3.19.1.noarch.rpm myspell-ar_SD-20191219-3.19.1.noarch.rpm myspell-ar_SY-20191219-3.19.1.noarch.rpm myspell-ar_TN-20191219-3.19.1.noarch.rpm myspell-ar_YE-20191219-3.19.1.noarch.rpm myspell-be_BY-20191219-3.19.1.noarch.rpm myspell-bg_BG-20191219-3.19.1.noarch.rpm myspell-bn_BD-20191219-3.19.1.noarch.rpm myspell-bn_IN-20191219-3.19.1.noarch.rpm myspell-bo-20191219-3.19.1.noarch.rpm myspell-bo_CN-20191219-3.19.1.noarch.rpm myspell-bo_IN-20191219-3.19.1.noarch.rpm myspell-br_FR-20191219-3.19.1.noarch.rpm myspell-bs-20191219-3.19.1.noarch.rpm myspell-bs_BA-20191219-3.19.1.noarch.rpm myspell-ca-20191219-3.19.1.noarch.rpm myspell-ca_AD-20191219-3.19.1.noarch.rpm myspell-ca_ES-20191219-3.19.1.noarch.rpm myspell-ca_ES_valencia-20191219-3.19.1.noarch.rpm myspell-ca_FR-20191219-3.19.1.noarch.rpm myspell-ca_IT-20191219-3.19.1.noarch.rpm myspell-cs_CZ-20191219-3.19.1.noarch.rpm myspell-da_DK-20191219-3.19.1.noarch.rpm myspell-de-20191219-3.19.1.noarch.rpm myspell-de_AT-20191219-3.19.1.noarch.rpm myspell-de_CH-20191219-3.19.1.noarch.rpm myspell-de_DE-20191219-3.19.1.noarch.rpm myspell-dictionaries-20191219-3.19.1.src.rpm myspell-dictionaries-20191219-3.19.1.x86_64.rpm myspell-el_GR-20191219-3.19.1.noarch.rpm myspell-en-20191219-3.19.1.noarch.rpm myspell-en_AU-20191219-3.19.1.noarch.rpm myspell-en_BS-20191219-3.19.1.noarch.rpm myspell-en_BZ-20191219-3.19.1.noarch.rpm myspell-en_CA-20191219-3.19.1.noarch.rpm myspell-en_GB-20191219-3.19.1.noarch.rpm myspell-en_GH-20191219-3.19.1.noarch.rpm myspell-en_IE-20191219-3.19.1.noarch.rpm myspell-en_IN-20191219-3.19.1.noarch.rpm myspell-en_JM-20191219-3.19.1.noarch.rpm myspell-en_MW-20191219-3.19.1.noarch.rpm myspell-en_NA-20191219-3.19.1.noarch.rpm myspell-en_NZ-20191219-3.19.1.noarch.rpm myspell-en_PH-20191219-3.19.1.noarch.rpm myspell-en_TT-20191219-3.19.1.noarch.rpm myspell-en_US-20191219-3.19.1.noarch.rpm myspell-en_ZA-20191219-3.19.1.noarch.rpm myspell-en_ZW-20191219-3.19.1.noarch.rpm myspell-es-20191219-3.19.1.noarch.rpm myspell-es_AR-20191219-3.19.1.noarch.rpm myspell-es_BO-20191219-3.19.1.noarch.rpm myspell-es_CL-20191219-3.19.1.noarch.rpm myspell-es_CO-20191219-3.19.1.noarch.rpm myspell-es_CR-20191219-3.19.1.noarch.rpm myspell-es_CU-20191219-3.19.1.noarch.rpm myspell-es_DO-20191219-3.19.1.noarch.rpm myspell-es_EC-20191219-3.19.1.noarch.rpm myspell-es_ES-20191219-3.19.1.noarch.rpm myspell-es_GT-20191219-3.19.1.noarch.rpm myspell-es_HN-20191219-3.19.1.noarch.rpm myspell-es_MX-20191219-3.19.1.noarch.rpm myspell-es_NI-20191219-3.19.1.noarch.rpm myspell-es_PA-20191219-3.19.1.noarch.rpm myspell-es_PE-20191219-3.19.1.noarch.rpm myspell-es_PR-20191219-3.19.1.noarch.rpm myspell-es_PY-20191219-3.19.1.noarch.rpm myspell-es_SV-20191219-3.19.1.noarch.rpm myspell-es_UY-20191219-3.19.1.noarch.rpm myspell-es_VE-20191219-3.19.1.noarch.rpm myspell-et_EE-20191219-3.19.1.noarch.rpm myspell-fr_BE-20191219-3.19.1.noarch.rpm myspell-fr_CA-20191219-3.19.1.noarch.rpm myspell-fr_CH-20191219-3.19.1.noarch.rpm myspell-fr_FR-20191219-3.19.1.noarch.rpm myspell-fr_LU-20191219-3.19.1.noarch.rpm myspell-fr_MC-20191219-3.19.1.noarch.rpm myspell-gd_GB-20191219-3.19.1.noarch.rpm myspell-gl-20191219-3.19.1.noarch.rpm myspell-gl_ES-20191219-3.19.1.noarch.rpm myspell-gu_IN-20191219-3.19.1.noarch.rpm myspell-gug-20191219-3.19.1.noarch.rpm myspell-gug_PY-20191219-3.19.1.noarch.rpm myspell-he_IL-20191219-3.19.1.noarch.rpm myspell-hi_IN-20191219-3.19.1.noarch.rpm myspell-hr_HR-20191219-3.19.1.noarch.rpm myspell-hu_HU-20191219-3.19.1.noarch.rpm myspell-id-20191219-3.19.1.noarch.rpm myspell-id_ID-20191219-3.19.1.noarch.rpm myspell-is-20191219-3.19.1.noarch.rpm myspell-is_IS-20191219-3.19.1.noarch.rpm myspell-it_IT-20191219-3.19.1.noarch.rpm myspell-kmr_Latn-20191219-3.19.1.noarch.rpm myspell-kmr_Latn_SY-20191219-3.19.1.noarch.rpm myspell-kmr_Latn_TR-20191219-3.19.1.noarch.rpm myspell-lightproof-en-20191219-3.19.1.x86_64.rpm myspell-lightproof-hu_HU-20191219-3.19.1.x86_64.rpm myspell-lightproof-pt_BR-20191219-3.19.1.x86_64.rpm myspell-lightproof-ru_RU-20191219-3.19.1.x86_64.rpm myspell-lo_LA-20191219-3.19.1.noarch.rpm myspell-lt_LT-20191219-3.19.1.noarch.rpm myspell-lv_LV-20191219-3.19.1.noarch.rpm myspell-nb_NO-20191219-3.19.1.noarch.rpm myspell-ne_NP-20191219-3.19.1.noarch.rpm myspell-nl_BE-20191219-3.19.1.noarch.rpm myspell-nl_NL-20191219-3.19.1.noarch.rpm myspell-nn_NO-20191219-3.19.1.noarch.rpm myspell-no-20191219-3.19.1.noarch.rpm myspell-oc_FR-20191219-3.19.1.noarch.rpm myspell-pl_PL-20191219-3.19.1.noarch.rpm myspell-pt_AO-20191219-3.19.1.noarch.rpm myspell-pt_BR-20191219-3.19.1.noarch.rpm myspell-pt_PT-20191219-3.19.1.noarch.rpm myspell-ro-20191219-3.19.1.noarch.rpm myspell-ro_RO-20191219-3.19.1.noarch.rpm myspell-ru_RU-20191219-3.19.1.noarch.rpm myspell-si_LK-20191219-3.19.1.noarch.rpm myspell-sk_SK-20191219-3.19.1.noarch.rpm myspell-sl_SI-20191219-3.19.1.noarch.rpm myspell-sq_AL-20191219-3.19.1.noarch.rpm myspell-sr-20191219-3.19.1.noarch.rpm myspell-sr_CS-20191219-3.19.1.noarch.rpm myspell-sr_Latn_CS-20191219-3.19.1.noarch.rpm myspell-sr_Latn_RS-20191219-3.19.1.noarch.rpm myspell-sr_RS-20191219-3.19.1.noarch.rpm myspell-sv_FI-20191219-3.19.1.noarch.rpm myspell-sv_SE-20191219-3.19.1.noarch.rpm myspell-sw_TZ-20191219-3.19.1.noarch.rpm myspell-te-20191219-3.19.1.noarch.rpm myspell-te_IN-20191219-3.19.1.noarch.rpm myspell-th_TH-20191219-3.19.1.noarch.rpm myspell-tr-20191219-3.19.1.noarch.rpm myspell-tr_TR-20191219-3.19.1.noarch.rpm myspell-uk_UA-20191219-3.19.1.noarch.rpm myspell-vi-20191219-3.19.1.noarch.rpm myspell-vi_VN-20191219-3.19.1.noarch.rpm myspell-zu_ZA-20191219-3.19.1.noarch.rpm raptor-2.0.15-9.5.1.src.rpm raptor-2.0.15-9.5.1.x86_64.rpm ucpp-1.3.4-3.2.1.src.rpm ucpp-1.3.4-3.2.1.x86_64.rpm ucpp-devel-1.3.4-3.2.1.x86_64.rpm xmlsec1-1.2.28-7.7.1.src.rpm xmlsec1-1.2.28-7.7.1.x86_64.rpm xmlsec1-devel-1.2.28-7.7.1.x86_64.rpm xmlsec1-gcrypt-devel-1.2.28-7.7.1.x86_64.rpm xmlsec1-gnutls-devel-1.2.28-7.7.1.x86_64.rpm xmlsec1-nss-devel-1.2.28-7.7.1.x86_64.rpm xmlsec1-openssl-devel-1.2.28-7.7.1.x86_64.rpm libraptor-devel-2.0.15-9.5.1.s390x.rpm libraptor2-0-2.0.15-9.5.1.s390x.rpm libucpp13-1.3.4-3.2.1.s390x.rpm libxmlsec1-1-1.2.28-7.7.1.s390x.rpm libxmlsec1-gcrypt1-1.2.28-7.7.1.s390x.rpm libxmlsec1-gnutls1-1.2.28-7.7.1.s390x.rpm libxmlsec1-nss1-1.2.28-7.7.1.s390x.rpm libxmlsec1-openssl1-1.2.28-7.7.1.s390x.rpm myspell-dictionaries-20191219-3.19.1.s390x.rpm myspell-lightproof-en-20191219-3.19.1.s390x.rpm myspell-lightproof-hu_HU-20191219-3.19.1.s390x.rpm myspell-lightproof-pt_BR-20191219-3.19.1.s390x.rpm myspell-lightproof-ru_RU-20191219-3.19.1.s390x.rpm raptor-2.0.15-9.5.1.s390x.rpm ucpp-1.3.4-3.2.1.s390x.rpm ucpp-devel-1.3.4-3.2.1.s390x.rpm xmlsec1-1.2.28-7.7.1.s390x.rpm xmlsec1-devel-1.2.28-7.7.1.s390x.rpm xmlsec1-gcrypt-devel-1.2.28-7.7.1.s390x.rpm xmlsec1-gnutls-devel-1.2.28-7.7.1.s390x.rpm xmlsec1-nss-devel-1.2.28-7.7.1.s390x.rpm xmlsec1-openssl-devel-1.2.28-7.7.1.s390x.rpm libraptor-devel-2.0.15-9.5.1.ppc64le.rpm libraptor2-0-2.0.15-9.5.1.ppc64le.rpm libreoffice-7.1.3.2-4.5.3.ppc64le.rpm libreoffice-base-7.1.3.2-4.5.3.ppc64le.rpm libreoffice-base-drivers-postgresql-7.1.3.2-4.5.3.ppc64le.rpm libreoffice-calc-7.1.3.2-4.5.3.ppc64le.rpm libreoffice-calc-extensions-7.1.3.2-4.5.3.ppc64le.rpm libreoffice-draw-7.1.3.2-4.5.3.ppc64le.rpm libreoffice-filters-optional-7.1.3.2-4.5.3.ppc64le.rpm libreoffice-gnome-7.1.3.2-4.5.3.ppc64le.rpm libreoffice-gtk3-7.1.3.2-4.5.3.ppc64le.rpm libreoffice-impress-7.1.3.2-4.5.3.ppc64le.rpm libreoffice-librelogo-7.1.3.2-4.5.3.ppc64le.rpm libreoffice-mailmerge-7.1.3.2-4.5.3.ppc64le.rpm libreoffice-math-7.1.3.2-4.5.3.ppc64le.rpm libreoffice-officebean-7.1.3.2-4.5.3.ppc64le.rpm libreoffice-pyuno-7.1.3.2-4.5.3.ppc64le.rpm libreoffice-qt5-7.1.3.2-4.5.3.ppc64le.rpm libreoffice-sdk-7.1.3.2-4.5.3.ppc64le.rpm libreoffice-sdk-doc-7.1.3.2-4.5.3.ppc64le.rpm libreoffice-writer-7.1.3.2-4.5.3.ppc64le.rpm libreoffice-writer-extensions-7.1.3.2-4.5.3.ppc64le.rpm libreofficekit-7.1.3.2-4.5.3.ppc64le.rpm libreofficekit-devel-7.1.3.2-4.5.3.ppc64le.rpm libucpp13-1.3.4-3.2.1.ppc64le.rpm libxmlsec1-1-1.2.28-7.7.1.ppc64le.rpm libxmlsec1-gcrypt1-1.2.28-7.7.1.ppc64le.rpm libxmlsec1-gnutls1-1.2.28-7.7.1.ppc64le.rpm libxmlsec1-nss1-1.2.28-7.7.1.ppc64le.rpm libxmlsec1-openssl1-1.2.28-7.7.1.ppc64le.rpm myspell-dictionaries-20191219-3.19.1.ppc64le.rpm myspell-lightproof-en-20191219-3.19.1.ppc64le.rpm myspell-lightproof-hu_HU-20191219-3.19.1.ppc64le.rpm myspell-lightproof-pt_BR-20191219-3.19.1.ppc64le.rpm myspell-lightproof-ru_RU-20191219-3.19.1.ppc64le.rpm raptor-2.0.15-9.5.1.ppc64le.rpm ucpp-1.3.4-3.2.1.ppc64le.rpm ucpp-devel-1.3.4-3.2.1.ppc64le.rpm xmlsec1-1.2.28-7.7.1.ppc64le.rpm xmlsec1-devel-1.2.28-7.7.1.ppc64le.rpm xmlsec1-gcrypt-devel-1.2.28-7.7.1.ppc64le.rpm xmlsec1-gnutls-devel-1.2.28-7.7.1.ppc64le.rpm xmlsec1-nss-devel-1.2.28-7.7.1.ppc64le.rpm xmlsec1-openssl-devel-1.2.28-7.7.1.ppc64le.rpm libraptor-devel-2.0.15-9.5.1.aarch64.rpm libraptor2-0-2.0.15-9.5.1.aarch64.rpm libreoffice-7.1.3.2-4.5.3.aarch64.rpm libreoffice-base-7.1.3.2-4.5.3.aarch64.rpm libreoffice-base-drivers-postgresql-7.1.3.2-4.5.3.aarch64.rpm libreoffice-calc-7.1.3.2-4.5.3.aarch64.rpm libreoffice-calc-extensions-7.1.3.2-4.5.3.aarch64.rpm libreoffice-draw-7.1.3.2-4.5.3.aarch64.rpm libreoffice-filters-optional-7.1.3.2-4.5.3.aarch64.rpm libreoffice-gnome-7.1.3.2-4.5.3.aarch64.rpm libreoffice-gtk3-7.1.3.2-4.5.3.aarch64.rpm libreoffice-impress-7.1.3.2-4.5.3.aarch64.rpm libreoffice-librelogo-7.1.3.2-4.5.3.aarch64.rpm libreoffice-mailmerge-7.1.3.2-4.5.3.aarch64.rpm libreoffice-math-7.1.3.2-4.5.3.aarch64.rpm libreoffice-officebean-7.1.3.2-4.5.3.aarch64.rpm libreoffice-pyuno-7.1.3.2-4.5.3.aarch64.rpm libreoffice-qt5-7.1.3.2-4.5.3.aarch64.rpm libreoffice-sdk-7.1.3.2-4.5.3.aarch64.rpm libreoffice-sdk-doc-7.1.3.2-4.5.3.aarch64.rpm libreoffice-writer-7.1.3.2-4.5.3.aarch64.rpm libreoffice-writer-extensions-7.1.3.2-4.5.3.aarch64.rpm libreofficekit-7.1.3.2-4.5.3.aarch64.rpm libreofficekit-devel-7.1.3.2-4.5.3.aarch64.rpm libucpp13-1.3.4-3.2.1.aarch64.rpm libxmlsec1-1-1.2.28-7.7.1.aarch64.rpm libxmlsec1-gcrypt1-1.2.28-7.7.1.aarch64.rpm libxmlsec1-gnutls1-1.2.28-7.7.1.aarch64.rpm libxmlsec1-nss1-1.2.28-7.7.1.aarch64.rpm libxmlsec1-openssl1-1.2.28-7.7.1.aarch64.rpm myspell-dictionaries-20191219-3.19.1.aarch64.rpm myspell-lightproof-en-20191219-3.19.1.aarch64.rpm myspell-lightproof-hu_HU-20191219-3.19.1.aarch64.rpm myspell-lightproof-pt_BR-20191219-3.19.1.aarch64.rpm myspell-lightproof-ru_RU-20191219-3.19.1.aarch64.rpm raptor-2.0.15-9.5.1.aarch64.rpm ucpp-1.3.4-3.2.1.aarch64.rpm ucpp-devel-1.3.4-3.2.1.aarch64.rpm xmlsec1-1.2.28-7.7.1.aarch64.rpm xmlsec1-devel-1.2.28-7.7.1.aarch64.rpm xmlsec1-gcrypt-devel-1.2.28-7.7.1.aarch64.rpm xmlsec1-gnutls-devel-1.2.28-7.7.1.aarch64.rpm xmlsec1-nss-devel-1.2.28-7.7.1.aarch64.rpm xmlsec1-openssl-devel-1.2.28-7.7.1.aarch64.rpm openSUSE-SLE-15.3-2021-1680 Recommended update for sapwmp moderate SUSE Updates openSUSE-SLE 15.3 This update for sapwmp fixes the following issues: * Call 'sapwmp check' in supportconfig. * Remove 'sapstartsrv' from process tree and enable SLE15SP3 wmp-check. (bsc#1184865) * Install the 'wmp-check' to /usr/sbin * Include a script to check the setup of wmp. * capture: Graceful handling of missing PARENT_COMMANDS * capture: Apply scope limits only when they are non-zero * capture: Parse scope properties from config file sapwmp-0.1+git.1619087532.40eb1b0-3.6.1.src.rpm sapwmp-0.1+git.1619087532.40eb1b0-3.6.1.x86_64.rpm sapwmp-0.1+git.1619087532.40eb1b0-3.6.1.s390x.rpm sapwmp-0.1+git.1619087532.40eb1b0-3.6.1.ppc64le.rpm sapwmp-0.1+git.1619087532.40eb1b0-3.6.1.aarch64.rpm openSUSE-SLE-15.3-2021-2311 Recommended update for yast2-ntp-client moderate SUSE Updates openSUSE-SLE 15.3 This update for yast2-ntp-client fixes the following issues: - Adapted proposal client returning the dhcp ntp servers as strings. (bsc#1185545) yast2-ntp-client-4.3.3-3.3.1.noarch.rpm yast2-ntp-client-4.3.3-3.3.1.src.rpm openSUSE-SLE-15.3-2021-1872 Recommended update for yast2 moderate SUSE Updates openSUSE-SLE 15.3 This update for yast2 fixes the following issues: - Do not crash when a client execution return false. (bsc#1185561, bsc#1180954) - Fixed an issue when calling the registration module crashed YaST. (bsc#1180954) - Revert disable of hibernation based on product and virtual machines. (bsc#1184470) yast2-4.3.62-3.5.1.src.rpm yast2-4.3.62-3.5.1.x86_64.rpm yast2-logs-4.3.62-3.5.1.x86_64.rpm yast2-4.3.62-3.5.1.s390x.rpm yast2-logs-4.3.62-3.5.1.s390x.rpm yast2-4.3.62-3.5.1.ppc64le.rpm yast2-logs-4.3.62-3.5.1.ppc64le.rpm yast2-4.3.62-3.5.1.aarch64.rpm yast2-logs-4.3.62-3.5.1.aarch64.rpm openSUSE-SLE-15.3-2021-2374 Recommended update for yast2-auth-client moderate SUSE Updates openSUSE-SLE 15.3 This update for yast2-auth-client fixes the following issues: - Fix an error importing the configuration when the json does not contain all keys. (bsc#1184630) - Fix 'nss_ldap' package unnecessarily installed. (bsc#1185499) - Fix cli 'help' handling for 'auth-client' and 'ldapkrb'. (bsc#1172340)2 yast2-auth-client-4.3.3-3.3.1.noarch.rpm yast2-auth-client-4.3.3-3.3.1.src.rpm openSUSE-SLE-15.3-2021-1884 Security update for MozillaFirefox important SUSE Updates openSUSE-SLE 15.3 This update for MozillaFirefox fixes the following issues: Firefox Extended Support Release 78.11.0 ESR (bsc#1186696) * CVE-2021-29964: Out of bounds-read when parsing a `WM_COPYDATA` message * CVE-2021-29967: Memory safety bugs fixed in Firefox MozillaFirefox-78.11.0-8.43.1.src.rpm MozillaFirefox-78.11.0-8.43.1.x86_64.rpm MozillaFirefox-branding-upstream-78.11.0-8.43.1.x86_64.rpm MozillaFirefox-buildsymbols-78.11.0-8.43.1.x86_64.rpm MozillaFirefox-devel-78.11.0-8.43.1.x86_64.rpm MozillaFirefox-translations-common-78.11.0-8.43.1.x86_64.rpm MozillaFirefox-translations-other-78.11.0-8.43.1.x86_64.rpm MozillaFirefox-78.11.0-8.43.1.s390x.rpm MozillaFirefox-branding-upstream-78.11.0-8.43.1.s390x.rpm MozillaFirefox-devel-78.11.0-8.43.1.s390x.rpm MozillaFirefox-translations-common-78.11.0-8.43.1.s390x.rpm MozillaFirefox-translations-other-78.11.0-8.43.1.s390x.rpm MozillaFirefox-78.11.0-8.43.1.ppc64le.rpm MozillaFirefox-branding-upstream-78.11.0-8.43.1.ppc64le.rpm MozillaFirefox-devel-78.11.0-8.43.1.ppc64le.rpm MozillaFirefox-translations-common-78.11.0-8.43.1.ppc64le.rpm MozillaFirefox-translations-other-78.11.0-8.43.1.ppc64le.rpm MozillaFirefox-78.11.0-8.43.1.aarch64.rpm MozillaFirefox-branding-upstream-78.11.0-8.43.1.aarch64.rpm MozillaFirefox-devel-78.11.0-8.43.1.aarch64.rpm MozillaFirefox-translations-common-78.11.0-8.43.1.aarch64.rpm MozillaFirefox-translations-other-78.11.0-8.43.1.aarch64.rpm openSUSE-SLE-15.3-2021-2945 Recommended update for open-iscsi moderate SUSE Updates openSUSE-SLE 15.3 This update for open-iscsi fixes the following issues: - Update 'iscsi.service' so that it tries to logon to any "onboot" and firmware targets, in case a target was offline when booted but back up when the service is started. (bsc#1153806) - Merged with latest from upstream, which contains these fixes: * Add "no wait" option to iscsiadm firmware login * Check for ISCSI_ERR_ISCSID_NOTCONN in iscsistart * Log proper error message when AUTH failure occurs * Support the "qede" CMA-card driver. (bsc#1188579) * iscsistart: fix null pointer deref before exit * Set default 'startup' to 'onboot' for FW nodes. (bsc#1185930) iscsiuio-0.7.8.6-32.5.1.x86_64.rpm libopeniscsiusr0_2_0-2.1.4-32.5.1.x86_64.rpm open-iscsi-2.1.4-32.5.1.src.rpm open-iscsi-2.1.4-32.5.1.x86_64.rpm open-iscsi-devel-2.1.4-32.5.1.x86_64.rpm iscsiuio-0.7.8.6-32.5.1.s390x.rpm libopeniscsiusr0_2_0-2.1.4-32.5.1.s390x.rpm open-iscsi-2.1.4-32.5.1.s390x.rpm open-iscsi-devel-2.1.4-32.5.1.s390x.rpm iscsiuio-0.7.8.6-32.5.1.ppc64le.rpm libopeniscsiusr0_2_0-2.1.4-32.5.1.ppc64le.rpm open-iscsi-2.1.4-32.5.1.ppc64le.rpm open-iscsi-devel-2.1.4-32.5.1.ppc64le.rpm iscsiuio-0.7.8.6-32.5.1.aarch64.rpm libopeniscsiusr0_2_0-2.1.4-32.5.1.aarch64.rpm open-iscsi-2.1.4-32.5.1.aarch64.rpm open-iscsi-devel-2.1.4-32.5.1.aarch64.rpm openSUSE-SLE-15.3-2021-2464 Recommended update for shim moderate SUSE Updates openSUSE-SLE 15.3 This update for shim fixes the following issues: - shim-install: Always assume "removable" for Azure to avoid the endless reset loop (bsc#1185464) - Avoid deleting the mirrored RT variables (bsc#1187696) - Split the keys in vendor-dbx.bin to vendor-dbx-sles and vendor-dbx-opensuse for shim-sles and shim-opensuse to reduce the size of MokListXRT (bsc#1185261) + Also update generate-vendor-dbx.sh in dbx-cert.tar.xz - Handle ignore_db and user_insecure_mode correctly (bsc#1185441, bsc#1187071) - Relax the maximum variable size check for u-boot (bsc#1185621) - Relax the check for import_mok_state() when Secure Boot is off. (bsc#1185261) - Ignore the odd LoadOptions length (bsc#1185232) - shim-install: reset def_shim_efi to "shim.efi" if the given file doesn't exist - Fided the size of rela sections for AArch64 - Disable exporting vendor-dbx to MokListXRT since writing a large RT variable could crash some machines (bsc#1185261) - Avoid potential crash when calling QueryVariableInfo in EFI 1.10 machines (bsc#1187260) - Avoid buffer overflow when copying data to the MOK config table (bsc#1185232) shim-15.4-4.7.1.src.rpm shim-15.4-4.7.1.x86_64.rpm shim-15.4-4.7.1.aarch64.rpm openSUSE-SLE-15.3-2021-1997 Recommended update for tpm2.0-abrmd moderate SUSE Updates openSUSE-SLE 15.3 This update for tpm2.0-abrmd fixes the following issue: - Remove deprecated `syslog` option from `systemd unit` file to prevent deprecation warning. (bsc#1185154) libtss2-tcti-tabrmd0-2.3.3-3.3.1.x86_64.rpm tpm2.0-abrmd-2.3.3-3.3.1.src.rpm tpm2.0-abrmd-2.3.3-3.3.1.x86_64.rpm tpm2.0-abrmd-devel-2.3.3-3.3.1.x86_64.rpm libtss2-tcti-tabrmd0-2.3.3-3.3.1.s390x.rpm tpm2.0-abrmd-2.3.3-3.3.1.s390x.rpm tpm2.0-abrmd-devel-2.3.3-3.3.1.s390x.rpm libtss2-tcti-tabrmd0-2.3.3-3.3.1.ppc64le.rpm tpm2.0-abrmd-2.3.3-3.3.1.ppc64le.rpm tpm2.0-abrmd-devel-2.3.3-3.3.1.ppc64le.rpm libtss2-tcti-tabrmd0-2.3.3-3.3.1.aarch64.rpm tpm2.0-abrmd-2.3.3-3.3.1.aarch64.rpm tpm2.0-abrmd-devel-2.3.3-3.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-2106 Security update for salt critical SUSE Updates openSUSE-SLE 15.3 This update for salt fixes the following issues: Update to Salt release version 3002.2 (jsc#ECO-3212, jsc#SLE-18033, jsc#SLE-18028) - Check if dpkgnotify is executable (bsc#1186674) - Drop support for Python2. Obsoletes `python2-salt` package (jsc#SLE-18028) - virt module updates * network: handle missing ipv4 netmask attribute * more network support * PCI/USB host devices passthrough support - Set distro requirement to oldest supported version in requirements/base.txt - Bring missing part of async batch implementation back (CVE-2021-25315, bsc#1182382) - Always require `python3-distro` (bsc#1182293) - Remove deprecated warning that breaks minion execution when "server_id_use_crc" opts is missing - Fix pkg states when DEB package has "all" arch - Do not force beacons configuration to be a list. - Remove msgpack < 1.0.0 from base requirements (bsc#1176293) - msgpack support for version >= 1.0.0 (bsc#1171257) - Fix issue parsing errors in ansiblegate state module - Prevent command injection in the snapper module (bsc#1185281, CVE-2021-31607) - transactional_update: detect recursion in the executor - Add subpackage salt-transactional-update (jsc#SLE-18033) - Improvements on "ansiblegate" module (bsc#1185092): * New methods: ansible.targets / ansible.discover_playbooks - Add support for Alibaba Cloud Linux 2 (Aliyun Linux) - Regression fix of salt-ssh on processing targets - Update target fix for salt-ssh and avoiding race condition on salt-ssh event processing (bsc#1179831, bsc#1182281) - Add notify beacon for Debian/Ubuntu systems - Fix zmq bug that causes salt-call to freeze (bsc#1181368) python-distro-1.5.0-3.5.1.src.rpm True python2-distro-1.5.0-3.5.1.noarch.rpm True python3-distro-1.5.0-3.5.1.noarch.rpm True openSUSE-SLE-15.3-2021-2141 Recommended update for libstorage-ng moderate SUSE Updates openSUSE-SLE 15.3 This update for libstorage-ng fixes the following issues: - Fixed an issue when the installer fails to delete partitions on SD cards (bsc#1185610) - Remove double mount options to fix partition setup in AutoYaST. (bsc#1186298) libstorage-ng-4.3.108-3.5.1.src.rpm libstorage-ng-devel-4.3.108-3.5.1.x86_64.rpm libstorage-ng-integration-tests-4.3.108-3.5.1.x86_64.rpm libstorage-ng-lang-4.3.108-3.5.1.noarch.rpm libstorage-ng-python3-4.3.108-3.5.1.x86_64.rpm libstorage-ng-ruby-4.3.108-3.5.1.x86_64.rpm libstorage-ng-utils-4.3.108-3.5.1.x86_64.rpm libstorage-ng1-4.3.108-3.5.1.x86_64.rpm libstorage-ng-devel-4.3.108-3.5.1.s390x.rpm libstorage-ng-integration-tests-4.3.108-3.5.1.s390x.rpm libstorage-ng-python3-4.3.108-3.5.1.s390x.rpm libstorage-ng-ruby-4.3.108-3.5.1.s390x.rpm libstorage-ng-utils-4.3.108-3.5.1.s390x.rpm libstorage-ng1-4.3.108-3.5.1.s390x.rpm libstorage-ng-devel-4.3.108-3.5.1.ppc64le.rpm libstorage-ng-integration-tests-4.3.108-3.5.1.ppc64le.rpm libstorage-ng-python3-4.3.108-3.5.1.ppc64le.rpm libstorage-ng-ruby-4.3.108-3.5.1.ppc64le.rpm libstorage-ng-utils-4.3.108-3.5.1.ppc64le.rpm libstorage-ng1-4.3.108-3.5.1.ppc64le.rpm libstorage-ng-devel-4.3.108-3.5.1.aarch64.rpm libstorage-ng-integration-tests-4.3.108-3.5.1.aarch64.rpm libstorage-ng-python3-4.3.108-3.5.1.aarch64.rpm libstorage-ng-ruby-4.3.108-3.5.1.aarch64.rpm libstorage-ng-utils-4.3.108-3.5.1.aarch64.rpm libstorage-ng1-4.3.108-3.5.1.aarch64.rpm openSUSE-SLE-15.3-2021-2482 Recommended update for autoyast2 moderate SUSE Updates openSUSE-SLE 15.3 This update for autoyast2, yast2-registration, yast2-schema and yast2-users fixes the following issues: - During autoupgrade do not try to register the system if it is explicitly disabled in the profile. (bsc#1176965) - Consider 'static_text' as a valid value for 'ask/type' elements. (bsc#1185909) - Install packages in the PackagesProposal during autoupgrade. (bsc#1184488) - Recommend 'icewm' in graphical installation. (bsc#1185095) - Import proxy settings during the 1st stage of the installation (bsc#1185016) - Do not crash when the general/storage section is empty (bsc#1187180) - AutoYaST: do not crash when cloning a registered system with no registration code. (bsc#1184216) - Fix the comment entry in the desktop file so the tooltip in the control center is properly translated. (bsc#1187270) - Properly register the script to reboot after applying online updates. (bsc#1187962) - Add missing elements to 'rules.xml' schema. (bsc#1176089, bsc#1188153) - Do not export the general/storage section when it is empty to prevent installation failing. (bsc#1171356, bsc#1187916) - Show warning when reading system settings fails (bsc#1177183) - Show errors when loading addons fails (bsc#1187844). - Copy the files to the right location when a 'file_location' is given. (bsc#1188357) - Add 'Security#SafeRead' to allow detecting read errors when calling it from perl modules. (bsc#1177183) - Do not rewrite authorized_keys unless it is needed. (bsc#1188361) autoyast2-4.3.86-3.17.1.noarch.rpm autoyast2-4.3.86-3.17.1.src.rpm autoyast2-installation-4.3.86-3.17.1.noarch.rpm yast2-registration-4.3.23-3.6.1.noarch.rpm yast2-registration-4.3.23-3.6.1.src.rpm yast2-schema-4.3.23-3.3.2.src.rpm yast2-schema-4.3.23-3.3.2.x86_64.rpm yast2-security-4.3.17-3.3.1.noarch.rpm yast2-security-4.3.17-3.3.1.src.rpm yast2-users-4.3.14-3.8.1.src.rpm yast2-users-4.3.14-3.8.1.x86_64.rpm yast2-schema-4.3.23-3.3.2.s390x.rpm yast2-users-4.3.14-3.8.1.s390x.rpm yast2-schema-4.3.23-3.3.2.ppc64le.rpm yast2-users-4.3.14-3.8.1.ppc64le.rpm yast2-schema-4.3.23-3.3.2.aarch64.rpm yast2-users-4.3.14-3.8.1.aarch64.rpm openSUSE-SLE-15.3-2021-1677 Recommended update for purge-kernels-service low SUSE Updates openSUSE-SLE 15.3 This update for purge-kernels-service fixes the following issues: - Add 'ZYPP_LOCK_TIMEOUT=-1' to keep waiting for the lock to avoid possible conflict with other background services uding zypper. (bsc#1184399) purge-kernels-service-0-8.3.1.noarch.rpm purge-kernels-service-0-8.3.1.src.rpm openSUSE-SLE-15.3-2021-1773 Recommended update for python3 low SUSE Updates openSUSE-SLE 15.3 This update for python3 fixes the following issues: - Make sure to close the import_failed.map file after the exception has been raised in order to avoid ResourceWarnings when the failing import is part of a try...except block. libpython3_6m1_0-3.6.13-3.84.1.x86_64.rpm libpython3_6m1_0-32bit-3.6.13-3.84.1.x86_64.rpm python3-3.6.13-3.84.1.src.rpm python3-3.6.13-3.84.1.x86_64.rpm python3-32bit-3.6.13-3.84.1.x86_64.rpm python3-base-3.6.13-3.84.1.x86_64.rpm python3-base-32bit-3.6.13-3.84.1.x86_64.rpm python3-core-3.6.13-3.84.1.src.rpm python3-curses-3.6.13-3.84.1.x86_64.rpm python3-dbm-3.6.13-3.84.1.x86_64.rpm python3-devel-3.6.13-3.84.1.x86_64.rpm python3-doc-devhelp-3.6.13-3.84.1.x86_64.rpm python3-documentation-3.6.13-3.84.1.src.rpm python3-idle-3.6.13-3.84.1.x86_64.rpm python3-testsuite-3.6.13-3.84.1.x86_64.rpm python3-tk-3.6.13-3.84.1.x86_64.rpm python3-tools-3.6.13-3.84.1.x86_64.rpm libpython3_6m1_0-3.6.13-3.84.1.s390x.rpm python3-3.6.13-3.84.1.s390x.rpm python3-base-3.6.13-3.84.1.s390x.rpm python3-curses-3.6.13-3.84.1.s390x.rpm python3-dbm-3.6.13-3.84.1.s390x.rpm python3-devel-3.6.13-3.84.1.s390x.rpm python3-doc-devhelp-3.6.13-3.84.1.s390x.rpm python3-idle-3.6.13-3.84.1.s390x.rpm python3-testsuite-3.6.13-3.84.1.s390x.rpm python3-tk-3.6.13-3.84.1.s390x.rpm python3-tools-3.6.13-3.84.1.s390x.rpm libpython3_6m1_0-3.6.13-3.84.1.ppc64le.rpm python3-3.6.13-3.84.1.ppc64le.rpm python3-base-3.6.13-3.84.1.ppc64le.rpm python3-curses-3.6.13-3.84.1.ppc64le.rpm python3-dbm-3.6.13-3.84.1.ppc64le.rpm python3-devel-3.6.13-3.84.1.ppc64le.rpm python3-doc-devhelp-3.6.13-3.84.1.ppc64le.rpm python3-idle-3.6.13-3.84.1.ppc64le.rpm python3-testsuite-3.6.13-3.84.1.ppc64le.rpm python3-tk-3.6.13-3.84.1.ppc64le.rpm python3-tools-3.6.13-3.84.1.ppc64le.rpm libpython3_6m1_0-3.6.13-3.84.1.aarch64.rpm python3-3.6.13-3.84.1.aarch64.rpm python3-base-3.6.13-3.84.1.aarch64.rpm python3-curses-3.6.13-3.84.1.aarch64.rpm python3-dbm-3.6.13-3.84.1.aarch64.rpm python3-devel-3.6.13-3.84.1.aarch64.rpm python3-doc-devhelp-3.6.13-3.84.1.aarch64.rpm python3-idle-3.6.13-3.84.1.aarch64.rpm python3-testsuite-3.6.13-3.84.1.aarch64.rpm python3-tk-3.6.13-3.84.1.aarch64.rpm python3-tools-3.6.13-3.84.1.aarch64.rpm openSUSE-SLE-15.3-2021-1759 Security update for rubygem-actionpack-5_1 important SUSE Updates openSUSE-SLE 15.3 This update for rubygem-actionpack-5_1 fixes the following issues: - CVE-2021-22885: Fixed possible information disclosure / unintended method execution in Action Pack (bsc#1185715). ruby2.5-rubygem-actionpack-5_1-5.1.4-3.9.1.x86_64.rpm ruby2.5-rubygem-actionpack-doc-5_1-5.1.4-3.9.1.x86_64.rpm rubygem-actionpack-5_1-5.1.4-3.9.1.src.rpm ruby2.5-rubygem-actionpack-5_1-5.1.4-3.9.1.s390x.rpm ruby2.5-rubygem-actionpack-doc-5_1-5.1.4-3.9.1.s390x.rpm ruby2.5-rubygem-actionpack-5_1-5.1.4-3.9.1.ppc64le.rpm ruby2.5-rubygem-actionpack-doc-5_1-5.1.4-3.9.1.ppc64le.rpm ruby2.5-rubygem-actionpack-5_1-5.1.4-3.9.1.aarch64.rpm ruby2.5-rubygem-actionpack-doc-5_1-5.1.4-3.9.1.aarch64.rpm openSUSE-SLE-15.3-2021-1797 Recommended update for python-aliyun-img-utils, python-click-man, python-crcmod, python-oss2 moderate SUSE Updates openSUSE-SLE 15.3 This update for python-aliyun-img-utils, python-click-man, python-crcmod, python-oss2 fixes the following issues: - Include in SLE-15 (bsc#1181995, jsc#ECO-3329, jsc#PM-2475) - Cleanup spec file - Use fdupes - Do not bundle html doc - singlespec auto-conversion - Include in SLE 12 (FATE #316168) - No need to use upstream tarball, download PyPI tarball instead - Switch to github archive as the tests are not present on pypi version. - Initial build python-aliyun-img-utils-1.1.0-5.4.2.src.rpm python-click-man-0.4.1-5.3.2.src.rpm python-crcmod-1.7-5.3.2.src.rpm python-oss2-2.14.0-5.3.2.src.rpm python2-click-man-0.4.1-5.3.2.noarch.rpm python2-crcmod-1.7-5.3.2.x86_64.rpm python3-aliyun-img-utils-1.1.0-5.4.2.x86_64.rpm python3-click-man-0.4.1-5.3.2.noarch.rpm python3-crcmod-1.7-5.3.2.x86_64.rpm python3-oss2-2.14.0-5.3.2.noarch.rpm python2-crcmod-1.7-5.3.2.s390x.rpm python3-aliyun-img-utils-1.1.0-5.4.2.s390x.rpm python3-crcmod-1.7-5.3.2.s390x.rpm python2-crcmod-1.7-5.3.2.ppc64le.rpm python3-aliyun-img-utils-1.1.0-5.4.2.ppc64le.rpm python3-crcmod-1.7-5.3.2.ppc64le.rpm python2-crcmod-1.7-5.3.2.aarch64.rpm python3-aliyun-img-utils-1.1.0-5.4.2.aarch64.rpm python3-crcmod-1.7-5.3.2.aarch64.rpm openSUSE-SLE-15.3-2021-1651 Security update for graphviz critical SUSE Updates openSUSE-SLE 15.3 This update for graphviz fixes the following issues: - CVE-2020-18032: Fixed possible remote code execution via buffer overflow (bsc#1185833). graphviz-2.40.1-6.9.1.src.rpm graphviz-2.40.1-6.9.1.x86_64.rpm graphviz-addons-2.40.1-6.9.1.src.rpm graphviz-devel-2.40.1-6.9.1.x86_64.rpm graphviz-doc-2.40.1-6.9.1.x86_64.rpm graphviz-gd-2.40.1-6.9.1.x86_64.rpm graphviz-gnome-2.40.1-6.9.1.x86_64.rpm graphviz-guile-2.40.1-6.9.1.x86_64.rpm graphviz-gvedit-2.40.1-6.9.1.x86_64.rpm graphviz-java-2.40.1-6.9.1.x86_64.rpm graphviz-lua-2.40.1-6.9.1.x86_64.rpm graphviz-perl-2.40.1-6.9.1.x86_64.rpm graphviz-php-2.40.1-6.9.1.x86_64.rpm graphviz-plugins-core-2.40.1-6.9.1.x86_64.rpm graphviz-python-2.40.1-6.9.1.x86_64.rpm graphviz-ruby-2.40.1-6.9.1.x86_64.rpm graphviz-smyrna-2.40.1-6.9.1.x86_64.rpm graphviz-tcl-2.40.1-6.9.1.x86_64.rpm libgraphviz6-2.40.1-6.9.1.x86_64.rpm graphviz-2.40.1-6.9.1.s390x.rpm graphviz-devel-2.40.1-6.9.1.s390x.rpm graphviz-doc-2.40.1-6.9.1.s390x.rpm graphviz-gd-2.40.1-6.9.1.s390x.rpm graphviz-gnome-2.40.1-6.9.1.s390x.rpm graphviz-guile-2.40.1-6.9.1.s390x.rpm graphviz-gvedit-2.40.1-6.9.1.s390x.rpm graphviz-java-2.40.1-6.9.1.s390x.rpm graphviz-lua-2.40.1-6.9.1.s390x.rpm graphviz-perl-2.40.1-6.9.1.s390x.rpm graphviz-php-2.40.1-6.9.1.s390x.rpm graphviz-plugins-core-2.40.1-6.9.1.s390x.rpm graphviz-python-2.40.1-6.9.1.s390x.rpm graphviz-ruby-2.40.1-6.9.1.s390x.rpm graphviz-smyrna-2.40.1-6.9.1.s390x.rpm graphviz-tcl-2.40.1-6.9.1.s390x.rpm libgraphviz6-2.40.1-6.9.1.s390x.rpm graphviz-2.40.1-6.9.1.ppc64le.rpm graphviz-devel-2.40.1-6.9.1.ppc64le.rpm graphviz-doc-2.40.1-6.9.1.ppc64le.rpm graphviz-gd-2.40.1-6.9.1.ppc64le.rpm graphviz-gnome-2.40.1-6.9.1.ppc64le.rpm graphviz-guile-2.40.1-6.9.1.ppc64le.rpm graphviz-gvedit-2.40.1-6.9.1.ppc64le.rpm graphviz-java-2.40.1-6.9.1.ppc64le.rpm graphviz-lua-2.40.1-6.9.1.ppc64le.rpm graphviz-perl-2.40.1-6.9.1.ppc64le.rpm graphviz-php-2.40.1-6.9.1.ppc64le.rpm graphviz-plugins-core-2.40.1-6.9.1.ppc64le.rpm graphviz-python-2.40.1-6.9.1.ppc64le.rpm graphviz-ruby-2.40.1-6.9.1.ppc64le.rpm graphviz-smyrna-2.40.1-6.9.1.ppc64le.rpm graphviz-tcl-2.40.1-6.9.1.ppc64le.rpm libgraphviz6-2.40.1-6.9.1.ppc64le.rpm graphviz-2.40.1-6.9.1.aarch64.rpm graphviz-devel-2.40.1-6.9.1.aarch64.rpm graphviz-doc-2.40.1-6.9.1.aarch64.rpm graphviz-gd-2.40.1-6.9.1.aarch64.rpm graphviz-gnome-2.40.1-6.9.1.aarch64.rpm graphviz-guile-2.40.1-6.9.1.aarch64.rpm graphviz-gvedit-2.40.1-6.9.1.aarch64.rpm graphviz-java-2.40.1-6.9.1.aarch64.rpm graphviz-lua-2.40.1-6.9.1.aarch64.rpm graphviz-perl-2.40.1-6.9.1.aarch64.rpm graphviz-php-2.40.1-6.9.1.aarch64.rpm graphviz-plugins-core-2.40.1-6.9.1.aarch64.rpm graphviz-python-2.40.1-6.9.1.aarch64.rpm graphviz-ruby-2.40.1-6.9.1.aarch64.rpm graphviz-smyrna-2.40.1-6.9.1.aarch64.rpm graphviz-tcl-2.40.1-6.9.1.aarch64.rpm libgraphviz6-2.40.1-6.9.1.aarch64.rpm openSUSE-SLE-15.3-2021-1950 Recommended update for hwdata moderate SUSE Updates openSUSE-SLE 15.3 This update for hwdata fixes the following issues: - Update to version 0.347: + Updated pci, usb and vendor ids. (bsc#1185697) - Update to version 0.346: + Updated pci, usb and vendor ids. (bsc#1182482, jsc#SLE-13791, bsc#1170160) hwdata-0.347-3.21.1.noarch.rpm hwdata-0.347-3.21.1.src.rpm openSUSE-SLE-15.3-2021-1669 Recommended update for nfs-utils moderate SUSE Updates openSUSE-SLE 15.3 This update for nfs-utils fixes the following issues: - The '/var/run' is long deprecated - switch all relevant paths to '/run'. (bsc#1185170) - Improve logging of authentication (bsc#1181540) - Add man page of the 'nconnect mount'. (bsc#1181651) - Fixed an issue when HANA crashed due to inaccessible/hanging NFS mount. (bsc#1183194) nfs-client-2.1.1-10.15.1.x86_64.rpm nfs-doc-2.1.1-10.15.1.x86_64.rpm nfs-kernel-server-2.1.1-10.15.1.x86_64.rpm nfs-utils-2.1.1-10.15.1.src.rpm nfs-client-2.1.1-10.15.1.s390x.rpm nfs-doc-2.1.1-10.15.1.s390x.rpm nfs-kernel-server-2.1.1-10.15.1.s390x.rpm nfs-client-2.1.1-10.15.1.ppc64le.rpm nfs-doc-2.1.1-10.15.1.ppc64le.rpm nfs-kernel-server-2.1.1-10.15.1.ppc64le.rpm nfs-client-2.1.1-10.15.1.aarch64.rpm nfs-doc-2.1.1-10.15.1.aarch64.rpm nfs-kernel-server-2.1.1-10.15.1.aarch64.rpm openSUSE-SLE-15.3-2021-1641 Security update for djvulibre important SUSE Updates openSUSE-SLE 15.3 This update for djvulibre fixes the following issues: - CVE-2021-32490 [bsc#1185895]: Out of bounds write in function DJVU:filter_bv() via crafted djvu file - CVE-2021-32491 [bsc#1185900]: Integer overflow in function render() in tools/ddjvu via crafted djvu file - CVE-2021-32492 [bsc#1185904]: Out of bounds read in function DJVU:DataPool:has_data() via crafted djvu file - CVE-2021-32493 [bsc#1185905]: Heap buffer overflow in function DJVU:GBitmap:decode() via crafted djvu file djvulibre-3.5.27-11.3.1.src.rpm djvulibre-3.5.27-11.3.1.x86_64.rpm djvulibre-doc-3.5.27-11.3.1.noarch.rpm libdjvulibre-devel-3.5.27-11.3.1.x86_64.rpm libdjvulibre21-3.5.27-11.3.1.x86_64.rpm djvulibre-3.5.27-11.3.1.s390x.rpm libdjvulibre-devel-3.5.27-11.3.1.s390x.rpm libdjvulibre21-3.5.27-11.3.1.s390x.rpm djvulibre-3.5.27-11.3.1.ppc64le.rpm libdjvulibre-devel-3.5.27-11.3.1.ppc64le.rpm libdjvulibre21-3.5.27-11.3.1.ppc64le.rpm djvulibre-3.5.27-11.3.1.aarch64.rpm libdjvulibre-devel-3.5.27-11.3.1.aarch64.rpm libdjvulibre21-3.5.27-11.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-1700 Recommended update for google-guest-agent, google-guest-oslogin, google-osconfig-agent moderate SUSE Updates openSUSE-SLE 15.3 This update for google-guest-agent, google-guest-oslogin, google-osconfig-agent contains the following fixes: - Update to version 20210414.00 (bsc#1185848, bsc#1185849) * start sshd (#106) * Add systemd-networkd.service restart dependency. (#104) * Update error message for handleHealthCheckRequest. (#105) - Update to version 20210429.00 (bsc#1185848, bsc#1185849) * correct pagetoken in groupsforuser (#59) * resolve self groups last (#58) * support empty groups (#57) * no paginating to find groups (#56) * clear users vector (#55) * correct usage of pagetoken (#54) - Update to version 20210506.00 (bsc#1185848, bsc#1185849) * Add more os policy assignment examples (#348) * e2e_tests: enable stable tests for OSPolicies (#347) * Align start and end task logs (#346) * ConfigTask: add additional info logs (#345) * e2e_tests: add validation tests (#344) * Config Task: make sure agent respects policy mode (#343) * update * e2e_tests: readd retries to OSPolicies * Set minWaitDuration as a string instead of object (#341) * e2e_tests: Fix a few SUSE tests (#339) * Remove pre-release flag from config (#340) * e2e_tests: fixup OSPolicy tests (#338) * e2e_tests: unlock mutex for CreatePolicies as soon as create finishes (#337) * e2e_tests: Don't retry failed OSPolicy tests, fix msi test (#336) * Examples for os policy assignments (#334) * e2e_tests: increase the deadline for OSPolicy tests and only start after a zone has been secured (#335) * Fix panic when installing MSI (#332) * e2e_tests: Add test cases of installing dbe, rpm and msi packages (#333) * e2e_tests: add more logging * e2e_tests: (#330) * e2e_test: Add timouts to OSPolicy tests so we don't wait forever (#329) * Create top level directories for gcloud and console for os policy assignment examples (#328) * e2e_tests: Move api from an internal directory (#327) * Make sure we use the same test name for reruns (#326) * Add CONFIG_V1 capability (#325) * e2e_tests: reduce size of instances, use pd-balanced, rerun failed tests once (#324) * Only report installed packages for dpkg (#322) * e2e_tests: fix windows package and repository tests (#323) * Add top level directories for os policy examples (#321) * e2e_tests: move to using inventory api for inventory reporting (#320) * e2e_tests: add ExecResource tests (#319) * ExecResource: make sure we set permissions correctly for downloaded files (#318) * Config task: only run post check on resources that have already been evaluated (#317) * e2e_test: reorganize OSPolicy tests to be per Resource type (#316) * Set custom user agent (#299) * e2e_tests: check InstanceOSPoliciesCompliance for each test case, add LocalPath FileResource test (#314) * PackageResource: make sure to run AptUpdate prior to package install (#315) * Fix bugs/add more logging for OSPolicies (#313) * Change metadata http client to ignore http proxies (#312) * e2e_test: add tests for FileResource (#311) * Add task_type context logging (#310) * Fix e2e_test typo (#309) * Fix e2e_tests (#308) * Disable OSPolicies by default since it is an unreleased feature (#307) * e2e_tests: Add more OSPolicies package and repo tests (#306) * Do not enforce repo_gpgcheck in guestpolicies (#305) * Gather inventory 3-5min after agent start (#303) * e2e_tests: add OSPolicies tests for package install (#302) * Add helpful error log if a service account is missing (#304) * OSPolicies: correct apt repo extension, remove yum/zypper gpgcheck override (#301) * Update cos library to parse new version of packages file (#300) * config_task: Rework config step logic (#296) * e2e_test: enable serial logs in cos to support ReportInventory test (#297) google-guest-agent-20210414.00-1.20.1.src.rpm google-guest-agent-20210414.00-1.20.1.x86_64.rpm google-guest-oslogin-20210429.00-1.18.1.src.rpm google-guest-oslogin-20210429.00-1.18.1.x86_64.rpm google-osconfig-agent-20210506.00-1.11.1.src.rpm google-osconfig-agent-20210506.00-1.11.1.x86_64.rpm google-guest-agent-20210414.00-1.20.1.s390x.rpm google-guest-oslogin-20210429.00-1.18.1.s390x.rpm google-osconfig-agent-20210506.00-1.11.1.s390x.rpm google-guest-agent-20210414.00-1.20.1.ppc64le.rpm google-guest-oslogin-20210429.00-1.18.1.ppc64le.rpm google-osconfig-agent-20210506.00-1.11.1.ppc64le.rpm google-guest-agent-20210414.00-1.20.1.aarch64.rpm google-guest-oslogin-20210429.00-1.18.1.aarch64.rpm google-osconfig-agent-20210506.00-1.11.1.aarch64.rpm openSUSE-SLE-15.3-2021-1655 Security update for fribidi important SUSE Updates openSUSE-SLE 15.3 This update for fribidi fixes the following issues: Security issues fixed: - CVE-2019-18397: Avoid buffer overflow. (bsc#1156260) fribidi-1.0.5-3.3.1.src.rpm fribidi-1.0.5-3.3.1.x86_64.rpm fribidi-devel-1.0.5-3.3.1.x86_64.rpm libfribidi0-1.0.5-3.3.1.x86_64.rpm libfribidi0-32bit-1.0.5-3.3.1.x86_64.rpm fribidi-1.0.5-3.3.1.s390x.rpm fribidi-devel-1.0.5-3.3.1.s390x.rpm libfribidi0-1.0.5-3.3.1.s390x.rpm fribidi-1.0.5-3.3.1.ppc64le.rpm fribidi-devel-1.0.5-3.3.1.ppc64le.rpm libfribidi0-1.0.5-3.3.1.ppc64le.rpm fribidi-1.0.5-3.3.1.aarch64.rpm fribidi-devel-1.0.5-3.3.1.aarch64.rpm libfribidi0-1.0.5-3.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-1761 Security update for hivex moderate SUSE Updates openSUSE-SLE 15.3 This update for hivex fixes the following issues: - CVE-2021-3504: hivex: missing bounds check within hivex_open() (bsc#1185013) hivex-1.3.14-5.3.1.src.rpm hivex-1.3.14-5.3.1.x86_64.rpm hivex-devel-1.3.14-5.3.1.x86_64.rpm hivex-lang-1.3.14-5.3.1.noarch.rpm libhivex0-1.3.14-5.3.1.x86_64.rpm ocaml-hivex-1.3.14-5.3.1.x86_64.rpm ocaml-hivex-devel-1.3.14-5.3.1.x86_64.rpm perl-Win-Hivex-1.3.14-5.3.1.x86_64.rpm python-hivex-1.3.14-5.3.1.x86_64.rpm hivex-1.3.14-5.3.1.s390x.rpm hivex-devel-1.3.14-5.3.1.s390x.rpm libhivex0-1.3.14-5.3.1.s390x.rpm ocaml-hivex-1.3.14-5.3.1.s390x.rpm ocaml-hivex-devel-1.3.14-5.3.1.s390x.rpm perl-Win-Hivex-1.3.14-5.3.1.s390x.rpm python-hivex-1.3.14-5.3.1.s390x.rpm hivex-1.3.14-5.3.1.ppc64le.rpm hivex-devel-1.3.14-5.3.1.ppc64le.rpm libhivex0-1.3.14-5.3.1.ppc64le.rpm ocaml-hivex-1.3.14-5.3.1.ppc64le.rpm ocaml-hivex-devel-1.3.14-5.3.1.ppc64le.rpm perl-Win-Hivex-1.3.14-5.3.1.ppc64le.rpm python-hivex-1.3.14-5.3.1.ppc64le.rpm hivex-1.3.14-5.3.1.aarch64.rpm hivex-devel-1.3.14-5.3.1.aarch64.rpm libhivex0-1.3.14-5.3.1.aarch64.rpm ocaml-hivex-1.3.14-5.3.1.aarch64.rpm ocaml-hivex-devel-1.3.14-5.3.1.aarch64.rpm perl-Win-Hivex-1.3.14-5.3.1.aarch64.rpm python-hivex-1.3.14-5.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-2685 Security update for libdnf moderate SUSE Updates openSUSE-SLE 15.3 This update for libdnf fixes the following issues: - Fixed crash when loading DVD repositories Update to 0.62.0 + Change order of TransactionItemReason (rh#1921063) + Add two new comperators for security filters (rh#1918475) + Apply security filters for candidates with lower priority + Fix: Goal - translation of messages in global maps + Enhance description of modular solvables + Improve performance for module query + Change mechanism of modular errata applicability (rh#1804234) + dnf_transaction_commit(): Remove second call to rpmtsSetVSFlags + Fix a couple of memory leaks + Fix: Setting of librepo handle in newHandle function + Remove failsafe data when module is not enabled (rh#1847035) + Expose librepo's checksum functions via SWIG + Fix: Mising check of "hy_split_nevra()" return code + Do not allow 1 as installonly_limit value (rh#1926261) + Fix check whether the subkey can be used for signing + Hardening: add signature check with rpmcliVerifySignatures (CVE-2021-3445, CVE-2021-3421, CVE-2021-20271, rh#1932079, rh#1932089, rh#1932090, bsc#1183779) + Add a config option sslverifystatus, defaults to false (rh#1814383) + [context] Add API for distro-sync - Fix dependency for repo-config-zypp subpackage to work with SLE Update to 0.60.0 + Fix repo.fresh() implementation + Fix: Fully set ssl in newHandle function + [conf] Add options for working with certificates used with proxy + Apply proxy certificate options + lock: Switch return-if-fail to assert to quiet gcc -fanalyzer + build-sys: Clean up message about Python bindings + Modify module NSVCA parsing - context definition (rh#1926771) + [context] Fix: dnf_package_is_installonly (rh#1928056) + Fix problematic language + Add getApplicablePackages to advisory and isApplicable to advisorymodule + Keep isAdvisoryApplicable to preserve API + Run ModulePackageContainerTest tests in tmpdir, merge interdependent + [context] Support config file option "proxy_auth_method", defaults "any" + Properly handle multiple collections in updateinfo.xml (rh#1804234) + Support main config file option "installonlypkgs" + Support main config file option "protected_packages" - Add repo-config-zypp subpackage to allow easily using Zypper repository configuration - Backport support for using certificates for repository authorization - Backport another fix for adding controls to installonlypkgs - Add patch to move directory for dnf state data to /usr/lib/sysimage - Backport fixes to add controls for installonlypkgs and protected_packages Update to version 0.58.0 + Option: Add reset() method + Add OptionBinds::getOption() method + [context] Add dnf_repo_conf_from_gkeyfile() and dnf_repo_conf_reset() + [context] Add support for options: minrate, throttle, bandwidth, timeout + [context] Remove g_key_file_get_string() from dnf_repo_set_keyfile_data() + Allow loading ext metadata even if only cache (solv) is present + Add ASAN_OPTIONS for test_libdnf_main + [context,API] Functions for accessing main/global configuration options + [context,API] Function for adding setopt + Add getter for modular obsoletes from ModuleMetadata + Add ModulePackage.getStaticContext() and getRequires() + Add compatible layer for MdDocuments v2 + Fix modular queries with the new solver + Improve formatting of error string for modules + Change mechanism of module conflicts + Fix load/update FailSafe Update to version 0.55.2 + Improve performance of query installed() and available() + Swdb: Add a method to get the current transaction + [modules] Add special handling for src artifacts (rh#1809314) + Better msgs if "basecachedir" or "proxy_password" isn't set (rh#1888946) + Add new options module_stream_switch + Support allow_vendor_change setting in dnf context API Update to version 0.55.0 + Add vendor to dnf API (rh#1876561) + Add formatting function for solver error + Add error types in ModulePackageContainer + Implement module enable for context part + Improve string formatting for translation + Remove redundant printf and change logging info to notice (rh#1827424) + Add allow_vendor_change option (rh#1788371) (rh#1788371) Update to version 0.54.2 + history: Fix dnf history rollback when a package was removed (rh#1683134) + Add support for HY_GT, HY_LT in query nevra_strict + Fix parsing empty lines in config files + Accept '==' as an operator in reldeps (rh#1847946) + Add log file level main config option (rh#1802074) + Add protect_running_kernel configuration option (rh#1698145) + Context part of libdnf cannot assume zchunk is on (rh#1851841, rh#1779104) + Fix memory leak of resultingModuleIndex and handle g_object refs + Redirect librepo logs to libdnf logs with different source + Add hy_goal_lock + Enum/String conversions for Transaction Store/Replay + utils: Add a method to decode URLs + Unify hawkey.log line format with the rest of the logs Update to version 0.48.0 + Add prereq_ignoreinst & regular_requires properties for pkg (rh#1543449) + Reset active modules when no module enabled or default (rh#1767351) + Add comment option to transaction (rh#1773679) + Failing to get module defauls is a recoverable error + Baseurl is not exclusive with mirrorlist/metalink (rh#1775184) + Add new function to reset all modules in C API (dnf_context_reset_all_modules) + [context] Fix to preserve additionalMetadata content (rh#1808677) + Fix filtering of DepSolvables with source rpms (rh#1812596) + Add setter for running kernel protection setting + Handle situation when an unprivileged user cannot create history database (rh#1634385) + Add query filter: latest by priority + Add DNF_NO_PROTECTED flag to allow empty list of protected packages + Remove 'dim' option from terminal colors to make them more readable (rh#1807774, rh#1814563) + [context] Error when main config file can't be opened (rh#1794864) + [context] Add function function dnf_context_is_set_config_file_path + swdb: Catch only SQLite3 exceptions and simplify the messages + MergedTransaction list multiple comments (rh#1773679) + Modify CMake to pull *.po files from weblate + Optimize DependencyContainer creation from an existing queue + fix a memory leak in dnf_package_get_requires() + Fix memory leaks on g_build_filename() + Fix memory leak in dnf_context_setup() + Add `hy_goal_favor` and `hy_goal_disfavor` + Define a cleanup function for `DnfPackageSet` + dnf-repo: fix dnf_repo_get_public_keys double-free + Do not cache RPMDB + Use single-quotes around string literals used in SQL statements + SQLite3: Do not close the database if it wasn't opened (rh#1761976) + Don't create a new history DB connection for in-memory DB + transaction/Swdb: Use a single logger variable in constructor + utils: Add a safe version of pathExists() + swdb: Handle the case when pathExists() fails on e.g. permission + Repo: prepend "file://" if a local path is used as baseurl + Move urlEncode() to utils + utils: Add 'exclude' argument to urlEncode() + Encode package URL for downloading through librepo (rh#1817130) + Replace std::runtime_error with libdnf::RepoError + Fixes and error handling improvements of the File class + [context] Use ConfigRepo for gpgkey and baseurl (rh#1807864) + [context] support "priority" option in .repo config file (rh#1797265) hawkey-man-0.62.0-5.3.1.noarch.rpm libdnf-0.62.0-5.3.1.src.rpm libdnf-devel-0.62.0-5.3.1.i586.rpm libdnf-repo-config-zypp-0.62.0-5.3.1.i586.rpm libdnf2-0.62.0-5.3.1.i586.rpm python3-hawkey-0.62.0-5.3.1.i586.rpm python3-libdnf-0.62.0-5.3.1.i586.rpm libdnf-devel-0.62.0-5.3.1.x86_64.rpm libdnf-repo-config-zypp-0.62.0-5.3.1.x86_64.rpm libdnf2-0.62.0-5.3.1.x86_64.rpm python3-hawkey-0.62.0-5.3.1.x86_64.rpm python3-libdnf-0.62.0-5.3.1.x86_64.rpm libdnf-devel-0.62.0-5.3.1.s390x.rpm libdnf-repo-config-zypp-0.62.0-5.3.1.s390x.rpm libdnf2-0.62.0-5.3.1.s390x.rpm python3-hawkey-0.62.0-5.3.1.s390x.rpm python3-libdnf-0.62.0-5.3.1.s390x.rpm libdnf-devel-0.62.0-5.3.1.ppc64le.rpm libdnf-repo-config-zypp-0.62.0-5.3.1.ppc64le.rpm libdnf2-0.62.0-5.3.1.ppc64le.rpm python3-hawkey-0.62.0-5.3.1.ppc64le.rpm python3-libdnf-0.62.0-5.3.1.ppc64le.rpm libdnf-devel-0.62.0-5.3.1.aarch64.rpm libdnf-repo-config-zypp-0.62.0-5.3.1.aarch64.rpm libdnf2-0.62.0-5.3.1.aarch64.rpm python3-hawkey-0.62.0-5.3.1.aarch64.rpm python3-libdnf-0.62.0-5.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-1675 Recommended update for snappy moderate SUSE Updates openSUSE-SLE 15.3 This update for snappy fixes the following issues: Update from version 1.1.3 to 1.1.8 - Small performance improvements. - Removed `snappy::string` alias for `std::string`. - Improved `CMake` configuration. - Improved packages descriptions. - Fix RPM groups. - Aarch64 fixes - PPC speedups - PIE improvements - Fix license install. (bsc#1080040) - Fix a 1% performance regression when snappy is used in PIE executable. - Improve compression performance by 5%. - Improve decompression performance by 20%. - Use better download URL. - Fix a build issue for tensorflow2. (bsc#1184507) libsnappy1-1.1.8-3.3.1.x86_64.rpm libsnappy1-32bit-1.1.8-3.3.1.x86_64.rpm snappy-1.1.8-3.3.1.src.rpm snappy-devel-1.1.8-3.3.1.x86_64.rpm libsnappy1-1.1.8-3.3.1.s390x.rpm snappy-devel-1.1.8-3.3.1.s390x.rpm libsnappy1-1.1.8-3.3.1.ppc64le.rpm snappy-devel-1.1.8-3.3.1.ppc64le.rpm libsnappy1-1.1.8-3.3.1.aarch64.rpm snappy-devel-1.1.8-3.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-1640 Recommended update for strongswan moderate SUSE Updates openSUSE-SLE 15.3 This update for strongswan fixes the following issues: - FIPS: Replace AEAD AES CCM patch with upstream variant (bsc#1185363) strongswan-5.8.2-11.14.1.src.rpm strongswan-5.8.2-11.14.1.x86_64.rpm strongswan-doc-5.8.2-11.14.1.noarch.rpm strongswan-hmac-5.8.2-11.14.1.x86_64.rpm strongswan-ipsec-5.8.2-11.14.1.x86_64.rpm strongswan-libs0-5.8.2-11.14.1.x86_64.rpm strongswan-mysql-5.8.2-11.14.1.x86_64.rpm strongswan-nm-5.8.2-11.14.1.x86_64.rpm strongswan-sqlite-5.8.2-11.14.1.x86_64.rpm strongswan-5.8.2-11.14.1.s390x.rpm strongswan-hmac-5.8.2-11.14.1.s390x.rpm strongswan-ipsec-5.8.2-11.14.1.s390x.rpm strongswan-libs0-5.8.2-11.14.1.s390x.rpm strongswan-mysql-5.8.2-11.14.1.s390x.rpm strongswan-nm-5.8.2-11.14.1.s390x.rpm strongswan-sqlite-5.8.2-11.14.1.s390x.rpm strongswan-5.8.2-11.14.1.ppc64le.rpm strongswan-hmac-5.8.2-11.14.1.ppc64le.rpm strongswan-ipsec-5.8.2-11.14.1.ppc64le.rpm strongswan-libs0-5.8.2-11.14.1.ppc64le.rpm strongswan-mysql-5.8.2-11.14.1.ppc64le.rpm strongswan-nm-5.8.2-11.14.1.ppc64le.rpm strongswan-sqlite-5.8.2-11.14.1.ppc64le.rpm strongswan-5.8.2-11.14.1.aarch64.rpm strongswan-hmac-5.8.2-11.14.1.aarch64.rpm strongswan-ipsec-5.8.2-11.14.1.aarch64.rpm strongswan-libs0-5.8.2-11.14.1.aarch64.rpm strongswan-mysql-5.8.2-11.14.1.aarch64.rpm strongswan-nm-5.8.2-11.14.1.aarch64.rpm strongswan-sqlite-5.8.2-11.14.1.aarch64.rpm openSUSE-SLE-15.3-2021-1660 Recommended update for python-kiwi moderate SUSE Updates openSUSE-SLE 15.3 This update for python-kiwi fixes the following issues: - Fix appx manifest for WSL containers This patch is two fold * This commit prevents KIWI from setting Identity Name attribute and DisplayName and PublisherDisplayName elements. Fixes #1780 * Fix WSL appx filemap relative paths not preserved During WSL appx image type creation step the file hierarchy under metadata_path is written to a temporary file for eventual use as argument to utility appx. The file hierarchy information is dropped resulting in all filemap entries appearing to be at the metadata_path root. The resulting image will side load and run but without icon and other resources. Stricter checks at Windows Store submission will fail due to mismatch between image manifest and contents. Fix by preserving relative path of filemap entries relative to metadata_path. Add log output showing both input absolute path and output relative path. (jsc#SLE-12986) - Recommend kiwi-systemdeps-containers This commit recommends 'kiwi-systemdeps-containers' instead of a hard requirement in kiwi-systemdeps package for SLE builds. This is needed because the containers tool chain is spread in different SLE modules. dracut-kiwi-lib-9.23.20-3.40.1.x86_64.rpm dracut-kiwi-live-9.23.20-3.40.1.x86_64.rpm dracut-kiwi-oem-dump-9.23.20-3.40.1.x86_64.rpm dracut-kiwi-oem-repart-9.23.20-3.40.1.x86_64.rpm dracut-kiwi-overlay-9.23.20-3.40.1.x86_64.rpm kiwi-man-pages-9.23.20-3.40.1.x86_64.rpm kiwi-pxeboot-9.23.20-3.40.1.x86_64.rpm kiwi-systemdeps-9.23.20-3.40.1.x86_64.rpm kiwi-systemdeps-bootloaders-9.23.20-3.40.1.x86_64.rpm kiwi-systemdeps-containers-9.23.20-3.40.1.x86_64.rpm kiwi-systemdeps-core-9.23.20-3.40.1.x86_64.rpm kiwi-systemdeps-disk-images-9.23.20-3.40.1.x86_64.rpm kiwi-systemdeps-filesystems-9.23.20-3.40.1.x86_64.rpm kiwi-systemdeps-image-validation-9.23.20-3.40.1.x86_64.rpm kiwi-systemdeps-iso-media-9.23.20-3.40.1.x86_64.rpm kiwi-tools-9.23.20-3.40.1.x86_64.rpm python-kiwi-9.23.20-3.40.1.src.rpm python3-kiwi-9.23.20-3.40.1.x86_64.rpm dracut-kiwi-lib-9.23.20-3.40.1.s390x.rpm dracut-kiwi-live-9.23.20-3.40.1.s390x.rpm dracut-kiwi-oem-dump-9.23.20-3.40.1.s390x.rpm dracut-kiwi-oem-repart-9.23.20-3.40.1.s390x.rpm dracut-kiwi-overlay-9.23.20-3.40.1.s390x.rpm kiwi-man-pages-9.23.20-3.40.1.s390x.rpm kiwi-systemdeps-9.23.20-3.40.1.s390x.rpm kiwi-systemdeps-bootloaders-9.23.20-3.40.1.s390x.rpm kiwi-systemdeps-containers-9.23.20-3.40.1.s390x.rpm kiwi-systemdeps-core-9.23.20-3.40.1.s390x.rpm kiwi-systemdeps-disk-images-9.23.20-3.40.1.s390x.rpm kiwi-systemdeps-filesystems-9.23.20-3.40.1.s390x.rpm kiwi-systemdeps-image-validation-9.23.20-3.40.1.s390x.rpm kiwi-systemdeps-iso-media-9.23.20-3.40.1.s390x.rpm kiwi-tools-9.23.20-3.40.1.s390x.rpm python3-kiwi-9.23.20-3.40.1.s390x.rpm dracut-kiwi-lib-9.23.20-3.40.1.ppc64le.rpm dracut-kiwi-live-9.23.20-3.40.1.ppc64le.rpm dracut-kiwi-oem-dump-9.23.20-3.40.1.ppc64le.rpm dracut-kiwi-oem-repart-9.23.20-3.40.1.ppc64le.rpm dracut-kiwi-overlay-9.23.20-3.40.1.ppc64le.rpm kiwi-man-pages-9.23.20-3.40.1.ppc64le.rpm kiwi-systemdeps-9.23.20-3.40.1.ppc64le.rpm kiwi-systemdeps-bootloaders-9.23.20-3.40.1.ppc64le.rpm kiwi-systemdeps-containers-9.23.20-3.40.1.ppc64le.rpm kiwi-systemdeps-core-9.23.20-3.40.1.ppc64le.rpm kiwi-systemdeps-disk-images-9.23.20-3.40.1.ppc64le.rpm kiwi-systemdeps-filesystems-9.23.20-3.40.1.ppc64le.rpm kiwi-systemdeps-image-validation-9.23.20-3.40.1.ppc64le.rpm kiwi-systemdeps-iso-media-9.23.20-3.40.1.ppc64le.rpm kiwi-tools-9.23.20-3.40.1.ppc64le.rpm python3-kiwi-9.23.20-3.40.1.ppc64le.rpm dracut-kiwi-lib-9.23.20-3.40.1.aarch64.rpm dracut-kiwi-live-9.23.20-3.40.1.aarch64.rpm dracut-kiwi-oem-dump-9.23.20-3.40.1.aarch64.rpm dracut-kiwi-oem-repart-9.23.20-3.40.1.aarch64.rpm dracut-kiwi-overlay-9.23.20-3.40.1.aarch64.rpm kiwi-man-pages-9.23.20-3.40.1.aarch64.rpm kiwi-systemdeps-9.23.20-3.40.1.aarch64.rpm kiwi-systemdeps-bootloaders-9.23.20-3.40.1.aarch64.rpm kiwi-systemdeps-containers-9.23.20-3.40.1.aarch64.rpm kiwi-systemdeps-core-9.23.20-3.40.1.aarch64.rpm kiwi-systemdeps-disk-images-9.23.20-3.40.1.aarch64.rpm kiwi-systemdeps-filesystems-9.23.20-3.40.1.aarch64.rpm kiwi-systemdeps-image-validation-9.23.20-3.40.1.aarch64.rpm kiwi-systemdeps-iso-media-9.23.20-3.40.1.aarch64.rpm kiwi-tools-9.23.20-3.40.1.aarch64.rpm python3-kiwi-9.23.20-3.40.1.aarch64.rpm openSUSE-SLE-15.3-2021-1752 Recommended update for expect moderate SUSE Updates openSUSE-SLE 15.3 This update for expect fixes the following issues: - Fixed an issue when expect in permanently open connection causes hanging for scripts. (bsc#1183904) - pass explicit -pie flag to CFLAGS and hack `make` invocation so that /usr/bin/expect actually becomes a PIE binary. This is especially awkard since the expect build system implicitly passes -fPIC which breaks our gcc-PIE package, but does not pass -pie while linking the executable. Shared libraries are also not linked with -shared so we need to explicitly pass this, too, to avoid build breakage. (bsc#1184122) - Add an unversioned symlink to make linking easier for applications that use libexpect without Tcl. (bsc#1172681) expect-5.45.4-3.3.1.src.rpm expect-5.45.4-3.3.1.x86_64.rpm expect-devel-5.45.4-3.3.1.x86_64.rpm expect-5.45.4-3.3.1.s390x.rpm expect-devel-5.45.4-3.3.1.s390x.rpm expect-5.45.4-3.3.1.ppc64le.rpm expect-devel-5.45.4-3.3.1.ppc64le.rpm expect-5.45.4-3.3.1.aarch64.rpm expect-devel-5.45.4-3.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-1678 Recommended update for prometheus-ha_cluster_exporter moderate SUSE Updates openSUSE-SLE 15.3 This update for prometheus-ha_cluster_exporter fixes the following issues: - Add parsing of the `crm_config` node in the CIB parser. - Update the minimum required Go version to 1.14. - Avoid duplicate metric recording errors for non-running OCFS resources. (bsc#1184422) prometheus-ha_cluster_exporter-1.2.2+git.1620117406.cf586eb-3.12.1.src.rpm prometheus-ha_cluster_exporter-1.2.2+git.1620117406.cf586eb-3.12.1.x86_64.rpm prometheus-ha_cluster_exporter-1.2.2+git.1620117406.cf586eb-3.12.1.s390x.rpm prometheus-ha_cluster_exporter-1.2.2+git.1620117406.cf586eb-3.12.1.ppc64le.rpm prometheus-ha_cluster_exporter-1.2.2+git.1620117406.cf586eb-3.12.1.aarch64.rpm openSUSE-SLE-15.3-2021-1755 Security update for libu2f-host moderate SUSE Updates openSUSE-SLE 15.3 This update for libu2f-host fixes the following issues: This update ships the u2f-host package (jsc#ECO-3687 bsc#1184648) Version 1.1.10 (released 2019-05-15) - Add new devices to udev rules. - Fix a potentially uninitialized buffer (CVE-2019-9578, bsc#1128140) Version 1.1.9 (released 2019-03-06) - Fix CID copying from the init response, which broke compatibility with some devices. Version 1.1.8 (released 2019-03-05) - Add udev rules - Drop 70-old-u2f.rules and use 70-u2f.rules for everything - Use a random nonce for setting up CID to prevent fingerprinting - CVE-2019-9578: Parse the response to init in a more stable way to prevent leakage of uninitialized stack memory back to the device (bsc#1128140). Version 1.1.7 (released 2019-01-08) - Fix for trusting length from device in device init. - Fix for buffer overflow when receiving data from device. (YSA-2019-01, CVE-2018-20340, bsc#1124781) - Add udev rules for some new devices. - Add udev rule for Feitian ePass FIDO - Add a timeout to the register and authenticate actions. libu2f-host-1.1.10-3.9.1.src.rpm libu2f-host-devel-1.1.10-3.9.1.x86_64.rpm libu2f-host-doc-1.1.10-3.9.1.x86_64.rpm libu2f-host0-1.1.10-3.9.1.x86_64.rpm u2f-host-1.1.10-3.9.1.x86_64.rpm libu2f-host-devel-1.1.10-3.9.1.s390x.rpm libu2f-host-doc-1.1.10-3.9.1.s390x.rpm libu2f-host0-1.1.10-3.9.1.s390x.rpm u2f-host-1.1.10-3.9.1.s390x.rpm libu2f-host-devel-1.1.10-3.9.1.ppc64le.rpm libu2f-host-doc-1.1.10-3.9.1.ppc64le.rpm libu2f-host0-1.1.10-3.9.1.ppc64le.rpm u2f-host-1.1.10-3.9.1.ppc64le.rpm libu2f-host-devel-1.1.10-3.9.1.aarch64.rpm libu2f-host-doc-1.1.10-3.9.1.aarch64.rpm libu2f-host0-1.1.10-3.9.1.aarch64.rpm u2f-host-1.1.10-3.9.1.aarch64.rpm openSUSE-SLE-15.3-2021-1951 Security update for salt important SUSE Updates openSUSE-SLE 15.3 This update for salt fixes the following issues: - Check if dpkgnotify is executable (bsc#1186674) - Update to Salt release version 3002.2 (jsc#ECO-3212, jsc#SLE-18033, jsc#SLE-18028) - Drop support for Python2. Obsoletes `python2-salt` package (jsc#SLE-18028) - Fix issue parsing errors in ansiblegate state module - Prevent command injection in the snapper module (bsc#1185281, CVE-2021-31607) - transactional_update: detect recursion in the executor - Add subpackage `salt-transactional-update` (jsc#SLE-18033) - Remove duplicate directories python3-salt-3002.2-8.41.8.1.x86_64.rpm True salt-3002.2-8.41.8.1.src.rpm True salt-3002.2-8.41.8.1.x86_64.rpm True salt-api-3002.2-8.41.8.1.x86_64.rpm True salt-bash-completion-3002.2-8.41.8.1.noarch.rpm True salt-cloud-3002.2-8.41.8.1.x86_64.rpm True salt-doc-3002.2-8.41.8.1.x86_64.rpm True salt-fish-completion-3002.2-8.41.8.1.noarch.rpm True salt-master-3002.2-8.41.8.1.x86_64.rpm True salt-minion-3002.2-8.41.8.1.x86_64.rpm True salt-proxy-3002.2-8.41.8.1.x86_64.rpm True salt-ssh-3002.2-8.41.8.1.x86_64.rpm True salt-standalone-formulas-configuration-3002.2-8.41.8.1.x86_64.rpm True salt-syndic-3002.2-8.41.8.1.x86_64.rpm True salt-transactional-update-3002.2-8.41.8.1.x86_64.rpm True salt-zsh-completion-3002.2-8.41.8.1.noarch.rpm True python3-salt-3002.2-8.41.8.1.s390x.rpm True salt-3002.2-8.41.8.1.s390x.rpm True salt-api-3002.2-8.41.8.1.s390x.rpm True salt-cloud-3002.2-8.41.8.1.s390x.rpm True salt-doc-3002.2-8.41.8.1.s390x.rpm True salt-master-3002.2-8.41.8.1.s390x.rpm True salt-minion-3002.2-8.41.8.1.s390x.rpm True salt-proxy-3002.2-8.41.8.1.s390x.rpm True salt-ssh-3002.2-8.41.8.1.s390x.rpm True salt-standalone-formulas-configuration-3002.2-8.41.8.1.s390x.rpm True salt-syndic-3002.2-8.41.8.1.s390x.rpm True salt-transactional-update-3002.2-8.41.8.1.s390x.rpm True python3-salt-3002.2-8.41.8.1.ppc64le.rpm True salt-3002.2-8.41.8.1.ppc64le.rpm True salt-api-3002.2-8.41.8.1.ppc64le.rpm True salt-cloud-3002.2-8.41.8.1.ppc64le.rpm True salt-doc-3002.2-8.41.8.1.ppc64le.rpm True salt-master-3002.2-8.41.8.1.ppc64le.rpm True salt-minion-3002.2-8.41.8.1.ppc64le.rpm True salt-proxy-3002.2-8.41.8.1.ppc64le.rpm True salt-ssh-3002.2-8.41.8.1.ppc64le.rpm True salt-standalone-formulas-configuration-3002.2-8.41.8.1.ppc64le.rpm True salt-syndic-3002.2-8.41.8.1.ppc64le.rpm True salt-transactional-update-3002.2-8.41.8.1.ppc64le.rpm True python3-salt-3002.2-8.41.8.1.aarch64.rpm True salt-3002.2-8.41.8.1.aarch64.rpm True salt-api-3002.2-8.41.8.1.aarch64.rpm True salt-cloud-3002.2-8.41.8.1.aarch64.rpm True salt-doc-3002.2-8.41.8.1.aarch64.rpm True salt-master-3002.2-8.41.8.1.aarch64.rpm True salt-minion-3002.2-8.41.8.1.aarch64.rpm True salt-proxy-3002.2-8.41.8.1.aarch64.rpm True salt-ssh-3002.2-8.41.8.1.aarch64.rpm True salt-standalone-formulas-configuration-3002.2-8.41.8.1.aarch64.rpm True salt-syndic-3002.2-8.41.8.1.aarch64.rpm True salt-transactional-update-3002.2-8.41.8.1.aarch64.rpm True openSUSE-SLE-15.3-2021-1762 Security update for curl moderate SUSE Updates openSUSE-SLE 15.3 This update for curl fixes the following issues: - CVE-2021-22898: Fixed curl TELNET stack contents disclosure (bsc#1186114). - Allow partial chain verification [jsc#SLE-17956] * Have intermediate certificates in the trust store be treated as trust-anchors, in the same way as self-signed root CA certificates are. This allows users to verify servers using the intermediate cert only, instead of needing the whole chain. * Set FLAG_TRUSTED_FIRST unconditionally. * Do not check partial chains with CRL check. curl-7.66.0-4.17.1.src.rpm curl-7.66.0-4.17.1.x86_64.rpm curl-mini-7.66.0-4.17.1.src.rpm curl-mini-7.66.0-4.17.1.x86_64.rpm libcurl-devel-32bit-7.66.0-4.17.1.x86_64.rpm libcurl-devel-7.66.0-4.17.1.x86_64.rpm libcurl-mini-devel-7.66.0-4.17.1.x86_64.rpm libcurl4-32bit-7.66.0-4.17.1.x86_64.rpm libcurl4-7.66.0-4.17.1.x86_64.rpm libcurl4-mini-7.66.0-4.17.1.x86_64.rpm curl-7.66.0-4.17.1.s390x.rpm curl-mini-7.66.0-4.17.1.s390x.rpm libcurl-devel-7.66.0-4.17.1.s390x.rpm libcurl-mini-devel-7.66.0-4.17.1.s390x.rpm libcurl4-7.66.0-4.17.1.s390x.rpm libcurl4-mini-7.66.0-4.17.1.s390x.rpm curl-7.66.0-4.17.1.ppc64le.rpm curl-mini-7.66.0-4.17.1.ppc64le.rpm libcurl-devel-7.66.0-4.17.1.ppc64le.rpm libcurl-mini-devel-7.66.0-4.17.1.ppc64le.rpm libcurl4-7.66.0-4.17.1.ppc64le.rpm libcurl4-mini-7.66.0-4.17.1.ppc64le.rpm curl-7.66.0-4.17.1.aarch64.rpm curl-mini-7.66.0-4.17.1.aarch64.rpm libcurl-devel-7.66.0-4.17.1.aarch64.rpm libcurl-mini-devel-7.66.0-4.17.1.aarch64.rpm libcurl4-7.66.0-4.17.1.aarch64.rpm libcurl4-mini-7.66.0-4.17.1.aarch64.rpm openSUSE-SLE-15.3-2021-1876 Security update for snakeyaml important SUSE Updates openSUSE-SLE 15.3 This update for snakeyaml fixes the following issues: - Upgrade to 1.28 - CVE-2017-18640: The Alias feature allows entity expansion during a load operation (bsc#1159488, bsc#1186088) snakeyaml-1.28-3.5.1.noarch.rpm snakeyaml-1.28-3.5.1.src.rpm snakeyaml-javadoc-1.28-3.5.1.noarch.rpm openSUSE-SLE-15.3-2021-2173 Recommended update for automake moderate SUSE Updates openSUSE-SLE 15.3 This update for automake fixes the following issues: - Implement generated autoconf makefiles reproducible (bsc#1182604) - Add fix to avoid date variations in docs. (bsc#1047218, jsc#SLE-17848) - Avoid bashisms in test-driver script. (bsc#1185540) This update for pcre fixes the following issues: - Do not run profiling 'check' in parallel to make package build reproducible. (bsc#1040589) This update for brp-check-suse fixes the following issues: - Add fixes to support reproducible builds. (bsc#1186049) automake-1.15.1-4.10.2.noarch.rpm automake-1.15.1-4.10.2.src.rpm brp-check-suse-84.87+git20181106.224b37d-3.18.2.src.rpm brp-check-suse-84.87+git20181106.224b37d-3.18.2.x86_64.rpm libpcre1-32bit-8.41-6.4.2.x86_64.rpm libpcre1-8.41-6.4.2.x86_64.rpm libpcre16-0-32bit-8.41-6.4.2.x86_64.rpm libpcre16-0-8.41-6.4.2.x86_64.rpm libpcrecpp0-32bit-8.41-6.4.2.x86_64.rpm libpcrecpp0-8.41-6.4.2.x86_64.rpm libpcreposix0-32bit-8.41-6.4.2.x86_64.rpm libpcreposix0-8.41-6.4.2.x86_64.rpm pcre-8.41-6.4.2.src.rpm pcre-devel-8.41-6.4.2.x86_64.rpm pcre-devel-static-8.41-6.4.2.x86_64.rpm pcre-doc-8.41-6.4.2.noarch.rpm pcre-tools-8.41-6.4.2.x86_64.rpm brp-check-suse-84.87+git20181106.224b37d-3.18.2.s390x.rpm libpcre1-8.41-6.4.2.s390x.rpm libpcre16-0-8.41-6.4.2.s390x.rpm libpcrecpp0-8.41-6.4.2.s390x.rpm libpcreposix0-8.41-6.4.2.s390x.rpm pcre-devel-8.41-6.4.2.s390x.rpm pcre-devel-static-8.41-6.4.2.s390x.rpm pcre-tools-8.41-6.4.2.s390x.rpm brp-check-suse-84.87+git20181106.224b37d-3.18.2.ppc64le.rpm libpcre1-8.41-6.4.2.ppc64le.rpm libpcre16-0-8.41-6.4.2.ppc64le.rpm libpcrecpp0-8.41-6.4.2.ppc64le.rpm libpcreposix0-8.41-6.4.2.ppc64le.rpm pcre-devel-8.41-6.4.2.ppc64le.rpm pcre-devel-static-8.41-6.4.2.ppc64le.rpm pcre-tools-8.41-6.4.2.ppc64le.rpm brp-check-suse-84.87+git20181106.224b37d-3.18.2.aarch64.rpm libpcre1-8.41-6.4.2.aarch64.rpm libpcre16-0-8.41-6.4.2.aarch64.rpm libpcrecpp0-8.41-6.4.2.aarch64.rpm libpcreposix0-8.41-6.4.2.aarch64.rpm pcre-devel-8.41-6.4.2.aarch64.rpm pcre-devel-static-8.41-6.4.2.aarch64.rpm pcre-tools-8.41-6.4.2.aarch64.rpm openSUSE-SLE-15.3-2021-1794 Recommended update for radvd moderate SUSE Updates openSUSE-SLE 15.3 This update for radvd fixes the following issues: - replace '/var/run' with '/run' in '/usr/lib/tmpfiles.d/radvd.conf' (bsc#1185066) radvd-2.17-5.5.1.src.rpm radvd-2.17-5.5.1.x86_64.rpm radvd-2.17-5.5.1.s390x.rpm radvd-2.17-5.5.1.ppc64le.rpm radvd-2.17-5.5.1.aarch64.rpm openSUSE-SLE-15.3-2021-2103 Recommended update for SUSE Manager Client Tools moderate SUSE Updates openSUSE-SLE 15.3 This update fixes the following issues: POS_Image-Graphical7: - Use absolute path in bootloader service - Update install-local-bootloader.service for recent saltboot - Use linuxefi only on x86 POS_Image-JeOS7: - Use absolute path in bootloader service - Update install-local-bootloader.service for recent saltboot - Use linuxefi only on x86 golang-github-prometheus-prometheus: - Add tarball with vendor modules and web assets - Read formula data from exporters map - Add support for TLS targets - Upgrade to upstream version 2.26.0 + Changes * Alerting: Using Alertmanager v2 API by default. * Prometheus/Promtool: Binaries are now printing help and usage to stdout instead of stderr. * UI: Make the React UI default. * Remote write: The following metrics were removed/renamed in remote write. > prometheus_remote_storage_succeeded_samples_total was removed and prometheus_remote_storage_samples_total was introduced for all the samples attempted to send. > prometheus_remote_storage_sent_bytes_total was removed and replaced with prometheus_remote_storage_samples_bytes_total and prometheus_remote_storage_metadata_bytes_total. > prometheus_remote_storage_failed_samples_total -> prometheus_remote_storage_samples_failed_total. > prometheus_remote_storage_retried_samples_total -> prometheus_remote_storage_samples_retried_total. > prometheus_remote_storage_dropped_samples_total -> prometheus_remote_storage_samples_dropped_total. > prometheus_remote_storage_pending_samples -> prometheus_remote_storage_samples_pending. * Remote: Do not collect non-initialized timestamp metrics. + Features * Remote: Add support for AWS SigV4 auth method for remote_write. * PromQL: Allow negative offsets. Behind --enable-feature=promql-negative-offset flag. * UI: Add advanced auto-completion, syntax highlighting and linting to graph page query input. * Include a new `--enable-feature=` flag that enables experimental features. * Add TLS and basic authentication to HTTP endpoints. * promtool: Add check web-config subcommand to check web config files. * promtool: Add tsdb create-blocks-from openmetrics subcommand to backfill metrics data from an OpenMetrics file. + Enhancements * PromQL: Add last_over_time, sgn, clamp functions. * Scrape: Add support for specifying type of Authorization header credentials with Bearer by default. * Scrape: Add follow_redirects option to scrape configuration. * Remote: Allow retries on HTTP 429 response code for remote_write. * Remote: Allow configuring custom headers for remote_read. * UI: Hitting Enter now triggers new query. * UI: Better handling of long rule and names on the /rules and /targets pages. * UI: Add collapse/expand all button on the /targets page. * Add optional name property to testgroup for better test failure output. * Add warnings into React Panel on the Graph page. * TSDB: Increase the number of buckets for the compaction duration metric. * Remote: Allow passing along custom remote_write HTTP headers. * Mixins: Scope grafana configuration. * Kubernetes SD: Add endpoint labels metadata. * UI: Expose total number of label pairs in head in TSDB stats page. * TSDB: Reload blocks every minute, to detect new blocks and enforce retention more often. * Cache basic authentication results to significantly improve performance of HTTP endpoints. * HTTP API: Fast-fail queries with only empty matchers. * HTTP API: Support matchers for labels API. * promtool: Improve checking of URLs passed on the command line. * SD: Expose IPv6 as a label in EC2 SD. * SD: Reuse EC2 client, reducing frequency of requesting credentials. * TSDB: Add logging when compaction takes more than the block time range. * TSDB: Avoid unnecessary GC runs after compaction. * Remote write: Added a metric prometheus_remote_storage_max_samples_per_send for remote write. * TSDB: Make the snapshot directory name always the same length. * TSDB: Create a checkpoint only once at the end of all head compactions. * TSDB: Avoid Series API from hitting the chunks. * TSDB: Cache label name and last value when adding series during compactions making compactions faster. * PromQL: Improved performance of Hash method making queries a bit faster. * promtool: tsdb list now prints block sizes. * promtool: Calculate mint and maxt per test avoiding unnecessary calculations. * SD: Add filtering of services to Docker Swarm SD. + Bug fixes * API: Fix global URL when external address has no port. * Deprecate unused flag --alertmanager.timeout. mgr-cfg: - SPEC: Updated Python definitions for RHEL8 and quoted text comparisons. mgr-custom-info: - Update package version to 4.2.0 mgr-daemon: - Update translation strings - Update the translations from weblate - Added quotes around %{_vendor} token for the if statements in spec file. - Fix removal of mgr-deamon with selinux enabled (bsc#1177928) - Updating translations from weblate mgr-osad: - Change the log file permissions as expected by logrotate (bsc#1177884) - Change deprecated path /var/run into /run for systemd (bsc#1185178) - Python fixes - Removal of RHEL5 mgr-push: - Defined __python for python2. - Excluded RHEL8 for Python 2 build. mgr-virtualization: - Update package version to 4.2.0 python-hwdata: - Modified to build on RHEL8. rhnlib: - Update package version to 4.2.0 spacecmd: - Rename system migration to system transfer - Rename SP to product migration - Update translation strings - Add group_addconfigchannel and group_removeconfigchannel - Add group_listconfigchannels and configchannel_listgroups - Fix spacecmd compat with Python 3 - Deprecated "Software Crashes" feature - Document advanced package search on '--help' (bsc#1180583) - Fixed advanced search on 'package_listinstalledsystems' - Fixed duplicate results when using multiple search criteria (bsc#1180585) - Fixed "non-advanced" package search when using multiple package names (bsc#1180584) - Update translations - Fix: make spacecmd build on Debian - Add Service Pack migration operations (bsc#1173557) spacewalk-client-tools: - Update the translations from weblate - Drop the --noSSLServerURL option - Updated RHEL Python requirements. - Added quotes around %{_vendor}. spacewalk-koan: - Fix for spacewalk-koan test spacewalk-oscap: - Update package version to 4.2.0 spacewalk-remote-utils: - Update package version to 4.2.0 supportutils-plugin-susemanager-client: - Update package version to 4.2.0 suseRegisterInfo: - Add support for Amazon Linux 2 - Add support for Alibaba Cloud Linux 2 - Adapted for RHEL build. uyuni-common-libs: - Cleaning up unused Python 2 build leftovers. - Disabled debug package build. POS_Image-Graphical7-0.1.1620138994.d7f39a0-1.18.1.noarch.rpm POS_Image-Graphical7-0.1.1620138994.d7f39a0-1.18.1.src.rpm POS_Image-JeOS7-0.1.1620138994.d7f39a0-1.18.1.noarch.rpm POS_Image-JeOS7-0.1.1620138994.d7f39a0-1.18.1.src.rpm ansible-2.9.21-1.3.1.noarch.rpm ansible-2.9.21-1.3.1.src.rpm ansible-doc-2.9.21-1.3.1.noarch.rpm ansible-test-2.9.21-1.3.1.noarch.rpm memcached-1.5.6-4.7.1.src.rpm memcached-1.5.6-4.7.1.x86_64.rpm memcached-devel-1.5.6-4.7.1.x86_64.rpm mgr-cfg-4.2.2-1.15.1.noarch.rpm mgr-cfg-4.2.2-1.15.1.src.rpm mgr-cfg-actions-4.2.2-1.15.1.noarch.rpm mgr-cfg-client-4.2.2-1.15.1.noarch.rpm mgr-cfg-management-4.2.2-1.15.1.noarch.rpm mgr-custom-info-4.2.1-1.9.1.noarch.rpm mgr-custom-info-4.2.1-1.9.1.src.rpm mgr-daemon-4.2.7-1.26.1.noarch.rpm mgr-daemon-4.2.7-1.26.1.src.rpm mgr-osa-dispatcher-4.2.5-1.27.1.noarch.rpm mgr-osad-4.2.5-1.27.1.noarch.rpm mgr-osad-4.2.5-1.27.1.src.rpm mgr-push-4.2.2-1.9.1.noarch.rpm mgr-push-4.2.2-1.9.1.src.rpm mgr-virtualization-4.2.1-1.17.1.src.rpm mgr-virtualization-host-4.2.1-1.17.1.noarch.rpm python-hwdata-2.3.5-3.3.1.src.rpm python-python-memcached-1.59-3.5.1.src.rpm python-straight-plugin-1.5.0-1.3.1.src.rpm python2-hwdata-2.3.5-3.3.1.noarch.rpm python2-mgr-cfg-4.2.2-1.15.1.noarch.rpm python2-mgr-cfg-actions-4.2.2-1.15.1.noarch.rpm python2-mgr-cfg-client-4.2.2-1.15.1.noarch.rpm python2-mgr-cfg-management-4.2.2-1.15.1.noarch.rpm python2-mgr-osa-common-4.2.5-1.27.1.noarch.rpm python2-mgr-osa-dispatcher-4.2.5-1.27.1.noarch.rpm python2-mgr-osad-4.2.5-1.27.1.noarch.rpm python2-mgr-push-4.2.2-1.9.1.noarch.rpm python2-mgr-virtualization-common-4.2.1-1.17.1.noarch.rpm python2-mgr-virtualization-host-4.2.1-1.17.1.noarch.rpm python2-python-memcached-1.59-3.5.1.noarch.rpm python2-rhnlib-4.2.3-3.25.1.noarch.rpm python2-spacewalk-check-4.2.10-3.41.3.noarch.rpm python2-spacewalk-client-setup-4.2.10-3.41.3.noarch.rpm python2-spacewalk-client-tools-4.2.10-3.41.3.noarch.rpm python2-spacewalk-koan-4.2.3-3.18.1.noarch.rpm python2-spacewalk-oscap-4.2.1-3.9.1.noarch.rpm python2-straight-plugin-1.5.0-1.3.1.noarch.rpm python2-suseRegisterInfo-4.2.3-3.12.1.noarch.rpm python2-uyuni-common-libs-4.2.3-1.12.1.x86_64.rpm python3-hwdata-2.3.5-3.3.1.noarch.rpm python3-mgr-cfg-4.2.2-1.15.1.noarch.rpm python3-mgr-cfg-actions-4.2.2-1.15.1.noarch.rpm python3-mgr-cfg-client-4.2.2-1.15.1.noarch.rpm python3-mgr-cfg-management-4.2.2-1.15.1.noarch.rpm python3-mgr-osa-common-4.2.5-1.27.1.noarch.rpm python3-mgr-osa-dispatcher-4.2.5-1.27.1.noarch.rpm python3-mgr-osad-4.2.5-1.27.1.noarch.rpm python3-mgr-push-4.2.2-1.9.1.noarch.rpm python3-mgr-virtualization-common-4.2.1-1.17.1.noarch.rpm python3-mgr-virtualization-host-4.2.1-1.17.1.noarch.rpm python3-python-memcached-1.59-3.5.1.noarch.rpm python3-rhnlib-4.2.3-3.25.1.noarch.rpm python3-spacewalk-check-4.2.10-3.41.3.noarch.rpm python3-spacewalk-client-setup-4.2.10-3.41.3.noarch.rpm python3-spacewalk-client-tools-4.2.10-3.41.3.noarch.rpm python3-spacewalk-koan-4.2.3-3.18.1.noarch.rpm python3-spacewalk-oscap-4.2.1-3.9.1.noarch.rpm python3-straight-plugin-1.5.0-1.3.1.noarch.rpm python3-suseRegisterInfo-4.2.3-3.12.1.noarch.rpm python3-uyuni-common-libs-4.2.3-1.12.1.x86_64.rpm rhnlib-4.2.3-3.25.1.src.rpm spacecmd-4.2.8-3.59.1.noarch.rpm spacecmd-4.2.8-3.59.1.src.rpm spacewalk-check-4.2.10-3.41.3.noarch.rpm spacewalk-client-setup-4.2.10-3.41.3.noarch.rpm spacewalk-client-tools-4.2.10-3.41.3.noarch.rpm spacewalk-client-tools-4.2.10-3.41.3.src.rpm spacewalk-koan-4.2.3-3.18.1.noarch.rpm spacewalk-koan-4.2.3-3.18.1.src.rpm spacewalk-oscap-4.2.1-3.9.1.noarch.rpm spacewalk-oscap-4.2.1-3.9.1.src.rpm spacewalk-remote-utils-4.2.1-3.15.1.noarch.rpm spacewalk-remote-utils-4.2.1-3.15.1.src.rpm supportutils-plugin-susemanager-client-4.2.2-3.15.1.noarch.rpm supportutils-plugin-susemanager-client-4.2.2-3.15.1.src.rpm suseRegisterInfo-4.2.3-3.12.1.noarch.rpm suseRegisterInfo-4.2.3-3.12.1.src.rpm uyuni-common-libs-4.2.3-1.12.1.src.rpm memcached-1.5.6-4.7.1.s390x.rpm memcached-devel-1.5.6-4.7.1.s390x.rpm python2-uyuni-common-libs-4.2.3-1.12.1.s390x.rpm python3-uyuni-common-libs-4.2.3-1.12.1.s390x.rpm memcached-1.5.6-4.7.1.ppc64le.rpm memcached-devel-1.5.6-4.7.1.ppc64le.rpm python2-uyuni-common-libs-4.2.3-1.12.1.ppc64le.rpm python3-uyuni-common-libs-4.2.3-1.12.1.ppc64le.rpm memcached-1.5.6-4.7.1.aarch64.rpm memcached-devel-1.5.6-4.7.1.aarch64.rpm python2-uyuni-common-libs-4.2.3-1.12.1.aarch64.rpm python3-uyuni-common-libs-4.2.3-1.12.1.aarch64.rpm openSUSE-SLE-15.3-2021-1800 Recommended update for mdadm moderate SUSE Updates openSUSE-SLE 15.3 This update for mdadm fixes the following issues: - Fixed an issue when md device broke while adding another disk (bsc#1181619) - imsm: Addded nvme multipath support (bsc#1175758) mdadm-4.1-24.3.1.src.rpm mdadm-4.1-24.3.1.x86_64.rpm mdadm-4.1-24.3.1.s390x.rpm mdadm-4.1-24.3.1.ppc64le.rpm mdadm-4.1-24.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-1666 Security update for java-1_8_0-openj9 moderate SUSE Updates openSUSE-SLE 15.3 This update for java-1_8_0-openj9 fixes the following issues: - Update to OpenJDK 8u292 build 10 with OpenJ9 0.26.0 virtual machine. - CVE-2021-2161: Fixed incomplete enforcement of JAR signing disabled algorithms (bsc#1185055). java-1_8_0-openj9-1.8.0.292-3.14.1.src.rpm java-1_8_0-openj9-1.8.0.292-3.14.1.x86_64.rpm java-1_8_0-openj9-accessibility-1.8.0.292-3.14.1.x86_64.rpm java-1_8_0-openj9-demo-1.8.0.292-3.14.1.x86_64.rpm java-1_8_0-openj9-devel-1.8.0.292-3.14.1.x86_64.rpm java-1_8_0-openj9-headless-1.8.0.292-3.14.1.x86_64.rpm java-1_8_0-openj9-javadoc-1.8.0.292-3.14.1.noarch.rpm java-1_8_0-openj9-src-1.8.0.292-3.14.1.x86_64.rpm java-1_8_0-openj9-1.8.0.292-3.14.1.s390x.rpm java-1_8_0-openj9-accessibility-1.8.0.292-3.14.1.s390x.rpm java-1_8_0-openj9-demo-1.8.0.292-3.14.1.s390x.rpm java-1_8_0-openj9-devel-1.8.0.292-3.14.1.s390x.rpm java-1_8_0-openj9-headless-1.8.0.292-3.14.1.s390x.rpm java-1_8_0-openj9-src-1.8.0.292-3.14.1.s390x.rpm java-1_8_0-openj9-1.8.0.292-3.14.1.ppc64le.rpm java-1_8_0-openj9-accessibility-1.8.0.292-3.14.1.ppc64le.rpm java-1_8_0-openj9-demo-1.8.0.292-3.14.1.ppc64le.rpm java-1_8_0-openj9-devel-1.8.0.292-3.14.1.ppc64le.rpm java-1_8_0-openj9-headless-1.8.0.292-3.14.1.ppc64le.rpm java-1_8_0-openj9-src-1.8.0.292-3.14.1.ppc64le.rpm openSUSE-SLE-15.3-2021-1795 Recommended update for yast2-migration moderate SUSE Updates openSUSE-SLE 15.3 This update for yast2-migration fixes the following issues: - Show the new base product license in online migration. (bsc#1185808) yast2-migration-4.2.5-3.3.1.noarch.rpm yast2-migration-4.2.5-3.3.1.src.rpm openSUSE-SLE-15.3-2021-1920 Recommended update for nvme-cli moderate SUSE Updates openSUSE-SLE 15.3 This update for nvme-cli fixes the following issues: - Add KATO fixes for NVMEoF (bsc#1182591) - Lookup existing persistent controllers (bsc#1179825) nvme-cli-1.13-3.3.1.src.rpm nvme-cli-1.13-3.3.1.x86_64.rpm nvme-cli-regress-script-1.13-3.3.1.x86_64.rpm nvme-cli-1.13-3.3.1.s390x.rpm nvme-cli-regress-script-1.13-3.3.1.s390x.rpm nvme-cli-1.13-3.3.1.ppc64le.rpm nvme-cli-regress-script-1.13-3.3.1.ppc64le.rpm nvme-cli-1.13-3.3.1.aarch64.rpm nvme-cli-regress-script-1.13-3.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-1925 Recommended update for yast2-network moderate SUSE Updates openSUSE-SLE 15.3 This update for yast2-network fixes the following issues: - Fixed an issue where the primary network interface became the secondary one (bsc#1185967) - Fixes an issue where ifroute files were lost (bsc#1186082) yast2-network-4.3.69-3.5.1.noarch.rpm yast2-network-4.3.69-3.5.1.src.rpm openSUSE-SLE-15.3-2021-1989 Security update for java-1_8_0-openjdk moderate SUSE Updates openSUSE-SLE 15.3 This update for java-1_8_0-openjdk fixes the following issues: - Update to version jdk8u292 (icedtea 3.19.0). - CVE-2021-2161: Fixed incomplete enforcement of JAR signing disabled algorithms (bsc#1185055). java-1_8_0-openjdk-1.8.0.292-3.52.1.src.rpm java-1_8_0-openjdk-1.8.0.292-3.52.1.x86_64.rpm java-1_8_0-openjdk-accessibility-1.8.0.292-3.52.1.x86_64.rpm java-1_8_0-openjdk-demo-1.8.0.292-3.52.1.x86_64.rpm java-1_8_0-openjdk-devel-1.8.0.292-3.52.1.x86_64.rpm java-1_8_0-openjdk-headless-1.8.0.292-3.52.1.x86_64.rpm java-1_8_0-openjdk-javadoc-1.8.0.292-3.52.1.noarch.rpm java-1_8_0-openjdk-src-1.8.0.292-3.52.1.x86_64.rpm java-1_8_0-openjdk-1.8.0.292-3.52.1.s390x.rpm java-1_8_0-openjdk-accessibility-1.8.0.292-3.52.1.s390x.rpm java-1_8_0-openjdk-demo-1.8.0.292-3.52.1.s390x.rpm java-1_8_0-openjdk-devel-1.8.0.292-3.52.1.s390x.rpm java-1_8_0-openjdk-headless-1.8.0.292-3.52.1.s390x.rpm java-1_8_0-openjdk-src-1.8.0.292-3.52.1.s390x.rpm java-1_8_0-openjdk-1.8.0.292-3.52.1.ppc64le.rpm java-1_8_0-openjdk-accessibility-1.8.0.292-3.52.1.ppc64le.rpm java-1_8_0-openjdk-demo-1.8.0.292-3.52.1.ppc64le.rpm java-1_8_0-openjdk-devel-1.8.0.292-3.52.1.ppc64le.rpm java-1_8_0-openjdk-headless-1.8.0.292-3.52.1.ppc64le.rpm java-1_8_0-openjdk-src-1.8.0.292-3.52.1.ppc64le.rpm java-1_8_0-openjdk-1.8.0.292-3.52.1.aarch64.rpm java-1_8_0-openjdk-accessibility-1.8.0.292-3.52.1.aarch64.rpm java-1_8_0-openjdk-demo-1.8.0.292-3.52.1.aarch64.rpm java-1_8_0-openjdk-devel-1.8.0.292-3.52.1.aarch64.rpm java-1_8_0-openjdk-headless-1.8.0.292-3.52.1.aarch64.rpm java-1_8_0-openjdk-src-1.8.0.292-3.52.1.aarch64.rpm openSUSE-SLE-15.3-2021-1825 Security update for lz4 important SUSE Updates openSUSE-SLE 15.3 This update for lz4 fixes the following issues: - CVE-2021-3520: Fixed memory corruption due to an integer overflow bug caused by memmove argument (bsc#1185438). liblz4-1-1.9.2-3.3.1.x86_64.rpm liblz4-1-32bit-1.9.2-3.3.1.x86_64.rpm liblz4-devel-1.9.2-3.3.1.x86_64.rpm lz4-1.9.2-3.3.1.src.rpm lz4-1.9.2-3.3.1.x86_64.rpm liblz4-1-1.9.2-3.3.1.s390x.rpm liblz4-devel-1.9.2-3.3.1.s390x.rpm lz4-1.9.2-3.3.1.s390x.rpm liblz4-1-1.9.2-3.3.1.ppc64le.rpm liblz4-devel-1.9.2-3.3.1.ppc64le.rpm lz4-1.9.2-3.3.1.ppc64le.rpm liblz4-1-1.9.2-3.3.1.aarch64.rpm liblz4-devel-1.9.2-3.3.1.aarch64.rpm lz4-1.9.2-3.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-1970 Security update for postgresql10 moderate SUSE Updates openSUSE-SLE 15.3 This update for postgresql10 fixes the following issues: - Upgrade to version 10.17: - CVE-2021-32027: Fixed integer overflows in array subscripting calculations (bsc#1185924). - CVE-2021-32028: Fixed mishandling of junk columns in INSERT ... ON CONFLICT ... UPDATE target lists (bsc#1185925). - Don't use %_stop_on_removal, because it was meant to be private and got removed from openSUSE. %_restart_on_update is also private, but still supported and needed for now (bsc#1183168). postgresql10-10.17-8.35.1.src.rpm postgresql10-10.17-8.35.1.x86_64.rpm postgresql10-contrib-10.17-8.35.1.x86_64.rpm postgresql10-devel-10.17-8.35.1.x86_64.rpm postgresql10-docs-10.17-8.35.1.noarch.rpm postgresql10-plperl-10.17-8.35.1.x86_64.rpm postgresql10-plpython-10.17-8.35.1.x86_64.rpm postgresql10-pltcl-10.17-8.35.1.x86_64.rpm postgresql10-server-10.17-8.35.1.x86_64.rpm postgresql10-test-10.17-8.35.1.x86_64.rpm postgresql10-10.17-8.35.1.s390x.rpm postgresql10-contrib-10.17-8.35.1.s390x.rpm postgresql10-devel-10.17-8.35.1.s390x.rpm postgresql10-plperl-10.17-8.35.1.s390x.rpm postgresql10-plpython-10.17-8.35.1.s390x.rpm postgresql10-pltcl-10.17-8.35.1.s390x.rpm postgresql10-server-10.17-8.35.1.s390x.rpm postgresql10-test-10.17-8.35.1.s390x.rpm postgresql10-10.17-8.35.1.ppc64le.rpm postgresql10-contrib-10.17-8.35.1.ppc64le.rpm postgresql10-devel-10.17-8.35.1.ppc64le.rpm postgresql10-plperl-10.17-8.35.1.ppc64le.rpm postgresql10-plpython-10.17-8.35.1.ppc64le.rpm postgresql10-pltcl-10.17-8.35.1.ppc64le.rpm postgresql10-server-10.17-8.35.1.ppc64le.rpm postgresql10-test-10.17-8.35.1.ppc64le.rpm postgresql10-10.17-8.35.1.aarch64.rpm postgresql10-contrib-10.17-8.35.1.aarch64.rpm postgresql10-devel-10.17-8.35.1.aarch64.rpm postgresql10-plperl-10.17-8.35.1.aarch64.rpm postgresql10-plpython-10.17-8.35.1.aarch64.rpm postgresql10-pltcl-10.17-8.35.1.aarch64.rpm postgresql10-server-10.17-8.35.1.aarch64.rpm postgresql10-test-10.17-8.35.1.aarch64.rpm openSUSE-SLE-15.3-2021-2147 Security update for freeradius-server moderate SUSE Updates openSUSE-SLE 15.3 This update for freeradius-server fixes the following issues: - Fixed plaintext password entries in logfiles (bsc#1184016). freeradius-server-3.0.21-3.9.1.src.rpm freeradius-server-3.0.21-3.9.1.x86_64.rpm freeradius-server-devel-3.0.21-3.9.1.x86_64.rpm freeradius-server-doc-3.0.21-3.9.1.x86_64.rpm freeradius-server-krb5-3.0.21-3.9.1.x86_64.rpm freeradius-server-ldap-3.0.21-3.9.1.x86_64.rpm freeradius-server-libs-3.0.21-3.9.1.x86_64.rpm freeradius-server-mysql-3.0.21-3.9.1.x86_64.rpm freeradius-server-perl-3.0.21-3.9.1.x86_64.rpm freeradius-server-postgresql-3.0.21-3.9.1.x86_64.rpm freeradius-server-python3-3.0.21-3.9.1.x86_64.rpm freeradius-server-sqlite-3.0.21-3.9.1.x86_64.rpm freeradius-server-utils-3.0.21-3.9.1.x86_64.rpm freeradius-server-3.0.21-3.9.1.s390x.rpm freeradius-server-devel-3.0.21-3.9.1.s390x.rpm freeradius-server-doc-3.0.21-3.9.1.s390x.rpm freeradius-server-krb5-3.0.21-3.9.1.s390x.rpm freeradius-server-ldap-3.0.21-3.9.1.s390x.rpm freeradius-server-libs-3.0.21-3.9.1.s390x.rpm freeradius-server-mysql-3.0.21-3.9.1.s390x.rpm freeradius-server-perl-3.0.21-3.9.1.s390x.rpm freeradius-server-postgresql-3.0.21-3.9.1.s390x.rpm freeradius-server-python3-3.0.21-3.9.1.s390x.rpm freeradius-server-sqlite-3.0.21-3.9.1.s390x.rpm freeradius-server-utils-3.0.21-3.9.1.s390x.rpm freeradius-server-3.0.21-3.9.1.ppc64le.rpm freeradius-server-devel-3.0.21-3.9.1.ppc64le.rpm freeradius-server-doc-3.0.21-3.9.1.ppc64le.rpm freeradius-server-krb5-3.0.21-3.9.1.ppc64le.rpm freeradius-server-ldap-3.0.21-3.9.1.ppc64le.rpm freeradius-server-libs-3.0.21-3.9.1.ppc64le.rpm freeradius-server-mysql-3.0.21-3.9.1.ppc64le.rpm freeradius-server-perl-3.0.21-3.9.1.ppc64le.rpm freeradius-server-postgresql-3.0.21-3.9.1.ppc64le.rpm freeradius-server-python3-3.0.21-3.9.1.ppc64le.rpm freeradius-server-sqlite-3.0.21-3.9.1.ppc64le.rpm freeradius-server-utils-3.0.21-3.9.1.ppc64le.rpm freeradius-server-3.0.21-3.9.1.aarch64.rpm freeradius-server-devel-3.0.21-3.9.1.aarch64.rpm freeradius-server-doc-3.0.21-3.9.1.aarch64.rpm freeradius-server-krb5-3.0.21-3.9.1.aarch64.rpm freeradius-server-ldap-3.0.21-3.9.1.aarch64.rpm freeradius-server-libs-3.0.21-3.9.1.aarch64.rpm freeradius-server-mysql-3.0.21-3.9.1.aarch64.rpm freeradius-server-perl-3.0.21-3.9.1.aarch64.rpm freeradius-server-postgresql-3.0.21-3.9.1.aarch64.rpm freeradius-server-python3-3.0.21-3.9.1.aarch64.rpm freeradius-server-sqlite-3.0.21-3.9.1.aarch64.rpm freeradius-server-utils-3.0.21-3.9.1.aarch64.rpm openSUSE-SLE-15.3-2021-1860 Security update for libwebp critical SUSE Updates openSUSE-SLE 15.3 This update for libwebp fixes the following issues: - CVE-2018-25010: Fixed heap-based buffer overflow in ApplyFilter() (bsc#1185685). - CVE-2020-36330: Fixed heap-based buffer overflow in ChunkVerifyAndAssign() (bsc#1185691). - CVE-2020-36332: Fixed extreme memory allocation when reading a file (bsc#1185674). - CVE-2020-36329: Fixed use-after-free in EmitFancyRGB() (bsc#1185652). - CVE-2018-25012: Fixed heap-based buffer overflow in GetLE24() (bsc#1185690). - CVE-2020-36328: Fixed heap-based buffer overflow in WebPDecode*Into functions (bsc#1185688). - CVE-2018-25013: Fixed heap-based buffer overflow in ShiftBytes() (bsc#1185654). - CVE-2020-36331: Fixed heap-based buffer overflow in ChunkAssignData() (bsc#1185686). - CVE-2018-25009: Fixed heap-based buffer overflow in GetLE16() (bsc#1185673). - CVE-2018-25011: Fixed fail on multiple image chunks (bsc#1186247). libwebp-0.5.0-3.5.1.src.rpm libwebp6-0.5.0-3.5.1.x86_64.rpm libwebp6-32bit-0.5.0-3.5.1.x86_64.rpm libwebpdecoder2-0.5.0-3.5.1.x86_64.rpm libwebpdecoder2-32bit-0.5.0-3.5.1.x86_64.rpm libwebpextras0-0.5.0-3.5.1.x86_64.rpm libwebpextras0-32bit-0.5.0-3.5.1.x86_64.rpm libwebpmux2-0.5.0-3.5.1.x86_64.rpm libwebpmux2-32bit-0.5.0-3.5.1.x86_64.rpm libwebp6-0.5.0-3.5.1.s390x.rpm libwebpdecoder2-0.5.0-3.5.1.s390x.rpm libwebpextras0-0.5.0-3.5.1.s390x.rpm libwebpmux2-0.5.0-3.5.1.s390x.rpm libwebp6-0.5.0-3.5.1.ppc64le.rpm libwebpdecoder2-0.5.0-3.5.1.ppc64le.rpm libwebpextras0-0.5.0-3.5.1.ppc64le.rpm libwebpmux2-0.5.0-3.5.1.ppc64le.rpm libwebp6-0.5.0-3.5.1.aarch64.rpm libwebpdecoder2-0.5.0-3.5.1.aarch64.rpm libwebpextras0-0.5.0-3.5.1.aarch64.rpm libwebpmux2-0.5.0-3.5.1.aarch64.rpm openSUSE-SLE-15.3-2021-1854 Security update for MozillaThunderbird moderate SUSE Updates openSUSE-SLE 15.3 This update for MozillaThunderbird fixes the following issues: - Mozilla Thunderbird 78.10.2 - CVE-2021-29957: Fixed partial protection of inline OpenPGP message not indicated (bsc#1186198). - CVE-2021-29956: Fixed Thunderbird stored OpenPGP secret keys without master password protection (bsc#1186199). - CVE-2021-29951: Fixed Thunderbird Maintenance Service could have been started or stopped by domain users (bsc#1185633). - CVE-2021-29950: Fixed logic issue potentially leaves key material unlocked (bsc#1185086). MozillaThunderbird-78.10.2-8.27.1.src.rpm MozillaThunderbird-78.10.2-8.27.1.x86_64.rpm MozillaThunderbird-translations-common-78.10.2-8.27.1.x86_64.rpm MozillaThunderbird-translations-other-78.10.2-8.27.1.x86_64.rpm MozillaThunderbird-78.10.2-8.27.1.s390x.rpm MozillaThunderbird-translations-common-78.10.2-8.27.1.s390x.rpm MozillaThunderbird-translations-other-78.10.2-8.27.1.s390x.rpm MozillaThunderbird-78.10.2-8.27.1.ppc64le.rpm MozillaThunderbird-translations-common-78.10.2-8.27.1.ppc64le.rpm MozillaThunderbird-translations-other-78.10.2-8.27.1.ppc64le.rpm MozillaThunderbird-78.10.2-8.27.1.aarch64.rpm MozillaThunderbird-translations-common-78.10.2-8.27.1.aarch64.rpm MozillaThunderbird-translations-other-78.10.2-8.27.1.aarch64.rpm openSUSE-SLE-15.3-2021-1982 Recommended update for rmt-server moderate SUSE Updates openSUSE-SLE 15.3 This update for rmt-server fixes the following issues: - Installer update repositories do now get enabled when enabling a product (bsc#1184814) - It does now set the 'cloud_povider' info when registering the instance rmt-server-2.6.9-3.3.1.src.rpm rmt-server-2.6.9-3.3.1.x86_64.rpm rmt-server-config-2.6.9-3.3.1.x86_64.rpm rmt-server-pubcloud-2.6.9-3.3.1.x86_64.rpm rmt-server-2.6.9-3.3.1.s390x.rpm rmt-server-config-2.6.9-3.3.1.s390x.rpm rmt-server-pubcloud-2.6.9-3.3.1.s390x.rpm rmt-server-2.6.9-3.3.1.ppc64le.rpm rmt-server-config-2.6.9-3.3.1.ppc64le.rpm rmt-server-pubcloud-2.6.9-3.3.1.ppc64le.rpm rmt-server-2.6.9-3.3.1.aarch64.rpm rmt-server-config-2.6.9-3.3.1.aarch64.rpm rmt-server-pubcloud-2.6.9-3.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-1934 Recommended update for xorg-x11-server moderate SUSE Updates openSUSE-SLE 15.3 This update for xorg-x11-server fixes the following issues: - xwayland: Fix invisible window produced by Xwayland. (bsc#1186092, bsc#1184906) xorg-x11-server-1.20.3-22.5.33.1.src.rpm xorg-x11-server-1.20.3-22.5.33.1.x86_64.rpm xorg-x11-server-extra-1.20.3-22.5.33.1.x86_64.rpm xorg-x11-server-sdk-1.20.3-22.5.33.1.x86_64.rpm xorg-x11-server-source-1.20.3-22.5.33.1.x86_64.rpm xorg-x11-server-wayland-1.20.3-22.5.33.1.x86_64.rpm xorg-x11-server-1.20.3-22.5.33.1.s390x.rpm xorg-x11-server-extra-1.20.3-22.5.33.1.s390x.rpm xorg-x11-server-sdk-1.20.3-22.5.33.1.s390x.rpm xorg-x11-server-source-1.20.3-22.5.33.1.s390x.rpm xorg-x11-server-wayland-1.20.3-22.5.33.1.s390x.rpm xorg-x11-server-1.20.3-22.5.33.1.ppc64le.rpm xorg-x11-server-extra-1.20.3-22.5.33.1.ppc64le.rpm xorg-x11-server-sdk-1.20.3-22.5.33.1.ppc64le.rpm xorg-x11-server-source-1.20.3-22.5.33.1.ppc64le.rpm xorg-x11-server-wayland-1.20.3-22.5.33.1.ppc64le.rpm xorg-x11-server-1.20.3-22.5.33.1.aarch64.rpm xorg-x11-server-extra-1.20.3-22.5.33.1.aarch64.rpm xorg-x11-server-sdk-1.20.3-22.5.33.1.aarch64.rpm xorg-x11-server-source-1.20.3-22.5.33.1.aarch64.rpm xorg-x11-server-wayland-1.20.3-22.5.33.1.aarch64.rpm openSUSE-SLE-15.3-2021-1772 Recommended update for motif moderate SUSE Updates openSUSE-SLE 15.3 This update for motif fixes the following issues: - Add patches to prevent the third party application crashing. (bsc#1184184) libMrm4-2.3.4-3.3.1.x86_64.rpm libMrm4-32bit-2.3.4-3.3.1.x86_64.rpm libUil4-2.3.4-3.3.1.x86_64.rpm libUil4-32bit-2.3.4-3.3.1.x86_64.rpm libXm4-2.3.4-3.3.1.x86_64.rpm libXm4-32bit-2.3.4-3.3.1.x86_64.rpm motif-2.3.4-3.3.1.src.rpm motif-2.3.4-3.3.1.x86_64.rpm motif-devel-2.3.4-3.3.1.x86_64.rpm motif-devel-32bit-2.3.4-3.3.1.x86_64.rpm libMrm4-2.3.4-3.3.1.s390x.rpm libUil4-2.3.4-3.3.1.s390x.rpm libXm4-2.3.4-3.3.1.s390x.rpm motif-2.3.4-3.3.1.s390x.rpm motif-devel-2.3.4-3.3.1.s390x.rpm libMrm4-2.3.4-3.3.1.ppc64le.rpm libUil4-2.3.4-3.3.1.ppc64le.rpm libXm4-2.3.4-3.3.1.ppc64le.rpm motif-2.3.4-3.3.1.ppc64le.rpm motif-devel-2.3.4-3.3.1.ppc64le.rpm libMrm4-2.3.4-3.3.1.aarch64.rpm libUil4-2.3.4-3.3.1.aarch64.rpm libXm4-2.3.4-3.3.1.aarch64.rpm motif-2.3.4-3.3.1.aarch64.rpm motif-devel-2.3.4-3.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-1994 Security update for postgresql12 moderate SUSE Updates openSUSE-SLE 15.3 This update for postgresql12 fixes the following issues: Upgrade to version 12.7: - CVE-2021-32027: Fixed integer overflows in array subscripting calculations (bsc#1185924). - CVE-2021-32028: Fixed mishandling of junk columns in INSERT ... ON CONFLICT ... UPDATE target lists (bsc#1185925). - CVE-2021-32029: Fixed possibly-incorrect computation of UPDATE ... RETURNING outputs for joined cross-partition updates (bsc#1185926). - Don't use %_stop_on_removal, because it was meant to be private and got removed from openSUSE. %_restart_on_update is also private, but still supported and needed for now (bsc#1183168). - Re-enable build of the llvmjit subpackage on SLE, but it will only be delivered on PackageHub for now (bsc#1183118). - Disable icu for PostgreSQL 10 (and older) on TW (bsc#1179945). postgresql12-12.7-8.20.1.src.rpm postgresql12-12.7-8.20.1.x86_64.rpm postgresql12-contrib-12.7-8.20.1.x86_64.rpm postgresql12-devel-12.7-8.20.1.x86_64.rpm postgresql12-docs-12.7-8.20.1.noarch.rpm postgresql12-llvmjit-12.7-8.20.1.x86_64.rpm postgresql12-plperl-12.7-8.20.1.x86_64.rpm postgresql12-plpython-12.7-8.20.1.x86_64.rpm postgresql12-pltcl-12.7-8.20.1.x86_64.rpm postgresql12-server-12.7-8.20.1.x86_64.rpm postgresql12-server-devel-12.7-8.20.1.x86_64.rpm postgresql12-test-12.7-8.20.1.x86_64.rpm postgresql12-12.7-8.20.1.s390x.rpm postgresql12-contrib-12.7-8.20.1.s390x.rpm postgresql12-devel-12.7-8.20.1.s390x.rpm postgresql12-llvmjit-12.7-8.20.1.s390x.rpm postgresql12-plperl-12.7-8.20.1.s390x.rpm postgresql12-plpython-12.7-8.20.1.s390x.rpm postgresql12-pltcl-12.7-8.20.1.s390x.rpm postgresql12-server-12.7-8.20.1.s390x.rpm postgresql12-server-devel-12.7-8.20.1.s390x.rpm postgresql12-test-12.7-8.20.1.s390x.rpm postgresql12-12.7-8.20.1.ppc64le.rpm postgresql12-contrib-12.7-8.20.1.ppc64le.rpm postgresql12-devel-12.7-8.20.1.ppc64le.rpm postgresql12-llvmjit-12.7-8.20.1.ppc64le.rpm postgresql12-plperl-12.7-8.20.1.ppc64le.rpm postgresql12-plpython-12.7-8.20.1.ppc64le.rpm postgresql12-pltcl-12.7-8.20.1.ppc64le.rpm postgresql12-server-12.7-8.20.1.ppc64le.rpm postgresql12-server-devel-12.7-8.20.1.ppc64le.rpm postgresql12-test-12.7-8.20.1.ppc64le.rpm postgresql12-12.7-8.20.1.aarch64.rpm postgresql12-contrib-12.7-8.20.1.aarch64.rpm postgresql12-devel-12.7-8.20.1.aarch64.rpm postgresql12-llvmjit-12.7-8.20.1.aarch64.rpm postgresql12-plperl-12.7-8.20.1.aarch64.rpm postgresql12-plpython-12.7-8.20.1.aarch64.rpm postgresql12-pltcl-12.7-8.20.1.aarch64.rpm postgresql12-server-12.7-8.20.1.aarch64.rpm postgresql12-server-devel-12.7-8.20.1.aarch64.rpm postgresql12-test-12.7-8.20.1.aarch64.rpm openSUSE-SLE-15.3-2021-1785 Security update for postgresql13 moderate SUSE Updates openSUSE-SLE 15.3 This update for postgresql13 fixes the following issues: - Upgrade to version 13.3: - CVE-2021-32027: Fixed integer overflows in array subscripting calculations (bsc#1185924). - CVE-2021-32028: Fixed mishandling of junk columns in INSERT ... ON CONFLICT ... UPDATE target lists (bsc#1185925). - CVE-2021-32029: Fixed possibly-incorrect computation of UPDATE ... RETURNING outputs for joined cross-partition updates (bsc#1185926). - Don't use %_stop_on_removal, because it was meant to be private and got removed from openSUSE. %_restart_on_update is also private, but still supported and needed for now (bsc#1183168). - Re-enable build of the llvmjit subpackage on SLE, but it will only be delivered on PackageHub for now (bsc#1183118). - Disable icu for PostgreSQL 10 (and older) on TW (bsc#1179945). postgresql13-13.3-5.10.1.src.rpm postgresql13-13.3-5.10.1.x86_64.rpm postgresql13-contrib-13.3-5.10.1.x86_64.rpm postgresql13-devel-13.3-5.10.1.x86_64.rpm postgresql13-docs-13.3-5.10.1.noarch.rpm postgresql13-llvmjit-13.3-5.10.1.x86_64.rpm postgresql13-plperl-13.3-5.10.1.x86_64.rpm postgresql13-plpython-13.3-5.10.1.x86_64.rpm postgresql13-pltcl-13.3-5.10.1.x86_64.rpm postgresql13-server-13.3-5.10.1.x86_64.rpm postgresql13-server-devel-13.3-5.10.1.x86_64.rpm postgresql13-test-13.3-5.10.1.x86_64.rpm postgresql13-13.3-5.10.1.s390x.rpm postgresql13-contrib-13.3-5.10.1.s390x.rpm postgresql13-devel-13.3-5.10.1.s390x.rpm postgresql13-llvmjit-13.3-5.10.1.s390x.rpm postgresql13-plperl-13.3-5.10.1.s390x.rpm postgresql13-plpython-13.3-5.10.1.s390x.rpm postgresql13-pltcl-13.3-5.10.1.s390x.rpm postgresql13-server-13.3-5.10.1.s390x.rpm postgresql13-server-devel-13.3-5.10.1.s390x.rpm postgresql13-test-13.3-5.10.1.s390x.rpm postgresql13-13.3-5.10.1.ppc64le.rpm postgresql13-contrib-13.3-5.10.1.ppc64le.rpm postgresql13-devel-13.3-5.10.1.ppc64le.rpm postgresql13-llvmjit-13.3-5.10.1.ppc64le.rpm postgresql13-plperl-13.3-5.10.1.ppc64le.rpm postgresql13-plpython-13.3-5.10.1.ppc64le.rpm postgresql13-pltcl-13.3-5.10.1.ppc64le.rpm postgresql13-server-13.3-5.10.1.ppc64le.rpm postgresql13-server-devel-13.3-5.10.1.ppc64le.rpm postgresql13-test-13.3-5.10.1.ppc64le.rpm postgresql13-13.3-5.10.1.aarch64.rpm postgresql13-contrib-13.3-5.10.1.aarch64.rpm postgresql13-devel-13.3-5.10.1.aarch64.rpm postgresql13-llvmjit-13.3-5.10.1.aarch64.rpm postgresql13-plperl-13.3-5.10.1.aarch64.rpm postgresql13-plpython-13.3-5.10.1.aarch64.rpm postgresql13-pltcl-13.3-5.10.1.aarch64.rpm postgresql13-server-13.3-5.10.1.aarch64.rpm postgresql13-server-devel-13.3-5.10.1.aarch64.rpm postgresql13-test-13.3-5.10.1.aarch64.rpm openSUSE-SLE-15.3-2021-1819 Security update for gstreamer, gstreamer-plugins-bad, gstreamer-plugins-base, gstreamer-plugins-good, gstreamer-plugins-ugly important SUSE Updates openSUSE-SLE 15.3 This update for gstreamer, gstreamer-plugins-bad, gstreamer-plugins-base, gstreamer-plugins-good, gstreamer-plugins-ugly fixes the following issues: gstreamer was updated to version 1.16.3 (bsc#1181255): - delay creation of threadpools - bin: Fix `deep-element-removed` log message - buffer: fix meta sequence number fallback on rpi - bufferlist: foreach: always remove as parent if buffer is changed - bus: Make setting/replacing/clearing the sync handler thread-safe - elementfactory: Fix missing features in case a feature moves to another filename - element: When removing a ghost pad also unset its target - meta: intern registered impl string - registry: Use a toolchain-specific registry file on Windows - systemclock: Invalid internal time calculation causes non-increasing clock time on Windows - value: don't write to `const char *` - value: Fix segfault comparing empty GValueArrays - Revert floating enforcing - aggregator: fix iteration direction in skip_buffers - sparsefile: fix possible crash when seeking - baseparse: cache fix - baseparse: fix memory leak when subclass skips whole input buffer - baseparse: Set the private duration before posting a duration-changed message - basetransform: allow not passthrough if generate_output is implemented - identity: Fix a minor leak using meta_str - queue: protect against lost wakeups for iterm_del condition - queue2: Avoid races when posting buffering messages - queue2: Fix missing/dropped buffering messages at startup - identity: Unblock condition variable on FLUSH_START - check: Use `g_thread_yield()` instead of `g_usleep(1)` - tests: use cpu_family for arch checks - gst-launch: Follow up to missing `s/g_print/gst_print/g` - gst-inspect: Add define guard for `g_log_writer_supports_color()` - gst-launch: go back down to `GST_STATE_NULL` in one step. - device-monitor: list hidden providers before listing devices - autotools build fixes for GNU make 4.3 gstreamer-plugins-good was updated to version 1.16.3 (bsc#1181255): - deinterlace: on-the-fly renegotiation - flacenc: Pass audio info from set_format() to query_total_samples() explicitly - flacparse: fix broken reordering of flac metadata - jack: Use jack_free(3) to release ports - jpegdec: check buffer size before dereferencing - pulse: fix discovery of newly added devices - qtdemux fuzzing fixes - qtdemux: Add 'mp3 ' fourcc that VLC seems to produce now - qtdemux: Specify REDIRECT information in error message - rtpbin: fix shutdown crash in rtpbin - rtpsession: rename RTCP thread - rtpvp8pay, rtpvp9pay: fix caps leak in set_caps() - rtpjpegdepay: outputs framed jpeg - rtpjitterbuffer: Properly free internal packets queue in finalize() - rtspsrc: Don't return TRUE for unhandled query - rtspsrc: Avoid stack overflow recursing waiting for response - rtspsrc: Use the correct type for storing the max-rtcp-rtp-time-diff property - rtspsrc: Error out when failling to receive message response - rtspsrc: Fix for segmentation fault when handling set/get_parameter requests - speex: Fix crash on Windows caused by cross-CRT issue - speexdec: Crash when stopping the pipeline - splitmuxsrc: Properly stop the loop if no part reader is present - use gst_element_class_set_metadata when passing dynamic strings - v4l2videodec: Increase internal bitstream pool size - v4l2: fix crash when handling unsupported video format - videocrop: allow properties to be animated by GstController - videomixer: Don't leak peer caps - vp8enc/vp8enc: set 1 for the default value of VP8E_SET_STATIC_THRESHOLD - wavenc: Fix writing of the channel mask with >2 channels gstreamer-plugins-bad was updated to version 1.16.3 (bsc#1181255): - amcvideodec: fix sync meta copying not taking a reference - audiobuffersplit: Perform discont tracking on running time - audiobuffersplit: Specify in the template caps that only interleaved audio is supported - audiobuffersplit: Unset DISCONT flag if not discontinuous - autoconvert: Fix lock-less exchange or free condition - autoconvert: fix compiler warnings with g_atomic on recent GLib versions - avfvideosrc: element requests camera permissions even with capture-screen property is true - codecparsers: h264parser: guard against ref_pic_markings overflow - dtlsconnection: Avoid segmentation fault when no srtp capabilities are negotiated - dtls/connection: fix EOF handling with openssl 1.1.1e - fdkaacdec: add support for mpegversion=2 - hls: Check nettle version to ensure AES128 support - ipcpipeline: Rework compiler checks - interlace: Increment phase_index before checking if we're at the end of the phase - lv2: Make it build with -fno-common - h264parser: Do not allocate too large size of memory for registered user data SEI - ladspa: fix unbounded integer properties - modplug: avoid division by zero - msdkdec: Fix GstMsdkContext leak - msdkenc: fix leaks on windows - musepackdec: Don't fail all queries if no sample rate is known yet - openslessink: Allow openslessink to handle 48kHz streams. - opencv: allow compilation against 4.2.x - proxysink: event_function needs to handle the event when it is disconnecetd from proxysrc - vulkan: Drop use of VK_RESULT_BEGIN_RANGE - wasapi: added missing lock release in case of error in gst_wasapi_xxx_reset - wasapi: Fix possible deadlock while downwards state change - waylandsink: Clear window when pipeline is stopped - webrtc: Support non-trickle ICE candidates in the SDP - webrtc: Unmap all non-binary buffers received via the datachannel - meson: build with neon 0.31 - Drop upstream fixed patch: gstreamer-h264parser-fix-overflow.patch - h264parser: guard against ref_pic_markings overflow (bsc#1181255 CVE-2021-3185) - Disable the kate/libtiger plugin. Kate streams for karaoke are not used anymore, and the source tarball for libtiger is no longer available upstream. (jsc#SLE-13843) gstreamer-plugins-ugly was updated to version 1.16.3 (bsc#1181255): + x264enc: corrected em_data value in CEA-708 CC SEI message gstreamer-plugins-base was updated to version 1.16.3 (bsc#1181255): - audioaggregator: Check all downstream allowed caps structures if they support the upstream rate - audioaggregator: Fix negotiation with downstream if there is no peer yet - audioencoder: fix segment event leak - discoverer: Fix caps handling in `pad-added` signal handler - discoverer: Start discovering next URI from right thread - fft: Update our kiss fft version, fixes thread-safety and concurrency issues and misc other things - gl: numerous memory fixes (use-after-free, leaks, missing NULL-ify) - gl/display/egl: ensure debug category is initialized - gstglwindow_x11: fix resize - pbutils: Add latest H.264 level values - rtpbuffer: fix header extension length validation - video: Fix NV12_64Z32 number of component - video-format: RGB16/15 are not 16 bit per component but only 5.333 and 5 - video: fix top/bottom field flags - videodecoder: don't copy interlace-mode from reference state - appsrc/appsink: Make setting/replacing callbacks thread-safe - compositor: Fix checkerboard filling for BGRx/RGBx and UYVY/YUY2/YVYU - decodebin3: only force streams-selected seqnum after a select-streams - glupload: Fix fallback from direct dmabuf to dmabuf upload method - glvideomixer: perform `_get_highest_precision()` on the GL thread - libvisual: use `gst_element_class_set_metadata()` when passing dynamic strings - oggstream: Workaround for broken PAR in VP8 BOS - subparse: accept WebVTT timestamps without an hour component - playbin: Handle error message with redirection indication - textrender: Fix AYUV output. - typefind: Consider MPEG-PS PSM to be a PES type - uridecodebin3: default to non-0 buffer-size and buffer-duration, otherwise it could potentially cause big memory allocations over time - videoaggregator: Don't configure NULL chroma-site/colorimetry - videorate/videoscale/audioresample: Ensure that the caps returned from... - build: Replace bashisms in configure for Wayland and GLES3 gstreamer-1.16.3-3.3.1.src.rpm gstreamer-1.16.3-3.3.1.x86_64.rpm gstreamer-32bit-1.16.3-3.3.1.x86_64.rpm gstreamer-devel-1.16.3-3.3.1.x86_64.rpm gstreamer-doc-1.16.3-3.3.1.x86_64.rpm gstreamer-lang-1.16.3-3.3.1.noarch.rpm gstreamer-plugins-base-1.16.3-4.3.1.src.rpm gstreamer-plugins-base-1.16.3-4.3.1.x86_64.rpm gstreamer-plugins-base-32bit-1.16.3-4.3.1.x86_64.rpm gstreamer-plugins-base-devel-1.16.3-4.3.1.x86_64.rpm gstreamer-plugins-base-devel-32bit-1.16.3-4.3.1.x86_64.rpm gstreamer-plugins-base-doc-1.16.3-4.3.1.x86_64.rpm gstreamer-plugins-base-lang-1.16.3-4.3.1.noarch.rpm gstreamer-plugins-good-1.16.3-3.3.1.src.rpm gstreamer-plugins-good-1.16.3-3.3.1.x86_64.rpm gstreamer-plugins-good-32bit-1.16.3-3.3.1.x86_64.rpm gstreamer-plugins-good-doc-1.16.3-3.3.1.x86_64.rpm gstreamer-plugins-good-extra-1.16.3-3.3.1.x86_64.rpm gstreamer-plugins-good-extra-32bit-1.16.3-3.3.1.x86_64.rpm gstreamer-plugins-good-gtk-1.16.3-3.3.1.x86_64.rpm gstreamer-plugins-good-jack-1.16.3-3.3.1.x86_64.rpm gstreamer-plugins-good-jack-32bit-1.16.3-3.3.1.x86_64.rpm gstreamer-plugins-good-lang-1.16.3-3.3.1.noarch.rpm gstreamer-plugins-good-qtqml-1.16.3-3.3.1.x86_64.rpm gstreamer-plugins-ugly-1.16.3-3.3.1.src.rpm gstreamer-plugins-ugly-1.16.3-3.3.1.x86_64.rpm gstreamer-plugins-ugly-32bit-1.16.3-3.3.1.x86_64.rpm gstreamer-plugins-ugly-doc-1.16.3-3.3.1.x86_64.rpm gstreamer-plugins-ugly-lang-1.16.3-3.3.1.noarch.rpm gstreamer-utils-1.16.3-3.3.1.x86_64.rpm libgstallocators-1_0-0-1.16.3-4.3.1.x86_64.rpm libgstallocators-1_0-0-32bit-1.16.3-4.3.1.x86_64.rpm libgstapp-1_0-0-1.16.3-4.3.1.x86_64.rpm libgstapp-1_0-0-32bit-1.16.3-4.3.1.x86_64.rpm libgstaudio-1_0-0-1.16.3-4.3.1.x86_64.rpm libgstaudio-1_0-0-32bit-1.16.3-4.3.1.x86_64.rpm libgstfft-1_0-0-1.16.3-4.3.1.x86_64.rpm libgstfft-1_0-0-32bit-1.16.3-4.3.1.x86_64.rpm libgstgl-1_0-0-1.16.3-4.3.1.x86_64.rpm libgstgl-1_0-0-32bit-1.16.3-4.3.1.x86_64.rpm libgstpbutils-1_0-0-1.16.3-4.3.1.x86_64.rpm libgstpbutils-1_0-0-32bit-1.16.3-4.3.1.x86_64.rpm libgstreamer-1_0-0-1.16.3-3.3.1.x86_64.rpm libgstreamer-1_0-0-32bit-1.16.3-3.3.1.x86_64.rpm libgstriff-1_0-0-1.16.3-4.3.1.x86_64.rpm libgstriff-1_0-0-32bit-1.16.3-4.3.1.x86_64.rpm libgstrtp-1_0-0-1.16.3-4.3.1.x86_64.rpm libgstrtp-1_0-0-32bit-1.16.3-4.3.1.x86_64.rpm libgstrtsp-1_0-0-1.16.3-4.3.1.x86_64.rpm libgstrtsp-1_0-0-32bit-1.16.3-4.3.1.x86_64.rpm libgstsdp-1_0-0-1.16.3-4.3.1.x86_64.rpm libgstsdp-1_0-0-32bit-1.16.3-4.3.1.x86_64.rpm libgsttag-1_0-0-1.16.3-4.3.1.x86_64.rpm libgsttag-1_0-0-32bit-1.16.3-4.3.1.x86_64.rpm libgstvideo-1_0-0-1.16.3-4.3.1.x86_64.rpm libgstvideo-1_0-0-32bit-1.16.3-4.3.1.x86_64.rpm typelib-1_0-Gst-1_0-1.16.3-3.3.1.x86_64.rpm typelib-1_0-GstAllocators-1_0-1.16.3-4.3.1.x86_64.rpm typelib-1_0-GstApp-1_0-1.16.3-4.3.1.x86_64.rpm typelib-1_0-GstAudio-1_0-1.16.3-4.3.1.x86_64.rpm typelib-1_0-GstGL-1_0-1.16.3-4.3.1.x86_64.rpm typelib-1_0-GstPbutils-1_0-1.16.3-4.3.1.x86_64.rpm typelib-1_0-GstRtp-1_0-1.16.3-4.3.1.x86_64.rpm typelib-1_0-GstRtsp-1_0-1.16.3-4.3.1.x86_64.rpm typelib-1_0-GstSdp-1_0-1.16.3-4.3.1.x86_64.rpm typelib-1_0-GstTag-1_0-1.16.3-4.3.1.x86_64.rpm typelib-1_0-GstVideo-1_0-1.16.3-4.3.1.x86_64.rpm gstreamer-1.16.3-3.3.1.s390x.rpm gstreamer-devel-1.16.3-3.3.1.s390x.rpm gstreamer-doc-1.16.3-3.3.1.s390x.rpm gstreamer-plugins-base-1.16.3-4.3.1.s390x.rpm gstreamer-plugins-base-devel-1.16.3-4.3.1.s390x.rpm gstreamer-plugins-base-doc-1.16.3-4.3.1.s390x.rpm gstreamer-plugins-good-1.16.3-3.3.1.s390x.rpm gstreamer-plugins-good-doc-1.16.3-3.3.1.s390x.rpm gstreamer-plugins-good-extra-1.16.3-3.3.1.s390x.rpm gstreamer-plugins-good-gtk-1.16.3-3.3.1.s390x.rpm gstreamer-plugins-good-jack-1.16.3-3.3.1.s390x.rpm gstreamer-plugins-good-qtqml-1.16.3-3.3.1.s390x.rpm gstreamer-plugins-ugly-1.16.3-3.3.1.s390x.rpm gstreamer-plugins-ugly-doc-1.16.3-3.3.1.s390x.rpm gstreamer-utils-1.16.3-3.3.1.s390x.rpm libgstallocators-1_0-0-1.16.3-4.3.1.s390x.rpm libgstapp-1_0-0-1.16.3-4.3.1.s390x.rpm libgstaudio-1_0-0-1.16.3-4.3.1.s390x.rpm libgstfft-1_0-0-1.16.3-4.3.1.s390x.rpm libgstgl-1_0-0-1.16.3-4.3.1.s390x.rpm libgstpbutils-1_0-0-1.16.3-4.3.1.s390x.rpm libgstreamer-1_0-0-1.16.3-3.3.1.s390x.rpm libgstriff-1_0-0-1.16.3-4.3.1.s390x.rpm libgstrtp-1_0-0-1.16.3-4.3.1.s390x.rpm libgstrtsp-1_0-0-1.16.3-4.3.1.s390x.rpm libgstsdp-1_0-0-1.16.3-4.3.1.s390x.rpm libgsttag-1_0-0-1.16.3-4.3.1.s390x.rpm libgstvideo-1_0-0-1.16.3-4.3.1.s390x.rpm typelib-1_0-Gst-1_0-1.16.3-3.3.1.s390x.rpm typelib-1_0-GstAllocators-1_0-1.16.3-4.3.1.s390x.rpm typelib-1_0-GstApp-1_0-1.16.3-4.3.1.s390x.rpm typelib-1_0-GstAudio-1_0-1.16.3-4.3.1.s390x.rpm typelib-1_0-GstGL-1_0-1.16.3-4.3.1.s390x.rpm typelib-1_0-GstPbutils-1_0-1.16.3-4.3.1.s390x.rpm typelib-1_0-GstRtp-1_0-1.16.3-4.3.1.s390x.rpm typelib-1_0-GstRtsp-1_0-1.16.3-4.3.1.s390x.rpm typelib-1_0-GstSdp-1_0-1.16.3-4.3.1.s390x.rpm typelib-1_0-GstTag-1_0-1.16.3-4.3.1.s390x.rpm typelib-1_0-GstVideo-1_0-1.16.3-4.3.1.s390x.rpm gstreamer-1.16.3-3.3.1.ppc64le.rpm gstreamer-devel-1.16.3-3.3.1.ppc64le.rpm gstreamer-doc-1.16.3-3.3.1.ppc64le.rpm gstreamer-plugins-base-1.16.3-4.3.1.ppc64le.rpm gstreamer-plugins-base-devel-1.16.3-4.3.1.ppc64le.rpm gstreamer-plugins-base-doc-1.16.3-4.3.1.ppc64le.rpm gstreamer-plugins-good-1.16.3-3.3.1.ppc64le.rpm gstreamer-plugins-good-doc-1.16.3-3.3.1.ppc64le.rpm gstreamer-plugins-good-extra-1.16.3-3.3.1.ppc64le.rpm gstreamer-plugins-good-gtk-1.16.3-3.3.1.ppc64le.rpm gstreamer-plugins-good-jack-1.16.3-3.3.1.ppc64le.rpm gstreamer-plugins-good-qtqml-1.16.3-3.3.1.ppc64le.rpm gstreamer-plugins-ugly-1.16.3-3.3.1.ppc64le.rpm gstreamer-plugins-ugly-doc-1.16.3-3.3.1.ppc64le.rpm gstreamer-utils-1.16.3-3.3.1.ppc64le.rpm libgstallocators-1_0-0-1.16.3-4.3.1.ppc64le.rpm libgstapp-1_0-0-1.16.3-4.3.1.ppc64le.rpm libgstaudio-1_0-0-1.16.3-4.3.1.ppc64le.rpm libgstfft-1_0-0-1.16.3-4.3.1.ppc64le.rpm libgstgl-1_0-0-1.16.3-4.3.1.ppc64le.rpm libgstpbutils-1_0-0-1.16.3-4.3.1.ppc64le.rpm libgstreamer-1_0-0-1.16.3-3.3.1.ppc64le.rpm libgstriff-1_0-0-1.16.3-4.3.1.ppc64le.rpm libgstrtp-1_0-0-1.16.3-4.3.1.ppc64le.rpm libgstrtsp-1_0-0-1.16.3-4.3.1.ppc64le.rpm libgstsdp-1_0-0-1.16.3-4.3.1.ppc64le.rpm libgsttag-1_0-0-1.16.3-4.3.1.ppc64le.rpm libgstvideo-1_0-0-1.16.3-4.3.1.ppc64le.rpm typelib-1_0-Gst-1_0-1.16.3-3.3.1.ppc64le.rpm typelib-1_0-GstAllocators-1_0-1.16.3-4.3.1.ppc64le.rpm typelib-1_0-GstApp-1_0-1.16.3-4.3.1.ppc64le.rpm typelib-1_0-GstAudio-1_0-1.16.3-4.3.1.ppc64le.rpm typelib-1_0-GstGL-1_0-1.16.3-4.3.1.ppc64le.rpm typelib-1_0-GstPbutils-1_0-1.16.3-4.3.1.ppc64le.rpm typelib-1_0-GstRtp-1_0-1.16.3-4.3.1.ppc64le.rpm typelib-1_0-GstRtsp-1_0-1.16.3-4.3.1.ppc64le.rpm typelib-1_0-GstSdp-1_0-1.16.3-4.3.1.ppc64le.rpm typelib-1_0-GstTag-1_0-1.16.3-4.3.1.ppc64le.rpm typelib-1_0-GstVideo-1_0-1.16.3-4.3.1.ppc64le.rpm gstreamer-1.16.3-3.3.1.aarch64.rpm gstreamer-devel-1.16.3-3.3.1.aarch64.rpm gstreamer-doc-1.16.3-3.3.1.aarch64.rpm gstreamer-plugins-base-1.16.3-4.3.1.aarch64.rpm gstreamer-plugins-base-devel-1.16.3-4.3.1.aarch64.rpm gstreamer-plugins-base-doc-1.16.3-4.3.1.aarch64.rpm gstreamer-plugins-good-1.16.3-3.3.1.aarch64.rpm gstreamer-plugins-good-doc-1.16.3-3.3.1.aarch64.rpm gstreamer-plugins-good-extra-1.16.3-3.3.1.aarch64.rpm gstreamer-plugins-good-gtk-1.16.3-3.3.1.aarch64.rpm gstreamer-plugins-good-jack-1.16.3-3.3.1.aarch64.rpm gstreamer-plugins-good-qtqml-1.16.3-3.3.1.aarch64.rpm gstreamer-plugins-ugly-1.16.3-3.3.1.aarch64.rpm gstreamer-plugins-ugly-doc-1.16.3-3.3.1.aarch64.rpm gstreamer-utils-1.16.3-3.3.1.aarch64.rpm libgstallocators-1_0-0-1.16.3-4.3.1.aarch64.rpm libgstapp-1_0-0-1.16.3-4.3.1.aarch64.rpm libgstaudio-1_0-0-1.16.3-4.3.1.aarch64.rpm libgstfft-1_0-0-1.16.3-4.3.1.aarch64.rpm libgstgl-1_0-0-1.16.3-4.3.1.aarch64.rpm libgstpbutils-1_0-0-1.16.3-4.3.1.aarch64.rpm libgstreamer-1_0-0-1.16.3-3.3.1.aarch64.rpm libgstriff-1_0-0-1.16.3-4.3.1.aarch64.rpm libgstrtp-1_0-0-1.16.3-4.3.1.aarch64.rpm libgstrtsp-1_0-0-1.16.3-4.3.1.aarch64.rpm libgstsdp-1_0-0-1.16.3-4.3.1.aarch64.rpm libgsttag-1_0-0-1.16.3-4.3.1.aarch64.rpm libgstvideo-1_0-0-1.16.3-4.3.1.aarch64.rpm typelib-1_0-Gst-1_0-1.16.3-3.3.1.aarch64.rpm typelib-1_0-GstAllocators-1_0-1.16.3-4.3.1.aarch64.rpm typelib-1_0-GstApp-1_0-1.16.3-4.3.1.aarch64.rpm typelib-1_0-GstAudio-1_0-1.16.3-4.3.1.aarch64.rpm typelib-1_0-GstGL-1_0-1.16.3-4.3.1.aarch64.rpm typelib-1_0-GstPbutils-1_0-1.16.3-4.3.1.aarch64.rpm typelib-1_0-GstRtp-1_0-1.16.3-4.3.1.aarch64.rpm typelib-1_0-GstRtsp-1_0-1.16.3-4.3.1.aarch64.rpm typelib-1_0-GstSdp-1_0-1.16.3-4.3.1.aarch64.rpm typelib-1_0-GstTag-1_0-1.16.3-4.3.1.aarch64.rpm typelib-1_0-GstVideo-1_0-1.16.3-4.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-1917 Security update for libxml2 moderate SUSE Updates openSUSE-SLE 15.3 This update for libxml2 fixes the following issues: - CVE-2021-3541: Fixed exponential entity expansion attack bypasses all existing protection mechanisms. (bsc#1186015) libxml2-2-2.9.7-3.37.1.x86_64.rpm libxml2-2-32bit-2.9.7-3.37.1.x86_64.rpm libxml2-2.9.7-3.37.1.src.rpm libxml2-devel-2.9.7-3.37.1.x86_64.rpm libxml2-devel-32bit-2.9.7-3.37.1.x86_64.rpm libxml2-doc-2.9.7-3.37.1.noarch.rpm libxml2-tools-2.9.7-3.37.1.x86_64.rpm python-libxml2-python-2.9.7-3.37.1.src.rpm python2-libxml2-python-2.9.7-3.37.1.x86_64.rpm python3-libxml2-python-2.9.7-3.37.1.x86_64.rpm libxml2-2-2.9.7-3.37.1.s390x.rpm libxml2-devel-2.9.7-3.37.1.s390x.rpm libxml2-tools-2.9.7-3.37.1.s390x.rpm python2-libxml2-python-2.9.7-3.37.1.s390x.rpm python3-libxml2-python-2.9.7-3.37.1.s390x.rpm libxml2-2-2.9.7-3.37.1.ppc64le.rpm libxml2-devel-2.9.7-3.37.1.ppc64le.rpm libxml2-tools-2.9.7-3.37.1.ppc64le.rpm python2-libxml2-python-2.9.7-3.37.1.ppc64le.rpm python3-libxml2-python-2.9.7-3.37.1.ppc64le.rpm libxml2-2-2.9.7-3.37.1.aarch64.rpm libxml2-devel-2.9.7-3.37.1.aarch64.rpm libxml2-tools-2.9.7-3.37.1.aarch64.rpm python2-libxml2-python-2.9.7-3.37.1.aarch64.rpm python3-libxml2-python-2.9.7-3.37.1.aarch64.rpm openSUSE-SLE-15.3-2021-1948 Security update for djvulibre important SUSE Updates openSUSE-SLE 15.3 This update for djvulibre fixes the following issues: - CVE-2021-3500: Stack overflow in function DJVU:DjVuDocument:get_djvu_file() via crafted djvu file (bsc#1186253) djvulibre-3.5.27-11.6.1.src.rpm djvulibre-3.5.27-11.6.1.x86_64.rpm djvulibre-doc-3.5.27-11.6.1.noarch.rpm libdjvulibre-devel-3.5.27-11.6.1.x86_64.rpm libdjvulibre21-3.5.27-11.6.1.x86_64.rpm djvulibre-3.5.27-11.6.1.s390x.rpm libdjvulibre-devel-3.5.27-11.6.1.s390x.rpm libdjvulibre21-3.5.27-11.6.1.s390x.rpm djvulibre-3.5.27-11.6.1.ppc64le.rpm libdjvulibre-devel-3.5.27-11.6.1.ppc64le.rpm libdjvulibre21-3.5.27-11.6.1.ppc64le.rpm djvulibre-3.5.27-11.6.1.aarch64.rpm libdjvulibre-devel-3.5.27-11.6.1.aarch64.rpm libdjvulibre21-3.5.27-11.6.1.aarch64.rpm openSUSE-SLE-15.3-2021-1815 Security update for nginx important SUSE Updates openSUSE-SLE 15.3 This update for nginx fixes the following issues: - CVE-2021-23017: nginx DNS resolver off-by-one heap write (bsc#1186126) nginx-1.19.8-3.3.1.src.rpm nginx-1.19.8-3.3.1.x86_64.rpm nginx-source-1.19.8-3.3.1.noarch.rpm vim-plugin-nginx-1.19.8-3.3.1.noarch.rpm nginx-1.19.8-3.3.1.s390x.rpm nginx-1.19.8-3.3.1.ppc64le.rpm nginx-1.19.8-3.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-1841 Security update for dhcp important SUSE Updates openSUSE-SLE 15.3 This update for dhcp fixes the following issues: - CVE-2021-25217: A buffer overrun in lease file parsing code can be used to exploit a common vulnerability shared by dhcpd and dhclient (bsc#1186382) dhcp-4.3.6.P1-6.11.1.src.rpm dhcp-4.3.6.P1-6.11.1.x86_64.rpm dhcp-client-4.3.6.P1-6.11.1.x86_64.rpm dhcp-devel-4.3.6.P1-6.11.1.x86_64.rpm dhcp-doc-4.3.6.P1-6.11.1.x86_64.rpm dhcp-relay-4.3.6.P1-6.11.1.x86_64.rpm dhcp-server-4.3.6.P1-6.11.1.x86_64.rpm dhcp-4.3.6.P1-6.11.1.s390x.rpm dhcp-client-4.3.6.P1-6.11.1.s390x.rpm dhcp-devel-4.3.6.P1-6.11.1.s390x.rpm dhcp-doc-4.3.6.P1-6.11.1.s390x.rpm dhcp-relay-4.3.6.P1-6.11.1.s390x.rpm dhcp-server-4.3.6.P1-6.11.1.s390x.rpm dhcp-4.3.6.P1-6.11.1.ppc64le.rpm dhcp-client-4.3.6.P1-6.11.1.ppc64le.rpm dhcp-devel-4.3.6.P1-6.11.1.ppc64le.rpm dhcp-doc-4.3.6.P1-6.11.1.ppc64le.rpm dhcp-relay-4.3.6.P1-6.11.1.ppc64le.rpm dhcp-server-4.3.6.P1-6.11.1.ppc64le.rpm dhcp-4.3.6.P1-6.11.1.aarch64.rpm dhcp-client-4.3.6.P1-6.11.1.aarch64.rpm dhcp-devel-4.3.6.P1-6.11.1.aarch64.rpm dhcp-doc-4.3.6.P1-6.11.1.aarch64.rpm dhcp-relay-4.3.6.P1-6.11.1.aarch64.rpm dhcp-server-4.3.6.P1-6.11.1.aarch64.rpm openSUSE-SLE-15.3-2021-1834 Security update for ceph important SUSE Updates openSUSE-SLE 15.3 This update for ceph fixes the following issues: - Update to 15.2.12-83-g528da226523: - (CVE-2021-3509) fix cookie injection issue (bsc#1186021) - (CVE-2021-3531) RGWSwiftWebsiteHandler::is_web_dir checks empty subdir_name (bsc#1186020) - (CVE-2021-3524) sanitize \r in s3 CORSConfiguration’s ExposeHeader (bsc#1185619) ceph-15.2.12.83+g528da226523-3.25.1.src.rpm ceph-15.2.12.83+g528da226523-3.25.1.x86_64.rpm ceph-base-15.2.12.83+g528da226523-3.25.1.x86_64.rpm ceph-common-15.2.12.83+g528da226523-3.25.1.x86_64.rpm ceph-fuse-15.2.12.83+g528da226523-3.25.1.x86_64.rpm ceph-grafana-dashboards-15.2.12.83+g528da226523-3.25.1.noarch.rpm ceph-immutable-object-cache-15.2.12.83+g528da226523-3.25.1.x86_64.rpm ceph-mds-15.2.12.83+g528da226523-3.25.1.x86_64.rpm ceph-mgr-15.2.12.83+g528da226523-3.25.1.x86_64.rpm ceph-mgr-cephadm-15.2.12.83+g528da226523-3.25.1.noarch.rpm ceph-mgr-dashboard-15.2.12.83+g528da226523-3.25.1.noarch.rpm ceph-mgr-diskprediction-cloud-15.2.12.83+g528da226523-3.25.1.noarch.rpm ceph-mgr-diskprediction-local-15.2.12.83+g528da226523-3.25.1.noarch.rpm ceph-mgr-k8sevents-15.2.12.83+g528da226523-3.25.1.noarch.rpm ceph-mgr-modules-core-15.2.12.83+g528da226523-3.25.1.noarch.rpm ceph-mgr-rook-15.2.12.83+g528da226523-3.25.1.noarch.rpm ceph-mon-15.2.12.83+g528da226523-3.25.1.x86_64.rpm ceph-osd-15.2.12.83+g528da226523-3.25.1.x86_64.rpm ceph-prometheus-alerts-15.2.12.83+g528da226523-3.25.1.noarch.rpm ceph-radosgw-15.2.12.83+g528da226523-3.25.1.x86_64.rpm ceph-test-15.2.12.83+g528da226523-3.25.1.src.rpm ceph-test-15.2.12.83+g528da226523-3.25.1.x86_64.rpm cephadm-15.2.12.83+g528da226523-3.25.1.noarch.rpm cephfs-shell-15.2.12.83+g528da226523-3.25.1.x86_64.rpm libcephfs-devel-15.2.12.83+g528da226523-3.25.1.x86_64.rpm libcephfs2-15.2.12.83+g528da226523-3.25.1.x86_64.rpm librados-devel-15.2.12.83+g528da226523-3.25.1.x86_64.rpm librados2-15.2.12.83+g528da226523-3.25.1.x86_64.rpm libradospp-devel-15.2.12.83+g528da226523-3.25.1.x86_64.rpm librbd-devel-15.2.12.83+g528da226523-3.25.1.x86_64.rpm librbd1-15.2.12.83+g528da226523-3.25.1.x86_64.rpm librgw-devel-15.2.12.83+g528da226523-3.25.1.x86_64.rpm librgw2-15.2.12.83+g528da226523-3.25.1.x86_64.rpm python3-ceph-argparse-15.2.12.83+g528da226523-3.25.1.x86_64.rpm python3-ceph-common-15.2.12.83+g528da226523-3.25.1.x86_64.rpm python3-cephfs-15.2.12.83+g528da226523-3.25.1.x86_64.rpm python3-rados-15.2.12.83+g528da226523-3.25.1.x86_64.rpm python3-rbd-15.2.12.83+g528da226523-3.25.1.x86_64.rpm python3-rgw-15.2.12.83+g528da226523-3.25.1.x86_64.rpm rados-objclass-devel-15.2.12.83+g528da226523-3.25.1.x86_64.rpm rbd-fuse-15.2.12.83+g528da226523-3.25.1.x86_64.rpm rbd-mirror-15.2.12.83+g528da226523-3.25.1.x86_64.rpm rbd-nbd-15.2.12.83+g528da226523-3.25.1.x86_64.rpm ceph-15.2.12.83+g528da226523-3.25.1.s390x.rpm ceph-base-15.2.12.83+g528da226523-3.25.1.s390x.rpm ceph-common-15.2.12.83+g528da226523-3.25.1.s390x.rpm ceph-fuse-15.2.12.83+g528da226523-3.25.1.s390x.rpm ceph-immutable-object-cache-15.2.12.83+g528da226523-3.25.1.s390x.rpm ceph-mds-15.2.12.83+g528da226523-3.25.1.s390x.rpm ceph-mgr-15.2.12.83+g528da226523-3.25.1.s390x.rpm ceph-mon-15.2.12.83+g528da226523-3.25.1.s390x.rpm ceph-osd-15.2.12.83+g528da226523-3.25.1.s390x.rpm ceph-radosgw-15.2.12.83+g528da226523-3.25.1.s390x.rpm cephfs-shell-15.2.12.83+g528da226523-3.25.1.s390x.rpm libcephfs-devel-15.2.12.83+g528da226523-3.25.1.s390x.rpm libcephfs2-15.2.12.83+g528da226523-3.25.1.s390x.rpm librados-devel-15.2.12.83+g528da226523-3.25.1.s390x.rpm librados2-15.2.12.83+g528da226523-3.25.1.s390x.rpm libradospp-devel-15.2.12.83+g528da226523-3.25.1.s390x.rpm librbd-devel-15.2.12.83+g528da226523-3.25.1.s390x.rpm librbd1-15.2.12.83+g528da226523-3.25.1.s390x.rpm librgw-devel-15.2.12.83+g528da226523-3.25.1.s390x.rpm librgw2-15.2.12.83+g528da226523-3.25.1.s390x.rpm python3-ceph-argparse-15.2.12.83+g528da226523-3.25.1.s390x.rpm python3-ceph-common-15.2.12.83+g528da226523-3.25.1.s390x.rpm python3-cephfs-15.2.12.83+g528da226523-3.25.1.s390x.rpm python3-rados-15.2.12.83+g528da226523-3.25.1.s390x.rpm python3-rbd-15.2.12.83+g528da226523-3.25.1.s390x.rpm python3-rgw-15.2.12.83+g528da226523-3.25.1.s390x.rpm rados-objclass-devel-15.2.12.83+g528da226523-3.25.1.s390x.rpm rbd-fuse-15.2.12.83+g528da226523-3.25.1.s390x.rpm rbd-mirror-15.2.12.83+g528da226523-3.25.1.s390x.rpm rbd-nbd-15.2.12.83+g528da226523-3.25.1.s390x.rpm ceph-15.2.12.83+g528da226523-3.25.1.ppc64le.rpm ceph-base-15.2.12.83+g528da226523-3.25.1.ppc64le.rpm ceph-common-15.2.12.83+g528da226523-3.25.1.ppc64le.rpm ceph-fuse-15.2.12.83+g528da226523-3.25.1.ppc64le.rpm ceph-immutable-object-cache-15.2.12.83+g528da226523-3.25.1.ppc64le.rpm ceph-mds-15.2.12.83+g528da226523-3.25.1.ppc64le.rpm ceph-mgr-15.2.12.83+g528da226523-3.25.1.ppc64le.rpm ceph-mon-15.2.12.83+g528da226523-3.25.1.ppc64le.rpm ceph-osd-15.2.12.83+g528da226523-3.25.1.ppc64le.rpm ceph-radosgw-15.2.12.83+g528da226523-3.25.1.ppc64le.rpm cephfs-shell-15.2.12.83+g528da226523-3.25.1.ppc64le.rpm libcephfs-devel-15.2.12.83+g528da226523-3.25.1.ppc64le.rpm libcephfs2-15.2.12.83+g528da226523-3.25.1.ppc64le.rpm librados-devel-15.2.12.83+g528da226523-3.25.1.ppc64le.rpm librados2-15.2.12.83+g528da226523-3.25.1.ppc64le.rpm libradospp-devel-15.2.12.83+g528da226523-3.25.1.ppc64le.rpm librbd-devel-15.2.12.83+g528da226523-3.25.1.ppc64le.rpm librbd1-15.2.12.83+g528da226523-3.25.1.ppc64le.rpm librgw-devel-15.2.12.83+g528da226523-3.25.1.ppc64le.rpm librgw2-15.2.12.83+g528da226523-3.25.1.ppc64le.rpm python3-ceph-argparse-15.2.12.83+g528da226523-3.25.1.ppc64le.rpm python3-ceph-common-15.2.12.83+g528da226523-3.25.1.ppc64le.rpm python3-cephfs-15.2.12.83+g528da226523-3.25.1.ppc64le.rpm python3-rados-15.2.12.83+g528da226523-3.25.1.ppc64le.rpm python3-rbd-15.2.12.83+g528da226523-3.25.1.ppc64le.rpm python3-rgw-15.2.12.83+g528da226523-3.25.1.ppc64le.rpm rados-objclass-devel-15.2.12.83+g528da226523-3.25.1.ppc64le.rpm rbd-fuse-15.2.12.83+g528da226523-3.25.1.ppc64le.rpm rbd-mirror-15.2.12.83+g528da226523-3.25.1.ppc64le.rpm rbd-nbd-15.2.12.83+g528da226523-3.25.1.ppc64le.rpm ceph-15.2.12.83+g528da226523-3.25.1.aarch64.rpm ceph-base-15.2.12.83+g528da226523-3.25.1.aarch64.rpm ceph-common-15.2.12.83+g528da226523-3.25.1.aarch64.rpm ceph-fuse-15.2.12.83+g528da226523-3.25.1.aarch64.rpm ceph-immutable-object-cache-15.2.12.83+g528da226523-3.25.1.aarch64.rpm ceph-mds-15.2.12.83+g528da226523-3.25.1.aarch64.rpm ceph-mgr-15.2.12.83+g528da226523-3.25.1.aarch64.rpm ceph-mon-15.2.12.83+g528da226523-3.25.1.aarch64.rpm ceph-osd-15.2.12.83+g528da226523-3.25.1.aarch64.rpm ceph-radosgw-15.2.12.83+g528da226523-3.25.1.aarch64.rpm cephfs-shell-15.2.12.83+g528da226523-3.25.1.aarch64.rpm libcephfs-devel-15.2.12.83+g528da226523-3.25.1.aarch64.rpm libcephfs2-15.2.12.83+g528da226523-3.25.1.aarch64.rpm librados-devel-15.2.12.83+g528da226523-3.25.1.aarch64.rpm librados2-15.2.12.83+g528da226523-3.25.1.aarch64.rpm libradospp-devel-15.2.12.83+g528da226523-3.25.1.aarch64.rpm librbd-devel-15.2.12.83+g528da226523-3.25.1.aarch64.rpm librbd1-15.2.12.83+g528da226523-3.25.1.aarch64.rpm librgw-devel-15.2.12.83+g528da226523-3.25.1.aarch64.rpm librgw2-15.2.12.83+g528da226523-3.25.1.aarch64.rpm python3-ceph-argparse-15.2.12.83+g528da226523-3.25.1.aarch64.rpm python3-ceph-common-15.2.12.83+g528da226523-3.25.1.aarch64.rpm python3-cephfs-15.2.12.83+g528da226523-3.25.1.aarch64.rpm python3-rados-15.2.12.83+g528da226523-3.25.1.aarch64.rpm python3-rbd-15.2.12.83+g528da226523-3.25.1.aarch64.rpm python3-rgw-15.2.12.83+g528da226523-3.25.1.aarch64.rpm rados-objclass-devel-15.2.12.83+g528da226523-3.25.1.aarch64.rpm rbd-fuse-15.2.12.83+g528da226523-3.25.1.aarch64.rpm rbd-mirror-15.2.12.83+g528da226523-3.25.1.aarch64.rpm rbd-nbd-15.2.12.83+g528da226523-3.25.1.aarch64.rpm openSUSE-SLE-15.3-2021-1961 Security update for squid important SUSE Updates openSUSE-SLE 15.3 This update for squid fixes the following issues: - update to 4.15: - CVE-2021-28652: Broken cache manager URL parsing (bsc#1185918) - CVE-2021-28651: Memory leak in RFC 2169 response parsing (bsc#1185921) - CVE-2021-28662: Limit HeaderLookupTable_t::lookup() to BadHdr and specific IDs (bsc#1185919) - CVE-2021-31806: Handle more Range requests (bsc#1185916) - CVE-2020-25097: HTTP Request Smuggling vulnerability (bsc#1183436) - Handle more partial responses (bsc#1185923) - fix previous change to reinstante permissions macros, because the wrong path has been used (bsc#1171569). - use libexecdir instead of libdir to conform to recent changes in Factory (bsc#1171164). - Reinstate permissions macros for pinger binary, because the permissions package is also responsible for setting up the cap_net_raw capability, currently a fresh squid install doesn't get a capability bit at all (bsc#1171569). - Change pinger and basic_pam_auth helper to use standard permissions. pinger uses cap_net_raw=ep instead (bsc#1171569) squid-4.15-5.26.1.src.rpm squid-4.15-5.26.1.x86_64.rpm squid-4.15-5.26.1.s390x.rpm squid-4.15-5.26.1.ppc64le.rpm squid-4.15-5.26.1.aarch64.rpm openSUSE-SLE-15.3-2021-1798 Recommended update for ipmitool moderate SUSE Updates openSUSE-SLE 15.3 This update for ipmitool fixes the following issues: - Deprecated the use of /var/run. Moved to /run now (bsc#1185162) - Fixed a delay when trying to identify the appropriate cipher suite (bsc#1179133) ipmitool-1.8.18+git20200204.7ccea28-3.3.1.src.rpm ipmitool-1.8.18+git20200204.7ccea28-3.3.1.x86_64.rpm ipmitool-bmc-snmp-proxy-1.8.18+git20200204.7ccea28-3.3.1.noarch.rpm ipmitool-1.8.18+git20200204.7ccea28-3.3.1.s390x.rpm ipmitool-1.8.18+git20200204.7ccea28-3.3.1.ppc64le.rpm ipmitool-1.8.18+git20200204.7ccea28-3.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-2130 Feature implementation for python39-pip, python39-setuptools moderate SUSE Updates openSUSE-SLE 15.3 This update for python39-pip, python39-setuptools fixes the following issues: Changes in python39-setuptools: - Provide `python39-setuptools` version 44.1.1 with vendored dependencies. (jsc#SLE-17532, jsc#SLE-17957) Changes in python39-pip: - Provide `python39-pip` version 20.2.4 with vendored dependencies. (jsc#SLE-17532, jsc#SLE-17957) python39-pip-20.2.4-7.5.1.noarch.rpm python39-pip-20.2.4-7.5.1.src.rpm python39-setuptools-44.1.1-7.3.1.noarch.rpm python39-setuptools-44.1.1-7.3.1.src.rpm openSUSE-SLE-15.3-2021-1926 Recommended update for gcc moderate SUSE Updates openSUSE-SLE 15.3 This update for gcc fixes the following issues: - Added gccgo symlink and go and gofmt as alternatives to support parallel installation of golang (bsc#1096677) cpp-7-3.6.1.x86_64.rpm gcc-32bit-7-3.6.1.x86_64.rpm gcc-7-3.6.1.src.rpm gcc-7-3.6.1.x86_64.rpm gcc-PIE-7-3.6.1.x86_64.rpm gcc-ada-32bit-7-3.6.1.x86_64.rpm gcc-ada-7-3.6.1.x86_64.rpm gcc-c++-32bit-7-3.6.1.x86_64.rpm gcc-c++-7-3.6.1.x86_64.rpm gcc-fortran-32bit-7-3.6.1.x86_64.rpm gcc-fortran-7-3.6.1.x86_64.rpm gcc-go-32bit-7-3.6.1.x86_64.rpm gcc-go-7-3.6.1.x86_64.rpm gcc-info-7-3.6.1.x86_64.rpm gcc-locale-7-3.6.1.x86_64.rpm gcc-obj-c++-7-3.6.1.x86_64.rpm gcc-objc-32bit-7-3.6.1.x86_64.rpm gcc-objc-7-3.6.1.x86_64.rpm libstdc++-devel-32bit-7-3.6.1.x86_64.rpm libstdc++-devel-7-3.6.1.x86_64.rpm cpp-7-3.6.1.s390x.rpm gcc-32bit-7-3.6.1.s390x.rpm gcc-7-3.6.1.s390x.rpm gcc-PIE-7-3.6.1.s390x.rpm gcc-ada-32bit-7-3.6.1.s390x.rpm gcc-ada-7-3.6.1.s390x.rpm gcc-c++-32bit-7-3.6.1.s390x.rpm gcc-c++-7-3.6.1.s390x.rpm gcc-fortran-32bit-7-3.6.1.s390x.rpm gcc-fortran-7-3.6.1.s390x.rpm gcc-go-32bit-7-3.6.1.s390x.rpm gcc-go-7-3.6.1.s390x.rpm gcc-info-7-3.6.1.s390x.rpm gcc-locale-7-3.6.1.s390x.rpm gcc-obj-c++-7-3.6.1.s390x.rpm gcc-objc-32bit-7-3.6.1.s390x.rpm gcc-objc-7-3.6.1.s390x.rpm libstdc++-devel-32bit-7-3.6.1.s390x.rpm libstdc++-devel-7-3.6.1.s390x.rpm cpp-7-3.6.1.ppc64le.rpm gcc-7-3.6.1.ppc64le.rpm gcc-PIE-7-3.6.1.ppc64le.rpm gcc-ada-7-3.6.1.ppc64le.rpm gcc-c++-7-3.6.1.ppc64le.rpm gcc-fortran-7-3.6.1.ppc64le.rpm gcc-go-7-3.6.1.ppc64le.rpm gcc-info-7-3.6.1.ppc64le.rpm gcc-locale-7-3.6.1.ppc64le.rpm gcc-obj-c++-7-3.6.1.ppc64le.rpm gcc-objc-7-3.6.1.ppc64le.rpm libstdc++-devel-7-3.6.1.ppc64le.rpm cpp-7-3.6.1.aarch64.rpm gcc-7-3.6.1.aarch64.rpm gcc-PIE-7-3.6.1.aarch64.rpm gcc-ada-7-3.6.1.aarch64.rpm gcc-c++-7-3.6.1.aarch64.rpm gcc-fortran-7-3.6.1.aarch64.rpm gcc-go-7-3.6.1.aarch64.rpm gcc-info-7-3.6.1.aarch64.rpm gcc-locale-7-3.6.1.aarch64.rpm gcc-obj-c++-7-3.6.1.aarch64.rpm gcc-objc-7-3.6.1.aarch64.rpm libstdc++-devel-7-3.6.1.aarch64.rpm openSUSE-SLE-15.3-2021-1781 Recommended update for post-build-checks-malwarescan moderate SUSE Updates openSUSE-SLE 15.3 This update for post-build-checks-malwarescan fixes the following issues: - EXCLUDELIST: Removed lvm2 unit-test (bsc#1172626). post-build-checks-malwarescan-0.1-3.16.1.noarch.rpm post-build-checks-malwarescan-0.1-3.16.1.src.rpm openSUSE-SLE-15.3-2021-1965 Recommended update for multipath-tools important SUSE Updates openSUSE-SLE 15.3 This update for multipath-tools fixes the following issues: - Update from version 0.8.5+30+suse.633836e to version 0.8.5+80+suse.73c50f5: * add `eh_deadline` option to avoid endless SCSI error handling. * add `wwid_recheck` option to detect storage configuration changes. * fixes for SAS expanders. (bsc#1178377, bsc#1178379, bsc#1177081) * Avoid access to root FS while queueing IO. (bsc#1178049, bsc#1181234) * backport of upstream fixes from version 0.8.6 for bugs, new additions to built-in hardware table. (bsc#1186212) * `kpartx`: free loop device after listing partitions. (bsc#1107187) kpartx-0.8.5+80+suse.73c50f5-3.3.1.x86_64.rpm libdmmp-devel-0.8.5+80+suse.73c50f5-3.3.1.x86_64.rpm libdmmp0_2_0-0.8.5+80+suse.73c50f5-3.3.1.x86_64.rpm libmpath0-0.8.5+80+suse.73c50f5-3.3.1.x86_64.rpm multipath-tools-0.8.5+80+suse.73c50f5-3.3.1.src.rpm multipath-tools-0.8.5+80+suse.73c50f5-3.3.1.x86_64.rpm multipath-tools-devel-0.8.5+80+suse.73c50f5-3.3.1.x86_64.rpm kpartx-0.8.5+80+suse.73c50f5-3.3.1.s390x.rpm libdmmp-devel-0.8.5+80+suse.73c50f5-3.3.1.s390x.rpm libdmmp0_2_0-0.8.5+80+suse.73c50f5-3.3.1.s390x.rpm libmpath0-0.8.5+80+suse.73c50f5-3.3.1.s390x.rpm multipath-tools-0.8.5+80+suse.73c50f5-3.3.1.s390x.rpm multipath-tools-devel-0.8.5+80+suse.73c50f5-3.3.1.s390x.rpm kpartx-0.8.5+80+suse.73c50f5-3.3.1.ppc64le.rpm libdmmp-devel-0.8.5+80+suse.73c50f5-3.3.1.ppc64le.rpm libdmmp0_2_0-0.8.5+80+suse.73c50f5-3.3.1.ppc64le.rpm libmpath0-0.8.5+80+suse.73c50f5-3.3.1.ppc64le.rpm multipath-tools-0.8.5+80+suse.73c50f5-3.3.1.ppc64le.rpm multipath-tools-devel-0.8.5+80+suse.73c50f5-3.3.1.ppc64le.rpm kpartx-0.8.5+80+suse.73c50f5-3.3.1.aarch64.rpm libdmmp-devel-0.8.5+80+suse.73c50f5-3.3.1.aarch64.rpm libdmmp0_2_0-0.8.5+80+suse.73c50f5-3.3.1.aarch64.rpm libmpath0-0.8.5+80+suse.73c50f5-3.3.1.aarch64.rpm multipath-tools-0.8.5+80+suse.73c50f5-3.3.1.aarch64.rpm multipath-tools-devel-0.8.5+80+suse.73c50f5-3.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-2146 Recommended update for openssh moderate SUSE Updates openSUSE-SLE 15.3 This update for openssh fixes the following issues: - Fixed a race condition leading to a sshd termination of multichannel sessions with non-root users (bsc#1115550, bsc#1174162). openssh-8.4p1-3.3.1.src.rpm openssh-8.4p1-3.3.1.x86_64.rpm openssh-askpass-gnome-8.4p1-3.3.1.src.rpm openssh-askpass-gnome-8.4p1-3.3.1.x86_64.rpm openssh-cavs-8.4p1-3.3.1.x86_64.rpm openssh-clients-8.4p1-3.3.1.x86_64.rpm openssh-common-8.4p1-3.3.1.x86_64.rpm openssh-fips-8.4p1-3.3.1.x86_64.rpm openssh-helpers-8.4p1-3.3.1.x86_64.rpm openssh-server-8.4p1-3.3.1.x86_64.rpm openssh-8.4p1-3.3.1.s390x.rpm openssh-askpass-gnome-8.4p1-3.3.1.s390x.rpm openssh-cavs-8.4p1-3.3.1.s390x.rpm openssh-clients-8.4p1-3.3.1.s390x.rpm openssh-common-8.4p1-3.3.1.s390x.rpm openssh-fips-8.4p1-3.3.1.s390x.rpm openssh-helpers-8.4p1-3.3.1.s390x.rpm openssh-server-8.4p1-3.3.1.s390x.rpm openssh-8.4p1-3.3.1.ppc64le.rpm openssh-askpass-gnome-8.4p1-3.3.1.ppc64le.rpm openssh-cavs-8.4p1-3.3.1.ppc64le.rpm openssh-clients-8.4p1-3.3.1.ppc64le.rpm openssh-common-8.4p1-3.3.1.ppc64le.rpm openssh-fips-8.4p1-3.3.1.ppc64le.rpm openssh-helpers-8.4p1-3.3.1.ppc64le.rpm openssh-server-8.4p1-3.3.1.ppc64le.rpm openssh-8.4p1-3.3.1.aarch64.rpm openssh-askpass-gnome-8.4p1-3.3.1.aarch64.rpm openssh-cavs-8.4p1-3.3.1.aarch64.rpm openssh-clients-8.4p1-3.3.1.aarch64.rpm openssh-common-8.4p1-3.3.1.aarch64.rpm openssh-fips-8.4p1-3.3.1.aarch64.rpm openssh-helpers-8.4p1-3.3.1.aarch64.rpm openssh-server-8.4p1-3.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-1848 Recommended update for libraw low SUSE Updates openSUSE-SLE 15.3 This update for libraw fixes the following issues: - Hardening: Link as PIE (bsc#1184123) libraw-0.18.9-3.14.1.src.rpm libraw-devel-0.18.9-3.14.1.x86_64.rpm libraw-devel-static-0.18.9-3.14.1.x86_64.rpm libraw-tools-0.18.9-3.14.1.x86_64.rpm libraw16-0.18.9-3.14.1.x86_64.rpm libraw-devel-0.18.9-3.14.1.s390x.rpm libraw-devel-static-0.18.9-3.14.1.s390x.rpm libraw-tools-0.18.9-3.14.1.s390x.rpm libraw16-0.18.9-3.14.1.s390x.rpm libraw-devel-0.18.9-3.14.1.ppc64le.rpm libraw-devel-static-0.18.9-3.14.1.ppc64le.rpm libraw-tools-0.18.9-3.14.1.ppc64le.rpm libraw16-0.18.9-3.14.1.ppc64le.rpm libraw-devel-0.18.9-3.14.1.aarch64.rpm libraw-devel-static-0.18.9-3.14.1.aarch64.rpm libraw-tools-0.18.9-3.14.1.aarch64.rpm libraw16-0.18.9-3.14.1.aarch64.rpm openSUSE-SLE-15.3-2021-1850 Recommended update for doxygen low SUSE Updates openSUSE-SLE 15.3 This update for doxygen fixes the following issues: - Hardeing: Removed non-PIE binaries (bsc#1184122) doxygen-1.8.14-3.3.1.src.rpm doxygen-1.8.14-3.3.1.x86_64.rpm doxywizard-1.8.14-3.3.1.src.rpm doxywizard-1.8.14-3.3.1.x86_64.rpm doxygen-1.8.14-3.3.1.s390x.rpm doxywizard-1.8.14-3.3.1.s390x.rpm doxygen-1.8.14-3.3.1.ppc64le.rpm doxywizard-1.8.14-3.3.1.ppc64le.rpm doxygen-1.8.14-3.3.1.aarch64.rpm doxywizard-1.8.14-3.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-1849 Recommended update for fltk low SUSE Updates openSUSE-SLE 15.3 This update for fltk fixes the following issues: - Hardening: Removed non position independent binaries (bsc#1184122) fltk-1.3.4-5.3.1.src.rpm fltk-devel-1.3.4-5.3.1.x86_64.rpm fltk-devel-32bit-1.3.4-5.3.1.x86_64.rpm fltk-devel-static-1.3.4-5.3.1.x86_64.rpm libfltk1-1.3.4-5.3.1.x86_64.rpm libfltk1-32bit-1.3.4-5.3.1.x86_64.rpm fltk-devel-1.3.4-5.3.1.s390x.rpm fltk-devel-static-1.3.4-5.3.1.s390x.rpm libfltk1-1.3.4-5.3.1.s390x.rpm fltk-devel-1.3.4-5.3.1.ppc64le.rpm fltk-devel-static-1.3.4-5.3.1.ppc64le.rpm libfltk1-1.3.4-5.3.1.ppc64le.rpm fltk-devel-1.3.4-5.3.1.aarch64.rpm fltk-devel-static-1.3.4-5.3.1.aarch64.rpm libfltk1-1.3.4-5.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-2267 Recommended update for yast2-storage-ng low SUSE Updates openSUSE-SLE 15.3 This update for yast2-storage-ng fixes the following issues: - Made the 'Change Used Devices' menu item translatable (bsc#1185060) - Ensure mount options are not doubled (bsc#1186298) - Try harder matching device names to fix failing offline upgrade from SLE-12 SP5 to SLE-15 SP2 (bsc#1186268) yast2-storage-ng-4.3.53-3.5.1.src.rpm yast2-storage-ng-4.3.53-3.5.1.x86_64.rpm yast2-storage-ng-4.3.53-3.5.1.s390x.rpm yast2-storage-ng-4.3.53-3.5.1.ppc64le.rpm yast2-storage-ng-4.3.53-3.5.1.aarch64.rpm openSUSE-SLE-15.3-2021-1847 Optional update for bison low SUSE Updates openSUSE-SLE 15.3 This update for bison fixes the following issues: - Fixed an issue when building bison for SUSE Linux Enterprise Server 15 SP3 (bsc#1183777) This update does not fix any user visible issues, thus it is optional to install. bison-3.0.4-3.3.1.src.rpm bison-3.0.4-3.3.1.x86_64.rpm bison-32bit-3.0.4-3.3.1.x86_64.rpm bison-lang-3.0.4-3.3.1.noarch.rpm bison-3.0.4-3.3.1.s390x.rpm bison-3.0.4-3.3.1.ppc64le.rpm bison-3.0.4-3.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-1923 Recommended update for nfs-utils important SUSE Updates openSUSE-SLE 15.3 This update for nfs-utils fixes the following issues: - Ensured thread safety when opening files over NFS to prevent a use-after-free issue (bsc#1183194) nfs-client-2.1.1-10.18.1.x86_64.rpm nfs-doc-2.1.1-10.18.1.x86_64.rpm nfs-kernel-server-2.1.1-10.18.1.x86_64.rpm nfs-utils-2.1.1-10.18.1.src.rpm nfs-client-2.1.1-10.18.1.s390x.rpm nfs-doc-2.1.1-10.18.1.s390x.rpm nfs-kernel-server-2.1.1-10.18.1.s390x.rpm nfs-client-2.1.1-10.18.1.ppc64le.rpm nfs-doc-2.1.1-10.18.1.ppc64le.rpm nfs-kernel-server-2.1.1-10.18.1.ppc64le.rpm nfs-client-2.1.1-10.18.1.aarch64.rpm nfs-doc-2.1.1-10.18.1.aarch64.rpm nfs-kernel-server-2.1.1-10.18.1.aarch64.rpm openSUSE-SLE-15.3-2021-1805 Recommended update for amazon-ssm-agent and amazon-ecs-init moderate SUSE Updates openSUSE-SLE 15.3 This update for amazon-ssm-agent and amazon-ecs-init fixes the following issues: - Added support for Amazon ECS Anywhere (bsc#1186239, bsc#1186262) The amazon-ssm-agent package provides a RELEASENOTES.md file with a more detailed list of all changes. amazon-ecs-init-1.52.1-4.8.1.src.rpm amazon-ecs-init-1.52.1-4.8.1.x86_64.rpm amazon-ssm-agent-3.0.1209.0-5.6.1.src.rpm amazon-ssm-agent-3.0.1209.0-5.6.1.x86_64.rpm amazon-ssm-agent-3.0.1209.0-5.6.1.s390x.rpm amazon-ssm-agent-3.0.1209.0-5.6.1.ppc64le.rpm amazon-ecs-init-1.52.1-4.8.1.aarch64.rpm amazon-ssm-agent-3.0.1209.0-5.6.1.aarch64.rpm openSUSE-SLE-15.3-2021-2163 Security update for bouncycastle moderate SUSE Updates openSUSE-SLE 15.3 This update for bouncycastle fixes the following issues: - CVE-2020-15522: Fixed a timing issue within the EC math library (bsc#1186328). bouncycastle-1.64-3.3.1.noarch.rpm bouncycastle-1.64-3.3.1.src.rpm bouncycastle-javadoc-1.64-3.3.1.noarch.rpm bouncycastle-mail-1.64-3.3.1.noarch.rpm bouncycastle-pg-1.64-3.3.1.noarch.rpm bouncycastle-pkix-1.64-3.3.1.noarch.rpm bouncycastle-tls-1.64-3.3.1.noarch.rpm openSUSE-SLE-15.3-2021-2224 Recommended update for psmisc important SUSE Updates openSUSE-SLE 15.3 This update for psmisc fixes the following issues: - It does no longer list all processes from different private namespaces when fuser is run on an NFS mount. This led to an issue where the wrong processes were terminated in an SAP application cluster environment (bsc#1185208) psmisc-23.0-6.16.1.src.rpm psmisc-23.0-6.16.1.x86_64.rpm psmisc-lang-23.0-6.16.1.noarch.rpm psmisc-23.0-6.16.1.s390x.rpm psmisc-23.0-6.16.1.ppc64le.rpm psmisc-23.0-6.16.1.aarch64.rpm openSUSE-SLE-15.3-2021-1817 Recommended update for google-poppins-fonts moderate SUSE Updates openSUSE-SLE 15.3 This update of google-poppins-fonts releases it in a higher version than on SLES 15 SP2, to allow better migration and solve a openSUSE Leap 15.3 patch problem. (bsc#1186642) google-poppins-fonts-4.003-6.3.1.noarch.rpm google-poppins-fonts-4.003-6.3.1.src.rpm openSUSE-SLE-15.3-2021-1818 Recommended update for libgnomesu moderate SUSE Updates openSUSE-SLE 15.3 This update of libgnomesu releases it in a higher version than on SUSE Linux Enterprise 15 SP2, to allow better migration and solve a openSUSE Leap 15.3 patch problem. (bsc#1186642) libgnomesu-2.0.6-3.6.1.src.rpm libgnomesu-2.0.6-3.6.1.x86_64.rpm libgnomesu-devel-2.0.6-3.6.1.x86_64.rpm libgnomesu-lang-2.0.6-3.6.1.noarch.rpm libgnomesu0-2.0.6-3.6.1.x86_64.rpm libgnomesu-2.0.6-3.6.1.s390x.rpm libgnomesu-devel-2.0.6-3.6.1.s390x.rpm libgnomesu0-2.0.6-3.6.1.s390x.rpm libgnomesu-2.0.6-3.6.1.ppc64le.rpm libgnomesu-devel-2.0.6-3.6.1.ppc64le.rpm libgnomesu0-2.0.6-3.6.1.ppc64le.rpm libgnomesu-2.0.6-3.6.1.aarch64.rpm libgnomesu-devel-2.0.6-3.6.1.aarch64.rpm libgnomesu0-2.0.6-3.6.1.aarch64.rpm openSUSE-SLE-15.3-2021-1802 Recommended update for kglobalaccel moderate SUSE Updates openSUSE-SLE 15.3 This update for kglobalaccel fixes the following issues: - work around kglobalaccel breaking persistently after an unclean logout (kde#429415, bsc#1179033) kglobalaccel-5.76.0-3.3.1.src.rpm kglobalaccel-devel-32bit-5.76.0-3.3.1.x86_64.rpm kglobalaccel-devel-5.76.0-3.3.1.x86_64.rpm kglobalaccel5-5.76.0-3.3.1.x86_64.rpm libKF5GlobalAccel5-32bit-5.76.0-3.3.1.x86_64.rpm libKF5GlobalAccel5-5.76.0-3.3.1.x86_64.rpm libKF5GlobalAccel5-lang-5.76.0-3.3.1.noarch.rpm libKF5GlobalAccelPrivate5-5.76.0-3.3.1.x86_64.rpm kglobalaccel-devel-5.76.0-3.3.1.s390x.rpm kglobalaccel5-5.76.0-3.3.1.s390x.rpm libKF5GlobalAccel5-5.76.0-3.3.1.s390x.rpm libKF5GlobalAccelPrivate5-5.76.0-3.3.1.s390x.rpm kglobalaccel-devel-5.76.0-3.3.1.ppc64le.rpm kglobalaccel5-5.76.0-3.3.1.ppc64le.rpm libKF5GlobalAccel5-5.76.0-3.3.1.ppc64le.rpm libKF5GlobalAccelPrivate5-5.76.0-3.3.1.ppc64le.rpm kglobalaccel-devel-5.76.0-3.3.1.aarch64.rpm kglobalaccel5-5.76.0-3.3.1.aarch64.rpm libKF5GlobalAccel5-5.76.0-3.3.1.aarch64.rpm libKF5GlobalAccelPrivate5-5.76.0-3.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-1998 Security update for tpm2.0-tools moderate SUSE Updates openSUSE-SLE 15.3 This update for tpm2.0-tools fixes the following issues: - CVE-2021-3565: Fixed issue when no encrypted session with the TPM is used (bsc#1186490). tpm2.0-tools-4.3.0-4.3.1.src.rpm tpm2.0-tools-4.3.0-4.3.1.x86_64.rpm tpm2.0-tools-4.3.0-4.3.1.s390x.rpm tpm2.0-tools-4.3.0-4.3.1.ppc64le.rpm tpm2.0-tools-4.3.0-4.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-1914 Security update for libopenmpt moderate SUSE Updates openSUSE-SLE 15.3 This update for libopenmpt fixes the following issues: Various bugfix and stability issues were fixed, some of those might have security impact. libopenmpt was updated to 0.3.28: * Fixed excessive memory consumption with malformed files in various formats. Changes in 0.3.27: * AMS: Avoid allocating excessive amount of memory for compressed song message in malformed files. * S3M: Some samples were imported with a too high sample rate if module was saved with Scream Tracker 3. Changes in 0.3.26: * DMF: Improve import of finetune effect with parameters larger than +/-15. Changes in 0.3.25: * AMS: An upper bound for uncompressed sample size is now established to avoid memory exhaustion from malformed files. * MO3: Avoid certain ModPlug hacks from being fixed up twice, which could lead to e.g. very narrow pan swing range for old OpenMPT IT files saved with a recent MO3 encoder version. * IMF: Instrument sample mapping was off by one octave, notable in the guitar part of Astaris by Karsten Koch. * PLM: Percentage offset (Mxx) was slightly off. Changes in 0.3.24: * PP20: The first few bytes of some files were not decompressed properly, making some files unplayable (depending on the original format). Changes in 0.3.23: * IT: Global volume slides with both nibbles set preferred the “slide up” nibble over the “slide down” nibble in old OpenMPT versions, unlike other slides. Such old files are now imported correctly again. * IT: Fixed an edge case where, if the filter hit full cutoff / no resonance on the first tick of a row where a new delayed note would be triggered, the filter would be disabled even though it should stay active. Fixes trace.it by maddie. * XM: Out-of-range arpeggio clamping behaviour broke in OpenMPT 1.23.05.00. The arpeggios in Binary World by Dakota now play correctly again. * S3M: Support old-style sample pre-amp value in very early S3M files. * S3M: Only force-enable fast slides for files ST 3.00. Previously, any S3M file made with an ST3 version older than 3.20 enabled them. * M15: Improve tracker detection heuristics to never assume SoundTracker 2.0 if there is a huge number of Dxx commands, as that is a definite hint that they should be treated as volume slides. Fixes Monty On The Run by Master Blaster. Changes in 0.3.22: * IT: Disable retrigger with short notes quirk for modules saved with Chibi Tracker, as it does not implement that quirk. * MOD: Fix early song ending due to ProTracker pattern jump quirk (EEx + Dxx on same row) if infinite looping is disabled. Fixes Haunted Tracks.mod by Triace. * MOD: Vibrato type “ramp down” was upside down. Changes in 0.3.21: * IT: Vibrato was too fast in Old Effects mode since libopenmpt 0.3. * XM: Treat 8bitbubsy’s FT2 clone exactly like Fasttracker 2 with respect to compatibility and playback flags. For example, FT2 Pan Law was not applied. * DMF: Some files had a wrong tempo since libopenmpt 0.2.5705-beta15. libmodplug-devel-0.3.28-2.13.1.x86_64.rpm libmodplug1-0.3.28-2.13.1.x86_64.rpm libmodplug1-32bit-0.3.28-2.13.1.x86_64.rpm libopenmpt-0.3.28-2.13.1.src.rpm libopenmpt-devel-0.3.28-2.13.1.x86_64.rpm libopenmpt0-0.3.28-2.13.1.x86_64.rpm libopenmpt0-32bit-0.3.28-2.13.1.x86_64.rpm libopenmpt_modplug1-0.3.28-2.13.1.x86_64.rpm libopenmpt_modplug1-32bit-0.3.28-2.13.1.x86_64.rpm openmpt123-0.3.28-2.13.1.x86_64.rpm libmodplug-devel-0.3.28-2.13.1.s390x.rpm libmodplug1-0.3.28-2.13.1.s390x.rpm libopenmpt-devel-0.3.28-2.13.1.s390x.rpm libopenmpt0-0.3.28-2.13.1.s390x.rpm libopenmpt_modplug1-0.3.28-2.13.1.s390x.rpm openmpt123-0.3.28-2.13.1.s390x.rpm libmodplug-devel-0.3.28-2.13.1.ppc64le.rpm libmodplug1-0.3.28-2.13.1.ppc64le.rpm libopenmpt-devel-0.3.28-2.13.1.ppc64le.rpm libopenmpt0-0.3.28-2.13.1.ppc64le.rpm libopenmpt_modplug1-0.3.28-2.13.1.ppc64le.rpm openmpt123-0.3.28-2.13.1.ppc64le.rpm libmodplug-devel-0.3.28-2.13.1.aarch64.rpm libmodplug1-0.3.28-2.13.1.aarch64.rpm libopenmpt-devel-0.3.28-2.13.1.aarch64.rpm libopenmpt0-0.3.28-2.13.1.aarch64.rpm libopenmpt_modplug1-0.3.28-2.13.1.aarch64.rpm openmpt123-0.3.28-2.13.1.aarch64.rpm openSUSE-SLE-15.3-2021-1843 Security update for polkit important SUSE Updates openSUSE-SLE 15.3 This update for polkit fixes the following issues: - CVE-2021-3560: Fixed a local privilege escalation using polkit_system_bus_name_get_creds_sync() (bsc#1186497). libpolkit0-0.116-3.3.1.x86_64.rpm libpolkit0-32bit-0.116-3.3.1.x86_64.rpm polkit-0.116-3.3.1.src.rpm polkit-0.116-3.3.1.x86_64.rpm polkit-devel-0.116-3.3.1.x86_64.rpm polkit-doc-0.116-3.3.1.noarch.rpm typelib-1_0-Polkit-1_0-0.116-3.3.1.x86_64.rpm libpolkit0-0.116-3.3.1.s390x.rpm polkit-0.116-3.3.1.s390x.rpm polkit-devel-0.116-3.3.1.s390x.rpm typelib-1_0-Polkit-1_0-0.116-3.3.1.s390x.rpm libpolkit0-0.116-3.3.1.ppc64le.rpm polkit-0.116-3.3.1.ppc64le.rpm polkit-devel-0.116-3.3.1.ppc64le.rpm typelib-1_0-Polkit-1_0-0.116-3.3.1.ppc64le.rpm libpolkit0-0.116-3.3.1.aarch64.rpm polkit-0.116-3.3.1.aarch64.rpm polkit-devel-0.116-3.3.1.aarch64.rpm typelib-1_0-Polkit-1_0-0.116-3.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-1897 Security update for libX11 important SUSE Updates openSUSE-SLE 15.3 This update for libX11 fixes the following issues: - Regression in the fix for CVE-2021-31535, causing segfaults for xforms applications like fdesign (bsc#1186643) libX11-1.6.5-3.21.1.src.rpm libX11-6-1.6.5-3.21.1.x86_64.rpm libX11-6-32bit-1.6.5-3.21.1.x86_64.rpm libX11-data-1.6.5-3.21.1.noarch.rpm libX11-devel-1.6.5-3.21.1.x86_64.rpm libX11-devel-32bit-1.6.5-3.21.1.x86_64.rpm libX11-xcb1-1.6.5-3.21.1.x86_64.rpm libX11-xcb1-32bit-1.6.5-3.21.1.x86_64.rpm libX11-6-1.6.5-3.21.1.s390x.rpm libX11-devel-1.6.5-3.21.1.s390x.rpm libX11-xcb1-1.6.5-3.21.1.s390x.rpm libX11-6-1.6.5-3.21.1.ppc64le.rpm libX11-devel-1.6.5-3.21.1.ppc64le.rpm libX11-xcb1-1.6.5-3.21.1.ppc64le.rpm libX11-6-1.6.5-3.21.1.aarch64.rpm libX11-devel-1.6.5-3.21.1.aarch64.rpm libX11-xcb1-1.6.5-3.21.1.aarch64.rpm openSUSE-SLE-15.3-2021-1896 Security update for pam_radius moderate SUSE Updates openSUSE-SLE 15.3 This update for pam_radius fixes the following issues: - CVE-2015-9542: pam_radius: buffer overflow in password field (bsc#1163933) pam_radius-1.4.0-3.3.1.src.rpm pam_radius-1.4.0-3.3.1.x86_64.rpm pam_radius-32bit-1.4.0-3.3.1.x86_64.rpm pam_radius-1.4.0-3.3.1.s390x.rpm pam_radius-1.4.0-3.3.1.ppc64le.rpm pam_radius-1.4.0-3.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-2215 Recommended update for scap-security-guide moderate SUSE Updates openSUSE-SLE 15.3 This update for scap-security-guide fixes the following issues: The scap-security-guide was updated to 0.1.56 release (jsc#ECO-3319) - Align ism_o profile with latest ISM SSP (#6878) - Align RHEL 7 STIG profile with DISA STIG V3R3 - Creating new RHEL 7 STIG GUI profile (#6863) - Creating new RHEL 8 STIG GUI profile (#6862) - Add the RHEL9 product (#6801) - Initial support for SUSE SLE-15 (#6666) - add support for osbuild blueprint remediations (#6970) This update brings the following SUSE Linux Enterprise STIG SCAP automations: - SCAP STIG automation for SUSE Linux Enterprise 12 (SUSE supplied, nearly complete, missing 4 rules) - SCAP STIG automation for SUSE Linux Enterprise 15 (SUSE supplied, nearly complete, missing 4 rules) - CIS automation for SUSE Linux Enterprise 15 (community supplied) It can be evaluated using "oscap" from "openscap-utils", e.g. by doing on SUSE Linux Enterprise 12: - oscap xccdf eval --profile stig /usr/share/xml/scap/ssg/content/ssg-sle12-ds.xml On SUSE Linux Enterprise 15: - oscap xccdf eval --profile stig /usr/share/xml/scap/ssg/content/ssg-sle15-ds.xml or the community supplied CIS on SUSE Linux Enterprise 15: - oscap xccdf eval --profile cis /usr/share/xml/scap/ssg/content/ssg-sle15-ds.xml More content will be added in future updates. scap-security-guide-0.1.56-1.13.2.noarch.rpm scap-security-guide-0.1.56-1.13.2.src.rpm scap-security-guide-debian-0.1.56-1.13.2.noarch.rpm scap-security-guide-redhat-0.1.56-1.13.2.noarch.rpm scap-security-guide-ubuntu-0.1.56-1.13.2.noarch.rpm openSUSE-SLE-15.3-2021-1827 Recommended update for python-docker moderate SUSE Updates openSUSE-SLE 15.3 This update provides python3-docker to the SUSE Linux Enterprise 15 SP2 and SP3 PackageHub. python-docker-4.2.0-3.2.1.src.rpm python-docker-pycreds-0.4.0-3.2.1.src.rpm python2-docker-4.2.0-3.2.1.noarch.rpm python2-docker-pycreds-0.4.0-3.2.1.noarch.rpm python3-docker-4.2.0-3.2.1.noarch.rpm python3-docker-pycreds-0.4.0-3.2.1.noarch.rpm openSUSE-SLE-15.3-2021-1977 Security update for the Linux Kernel important SUSE Updates openSUSE-SLE 15.3 The SUSE Linux Enterprise 15 SP3 kernel was updated to receive various security and bugfixes. The following security bugs were fixed: - CVE-2021-33200: Enforcing incorrect limits for pointer arithmetic operations by the BPF verifier could be abused to perform out-of-bounds reads and writes in kernel memory (bsc#1186484). - CVE-2021-33034: Fixed a use-after-free when destroying an hci_chan. This could lead to writing an arbitrary values. (bsc#1186111) - CVE-2020-26139: Fixed a denial-of-service when an Access Point (AP) forwards EAPOL frames to other clients even though the sender has not yet successfully authenticated to the AP. (bnc#1186062) - CVE-2021-23134: A Use After Free vulnerability in nfc sockets allowed local attackers to elevate their privileges. (bnc#1186060) - CVE-2021-3491: Fixed a potential heap overflow in mem_rw(). This vulnerability is related to the PROVIDE_BUFFERS operation, which allowed the MAX_RW_COUNT limit to be bypassed (bsc#1185642). - CVE-2021-32399: Fixed a race condition when removing the HCI controller (bnc#1184611). - CVE-2020-24586: The 802.11 standard that underpins Wi-Fi Protected Access (WPA, WPA2, and WPA3) and Wired Equivalent Privacy (WEP) doesn't require that received fragments be cleared from memory after (re)connecting to a network. Under the right circumstances this can be abused to inject arbitrary network packets and/or exfiltrate user data (bnc#1185859). - CVE-2020-24587: The 802.11 standard that underpins Wi-Fi Protected Access (WPA, WPA2, and WPA3) and Wired Equivalent Privacy (WEP) doesn't require that all fragments of a frame are encrypted under the same key. An adversary can abuse this to decrypt selected fragments when another device sends fragmented frames and the WEP, CCMP, or GCMP encryption key is periodically renewed (bnc#1185859 bnc#1185862). - CVE-2020-24588: The 802.11 standard that underpins Wi-Fi Protected Access (WPA, WPA2, and WPA3) and Wired Equivalent Privacy (WEP) doesn't require that the A-MSDU flag in the plaintext QoS header field is authenticated. Against devices that support receiving non-SSP A-MSDU frames (which is mandatory as part of 802.11n), an adversary can abuse this to inject arbitrary network packets. (bnc#1185861) - CVE-2020-26147: The WEP, WPA, WPA2, and WPA3 implementations reassemble fragments, even though some of them were sent in plaintext. This vulnerability can be abused to inject packets and/or exfiltrate selected fragments when another device sends fragmented frames and the WEP, CCMP, or GCMP data-confidentiality protocol is used (bnc#1185859). - CVE-2020-26145: An issue was discovered with Samsung Galaxy S3 i9305 4.4.4 devices. The WEP, WPA, WPA2, and WPA3 implementations accept second (or subsequent) broadcast fragments even when sent in plaintext and process them as full unfragmented frames. An adversary can abuse this to inject arbitrary network packets independent of the network configuration. (bnc#1185860) - CVE-2020-26141: An issue was discovered in the ALFA driver for AWUS036H, where the Message Integrity Check (authenticity) of fragmented TKIP frames was not verified. An adversary can abuse this to inject and possibly decrypt packets in WPA or WPA2 networks that support the TKIP data-confidentiality protocol. (bnc#1185987) - CVE-2021-29650: Fixed an issue with the netfilter subsystem that allowed attackers to cause a denial of service (panic) because net/netfilter/x_tables.c and include/linux/netfilter/x_tables.h lack a full memory barrier upon the assignment of a new table value (bnc#1184208). - CVE-2021-29155: Fixed an issue that was discovered in kernel/bpf/verifier.c that performs undesirable out-of-bounds speculation on pointer arithmetic, leading to side-channel attacks that defeat Spectre mitigations and obtain sensitive information from kernel memory. Specifically, for sequences of pointer arithmetic operations, the pointer modification performed by the first operation was not correctly accounted for when restricting subsequent operations (bnc#1184942). - CVE-2021-3444: Fixed an issue with the bpf verifier which did not properly handle mod32 destination register truncation when the source register was known to be 0 leading to out of bounds read (bsc#1184170). - CVE-2021-3428: Fixed an integer overflow in ext4_es_cache_extent (bsc#1173485). - CVE-2021-29647: Fixed an issue in qrtr_recvmsg which could have allowed attackers to obtain sensitive information from kernel memory because of a partially uninitialized data structure (bsc#1184192 ). - CVE-2021-29265: Fixed an issue in usbip_sockfd_store which could have allowed attackers to cause a denial of service due to race conditions during an update of the local and shared status (bsc#1184167). - CVE-2021-29264: Fixed an issue in the Freescale Gianfar Ethernet driver which could have allowed attackers to cause a system crash due to a calculation of negative fragment size (bsc#1184168). - CVE-2021-28972: Fixed a user-tolerable buffer overflow when writing a new device name to the driver from userspace, allowing userspace to write data to the kernel stack frame directly (bsc#1184198). - CVE-2021-28971: Fixed an issue in intel_pmu_drain_pebs_nhm which could have caused a system crash because the PEBS status in a PEBS record was mishandled (bsc#1184196 ). - CVE-2021-28964: Fixed a race condition in get_old_root which could have allowed attackers to cause a denial of service (bsc#1184193). - CVE-2021-28688: Fixed an issue introduced by XSA-365 (bsc#1183646). - CVE-2021-28660: Fixed an out of bounds write in rtw_wx_set_scan (bsc#1183593 ). - CVE-2021-28375: Fixed an issue in fastrpc_internal_invoke which did not prevent user applications from sending kernel RPC messages (bsc#1183596). - CVE-2021-28038: Fixed an issue with the netback driver which was lacking necessary treatment of errors such as failed memory allocations (bsc#1183022). - CVE-2021-27365: Fixed an issue where an unprivileged user can send a Netlink message that is associated with iSCSI, and has a length up to the maximum length of a Netlink message (bsc#1182715). - CVE-2021-27364: Fixed an issue where an attacker could craft Netlink messages (bsc#1182717). - CVE-2021-27363: Fixed a kernel pointer leak which could have been used to determine the address of the iscsi_transport structure (bsc#1182716). - CVE-2020-35519: Fixed an out-of-bounds memory access was found in x25_bind (bsc#1183696). - CVE-2020-27815: Fixed an issue in JFS filesystem where could have allowed an attacker to execute code (bsc#1179454). - CVE-2020-27171: Fixed an off-by-one error affecting out-of-bounds speculation on pointer arithmetic, leading to side-channel attacks that defeat Spectre mitigations and obtain sensitive information from kernel memory (bsc#1183775). - CVE-2020-27170: Fixed potential side-channel attacks that defeat Spectre mitigations and obtain sensitive information from kernel memory (bsc#1183686). - CVE-2019-19769: Fixed a use-after-free in the perf_trace_lock_acquire function (bsc#1159280 ). - CVE-2019-18814: Fixed a use-after-free when aa_label_parse() fails in aa_audit_rule_init() (bsc#1156256). - CVE-2021-3483: Fixed a use-after-free in nosy.c (bsc#1184393). - CVE-2021-30002: Fixed a memory leak for large arguments in video_usercopy (bsc#1184120). - CVE-2021-29154: Fixed incorrect computation of branch displacements, allowing arbitrary code execution (bsc#1184391). - CVE-2021-28950: Fixed an issue in fs/fuse/fuse_i.h due to a retry loop continually was finding the same bad inode (bsc#1184194). - CVE-2021-28952: Fixed a buffer overflow in the soundwire device driver, triggered when an unexpected port ID number is encountered. (bnc#1184197). - CVE-2021-20268: Fixed an out-of-bounds access flaw in the implementation of the eBPF code verifier. This flaw allowed a local user to crash the system or possibly escalate their privileges. (bnc#1183077) - CVE-2020-27673: Fixed a vulnerability with xen, where guest OS users could cause a denial of service (host OS hang) via a high rate of events to dom0 (bnc#1177411). - CVE-2020-36312: Fixed a memory leak upon a kmalloc failure (bsc#1184509 ). - CVE-2020-36311: Fixed a denial of service (soft lockup) by triggering destruction of a large SEV VM (bsc#1184511). - CVE-2020-36310: Fixed infinite loop for certain nested page faults (bsc#1184512). - CVE-2021-3489: Fixed an issue where the eBPF RINGBUF bpf_ringbuf_reserve did not check that the allocated size was smaller than the ringbuf size (bnc#1185640). - CVE-2021-3490: Fixed an issue where the eBPF ALU32 bounds tracking for bitwise ops (AND, OR and XOR) did not update the 32-bit bounds (bnc#1185641 bnc#1185796 ). - CVE-2020-36322: Fixed an issue was discovered in FUSE filesystem implementation which could have caused a system crash (bsc#1184211). - CVE-2020-25670, CVE-2020-25671, CVE-2020-25672, CVE-2020-25673: Fixed multiple bugs in NFC subsytem (bsc#1178181). The following non-security bugs were fixed: - ACPI / hotplug / PCI: Fix reference count leak in enable_slot() (git-fixes). - ACPI / idle: override c-state latency when not in conformance with s0ix (bsc#1185840). - ACPI: CPPC: Replace cppc_attr with kobj_attribute (git-fixes). - ACPI: GTDT: Do not corrupt interrupt mappings on watchdow probe failure (git-fixes). - ACPI: PM: Add ACPI ID of Alder Lake Fan (git-fixes). - ACPI: PM: s2idle: Add AMD support to handle _DSM (bsc#1185840). - ACPI: PM: s2idle: Add missing LPS0 functions for AMD (bsc#1185840). - ACPI: PM: s2idle: Drop unused local variables and related code (bsc#1185840). - ACPI: PM: s2idle: Move x86-specific code to the x86 directory (bsc#1185840). - ACPI: custom_method: fix a possible memory leak (git-fixes). - ACPI: custom_method: fix potential use-after-free issue (git-fixes). - ACPI: processor: Fix CPU0 wakeup in acpi_idle_play_dead() (git-fixes). - ACPI: processor: Fix build when CONFIG_ACPI_PROCESSOR=m (git-fixes). - ACPI: scan: Rearrange memory allocation in acpi_device_add() (git-fixes). - ACPI: video: Add DMI quirk for GIGABYTE GB-BXBT-2807 (git-fixes). - ACPI: video: Add missing callback back for Sony VPCEH3U1E (git-fixes). - ACPICA: Always create namespace nodes using acpi_ns_create_node() (git-fixes). - ACPICA: Enable sleep button on ACPI legacy wake (bsc#1181383). - ACPICA: Fix race in generic_serial_bus (I2C) and GPIO op_region parameter handling (git-fixes). - ALSA: Convert strlcpy to strscpy when return value is unused (git-fixes). - ALSA: aloop: Fix initialization of controls (git-fixes). - ALSA: bebob/oxfw: fix Kconfig entry for Mackie d.2 Pro (git-fixes). - ALSA: bebob: enable to deliver MIDI messages for multiple ports (git-fixes). - ALSA: core: remove redundant spin_lock pair in snd_card_disconnect (git-fixes). - ALSA: dice: fix null pointer dereference when node is disconnected (git-fixes). - ALSA: dice: fix stream format at middle sampling rate for Alesis iO 26 (git-fixes). - ALSA: dice: fix stream format for TC Electronic Konnekt Live at high sampling transfer frequency (git-fixes). - ALSA: emu8000: Fix a use after free in snd_emu8000_create_mixer (git-fixes). - ALSA: firewire-lib: fix amdtp_packet tracepoints event for packet_index field (git-fixes). - ALSA: firewire-lib: fix calculation for size of IR context payload (git-fixes). - ALSA: firewire-lib: fix check for the size of isochronous packet payload (git-fixes). - ALSA: hda/ca0132: Add Sound BlasterX AE-5 Plus support (git-fixes). - ALSA: hda/cirrus: Add Headphone and Headset MIC Volume Control (git-fixes). - ALSA: hda/cirrus: Add error handling into CS8409 I2C functions (git-fixes). - ALSA: hda/cirrus: Add jack detect interrupt support from CS42L42 companion codec (git-fixes). - ALSA: hda/cirrus: Add support for CS8409 HDA bridge and CS42L42 companion codec (git-fixes). - ALSA: hda/cirrus: Cleanup patch_cirrus.c code (git-fixes). - ALSA: hda/cirrus: Fix CS42L42 Headset Mic volume control name (git-fixes). - ALSA: hda/cirrus: Make CS8409 driver more generic by using fixups (git-fixes). - ALSA: hda/cirrus: Set Initial DMIC volume for Bullseye to -26 dB (git-fixes). - ALSA: hda/cirrus: Use CS8409 filter to fix abnormal sounds on Bullseye (git-fixes). - ALSA: hda/conexant: Add quirk for mute LED control on HP ZBook G5 (git-fixes). - ALSA: hda/conexant: Apply quirk for another HP ZBook G5 model (git-fixes). - ALSA: hda/conexant: Re-order CX5066 quirk table entries (git-fixes). - ALSA: hda/conexant: Re-order CX5066 quirk table entries (git-fixes). - ALSA: hda/hdmi: Cancel pending works before suspend (bsc#1182377). - ALSA: hda/hdmi: Cancel pending works before suspend (git-fixes). - ALSA: hda/hdmi: fix race in handling acomp ELD notification at resume (git-fixes). - ALSA: hda/realtek - Headset Mic issue on HP platform (git-fixes). - ALSA: hda/realtek: ALC285 Thinkpad jack pin quirk is unreachable (git-fixes). - ALSA: hda/realtek: Add fixup for HP OMEN laptop (git-fixes). - ALSA: hda/realtek: Add fixup for HP Spectre x360 15-df0xxx (git-fixes). - ALSA: hda/realtek: Add quirk for Intel Clevo PCx0Dx (git-fixes). - ALSA: hda/realtek: Add quirk for Lenovo Ideapad S740 (git-fixes). - ALSA: hda/realtek: Add some CLOVE SSIDs of ALC293 (git-fixes). - ALSA: hda/realtek: Apply headset-mic quirks for Xiaomi Redmibook Air (git-fixes). - ALSA: hda/realtek: Chain in pop reduction fixup for ThinkStation P340 (git-fixes). - ALSA: hda/realtek: Enable mute/micmute LEDs and limit mic boost on EliteBook 845 G8 (git-fixes). - ALSA: hda/realtek: Fix silent headphone output on ASUS UX430UA (git-fixes). - ALSA: hda/realtek: Fix speaker amp on HP Envy AiO 32 (git-fixes). - ALSA: hda/realtek: Fix speaker amp setup on Acer Aspire E1 (git-fixes). - ALSA: hda/realtek: GA503 use same quirks as GA401 (git-fixes). - ALSA: hda/realtek: Headphone volume is controlled by Front mixer (git-fixes). - ALSA: hda/realtek: Re-order ALC269 ASUS quirk table entries (git-fixes). - ALSA: hda/realtek: Re-order ALC269 Acer quirk table entries (git-fixes). - ALSA: hda/realtek: Re-order ALC269 Dell quirk table entries (git-fixes). - ALSA: hda/realtek: Re-order ALC269 HP quirk table entries (git-fixes). - ALSA: hda/realtek: Re-order ALC269 Lenovo quirk table entries (git-fixes). - ALSA: hda/realtek: Re-order ALC269 Sony quirk table entries (git-fixes). - ALSA: hda/realtek: Re-order ALC662 quirk table entries (git-fixes). - ALSA: hda/realtek: Re-order ALC882 Acer quirk table entries (git-fixes). - ALSA: hda/realtek: Re-order ALC882 Clevo quirk table entries (git-fixes). - ALSA: hda/realtek: Re-order ALC882 Sony quirk table entries (git-fixes). - ALSA: hda/realtek: Re-order remaining ALC269 quirk table entries (git-fixes). - ALSA: hda/realtek: Remove redundant entry for ALC861 Haier/Uniwill devices (git-fixes). - ALSA: hda/realtek: apply pin quirk for XiaomiNotebook Pro (git-fixes). - ALSA: hda/realtek: call alc_update_headset_mode() in hp_automute_hook (git-fixes). - ALSA: hda/realtek: fix a determine_headset_type issue for a Dell AIO (git-fixes). - ALSA: hda/realtek: fix mic boost on Intel NUC 8 (git-fixes). - ALSA: hda/realtek: fix mute/micmute LEDs and speaker for HP Zbook Fury 15 G8 (git-fixes). - ALSA: hda/realtek: fix mute/micmute LEDs and speaker for HP Zbook Fury 17 G8 (git-fixes). - ALSA: hda/realtek: fix mute/micmute LEDs and speaker for HP Zbook G8 (git-fixes). - ALSA: hda/realtek: fix mute/micmute LEDs for HP 440 G8 (git-fixes). - ALSA: hda/realtek: fix mute/micmute LEDs for HP 640 G8 (git-fixes). - ALSA: hda/realtek: fix mute/micmute LEDs for HP 840 G8 (git-fixes). - ALSA: hda/realtek: fix mute/micmute LEDs for HP 850 G8 (git-fixes). - ALSA: hda/realtek: fix mute/micmute LEDs for HP 855 G8 (git-fixes). - ALSA: hda/realtek: fix mute/micmute LEDs for HP ProBook 445 G7 (git-fixes). - ALSA: hda/realtek: fix static noise on ALC285 Lenovo laptops (git-fixes). - ALSA: hda/realtek: reset eapd coeff to default value for alc287 (git-fixes). - ALSA: hda/realtek: the bass speaker can't output sound on Yoga 9i (git-fixes). - ALSA: hda: Add missing sanity checks in PM prepare/complete callbacks (git-fixes). - ALSA: hda: Avoid spurious unsol event handling during S3/S4 (bsc#1182377). - ALSA: hda: Avoid spurious unsol event handling during S3/S4 (git-fixes). - ALSA: hda: Drop the BATCH workaround for AMD controllers (git-fixes). - ALSA: hda: Flush pending unsolicited events before suspend (bsc#1182377). - ALSA: hda: Re-add dropped snd_poewr_change_state() calls (git-fixes). - ALSA: hda: fixup headset for ASUS GU502 laptop (git-fixes). - ALSA: hda: fixup headset for ASUS GU502 laptop (git-fixes). - ALSA: hda: generic: Fix the micmute led init state (git-fixes). - ALSA: hda: generic: change the DAC ctl name for LO+SPK or LO+HP (git-fixes). - ALSA: hda: ignore invalid NHLT table (git-fixes). - ALSA: hdsp: do not disable if not enabled (git-fixes). - ALSA: hdspm: do not disable if not enabled (git-fixes). - ALSA: intel8x0: Do not update period unless prepared (git-fixes). - ALSA: line6: Fix racy initialization of LINE6 MIDI (git-fixes). - ALSA: rme9652: do not disable if not enabled (git-fixes). - ALSA: sb: Fix two use after free in snd_sb_qsound_build (git-fixes). - ALSA: usb-audio: Add DJM-450 to the quirks table (git-fixes). - ALSA: usb-audio: Add DJM450 to Pioneer format quirk (git-fixes). - ALSA: usb-audio: Add DJM450 to Pioneer format quirk (git-fixes). - ALSA: usb-audio: Add DJM750 to Pioneer mixer quirk (git-fixes). - ALSA: usb-audio: Add MIDI quirk for Vox ToneLab EX (git-fixes). - ALSA: usb-audio: Add Pioneer DJM-850 to quirks-table (git-fixes). - ALSA: usb-audio: Add dB range mapping for Sennheiser Communications Headset PC 8 (git-fixes). - ALSA: usb-audio: Add error checks for usb_driver_claim_interface() calls (git-fixes). - ALSA: usb-audio: Add implicit feeback support for the BOSS GT-1 (git-fixes). - ALSA: usb-audio: Add support for Pioneer DJM-750 (git-fixes). - ALSA: usb-audio: Add support for many Roland devices' implicit feedback quirks (git-fixes). - ALSA: usb-audio: Apply implicit feedback mode for BOSS devices (git-fixes). - ALSA: usb-audio: Apply sample rate quirk to Logitech Connect (git-fixes). - ALSA: usb-audio: Carve out connector value checking into a helper (git-fixes). - ALSA: usb-audio: Check connector value on resume (git-fixes). - ALSA: usb-audio: Configure Pioneer DJM-850 samplerate (git-fixes). - ALSA: usb-audio: Convert remaining strlcpy() to strscpy() (git-fixes). - ALSA: usb-audio: Convert the last strlcpy() usage (git-fixes). - ALSA: usb-audio: DJM-750: ensure format is set (git-fixes). - ALSA: usb-audio: Declare Pioneer DJM-850 mixer controls (git-fixes). - ALSA: usb-audio: Drop implicit fb quirk entries dubbed for capture (git-fixes). - ALSA: usb-audio: Explicitly set up the clock selector (git-fixes). - ALSA: usb-audio: Fix "RANGE setting not yet supported" errors (git-fixes). - ALSA: usb-audio: Fix Pioneer DJM devices URB_CONTROL request direction to set samplerate (git-fixes). - ALSA: usb-audio: Fix Pioneer DJM devices URB_CONTROL request direction to set samplerate (git-fixes). - ALSA: usb-audio: Fix implicit sync clearance at stopping stream (git-fixes). - ALSA: usb-audio: Fix potential out-of-bounce access in MIDI EP parser (git-fixes). - ALSA: usb-audio: Fix unintentional sign extension issue (git-fixes). - ALSA: usb-audio: Generic application of implicit fb to Roland/BOSS devices (git-fixes). - ALSA: usb-audio: Re-apply implicit feedback mode to Pioneer devices (git-fixes). - ALSA: usb-audio: Remove redundant assignment to len (git-fixes). - ALSA: usb-audio: Skip probe of UA-101 devices (git-fixes). - ALSA: usb-audio: Skip the clock selector inquiry for single connections (git-fixes). - ALSA: usb-audio: Validate MS endpoint descriptors (git-fixes). - ALSA: usb-audio: add mixer quirks for Pioneer DJM-900NXS2 (git-fixes). - ALSA: usb-audio: fix NULL ptr dereference in usb_audio_probe (bsc#1182552). - ALSA: usb-audio: fix Pioneer DJM-850 control label info (git-fixes). - ALSA: usb-audio: fix control-request direction (git-fixes). - ALSA: usb-audio: fix use after free in usb_audio_disconnect (bsc#1182552). - ALSA: usb-audio: generate midi streaming substream names from jack names (git-fixes). - ALSA: usb-audio: scarlett2: Fix device hang with ehci-pci (git-fixes). - ALSA: usb-audio: scarlett2: Improve driver startup messages (git-fixes). - ALSA: usb-audio: scarlett2: snd_scarlett_gen2_controls_create() can be static (git-fixes). - ALSA: usb-audio: use usb headers rather than define structs locally (git-fixes). - ALSA: usb: Use DIV_ROUND_UP() instead of open-coding it (git-fixes). - ALSA: usb: midi: do not return -ENOMEM when usb_urb_ep_type_check fails (git-fixes). - ASoC: Intel: Add DMI quirk table to soc_intel_is_byt_cr() (git-fixes). - ASoC: Intel: boards: sof-wm8804: add check for PLL setting (git-fixes). - ASoC: Intel: bytcr_rt5640: Add quirk for ARCHOS Cesium 140 (git-fixes). - ASoC: Intel: bytcr_rt5640: Add quirk for the Acer One S1002 tablet (git-fixes). - ASoC: Intel: bytcr_rt5640: Add quirk for the Chuwi Hi8 tablet (git-fixes). - ASoC: Intel: bytcr_rt5640: Add quirk for the Estar Beauty HD MID 7316R tablet (git-fixes). - ASoC: Intel: bytcr_rt5640: Add quirk for the Voyo Winpad A15 tablet (git-fixes). - ASoC: Intel: bytcr_rt5640: Enable jack-detect support on Asus T100TAF (git-fixes). - ASoC: Intel: bytcr_rt5640: Fix HP Pavilion x2 10-p0XX OVCD current threshold (git-fixes). - ASoC: Intel: bytcr_rt5651: Add quirk for the Jumper EZpad 7 tablet (git-fixes). - ASoC: Intel: kbl_da7219_max98927: Fix kabylake_ssp_fixup function (git-fixes). - ASoC: Intel: sof_sdw: add quirk for HP Spectre x360 convertible (git-fixes). - ASoC: Intel: sof_sdw: add quirk for new ADL-P Rvp (git-fixes). - ASoC: Intel: sof_sdw: reorganize quirks by generation (git-fixes). - ASoC: SOF: Intel: HDA: fix core status verification (git-fixes). - ASoC: SOF: Intel: HDA: fix core status verification (git-fixes). - ASoC: SOF: Intel: hda: remove unnecessary parentheses (git-fixes). - ASoC: SOF: Intel: unregister DMIC device on probe error (git-fixes). - ASoC: SOF: intel: fix wrong poll bits in dsp power down (git-fixes). - ASoC: ak4458: Add MODULE_DEVICE_TABLE (git-fixes). - ASoC: ak5558: Add MODULE_DEVICE_TABLE (git-fixes). - ASoC: ak5558: Fix s/show/slow/ typo (git-fixes). - ASoC: ak5558: correct reset polarity (git-fixes). - ASoC: codecs: wcd934x: add a sanity check in set channel map (git-fixes). - ASoC: cs35l33: fix an error code in probe() (git-fixes). - ASoC: cs42l42: Always wait at least 3ms after reset (git-fixes). - ASoC: cs42l42: Do not enable/disable regulator at Bias Level (git-fixes). - ASoC: cs42l42: Fix Bitclock polarity inversion (git-fixes). - ASoC: cs42l42: Fix channel width support (git-fixes). - ASoC: cs42l42: Fix mixer volume control (git-fixes). - ASoC: cs42l42: Regmap must use_single_read/write (git-fixes). - ASoC: cygnus: fix for_each_child.cocci warnings (git-fixes). - ASoC: es8316: Simplify adc_pga_gain_tlv table (git-fixes). - ASoC: fsl_esai: Fix TDM slot setup for I2S mode (git-fixes). - ASoC: fsl_ssi: Fix TDM slot setup for I2S mode (git-fixes). - ASoC: intel: atom: Remove 44100 sample-rate from the media and deep-buffer DAI descriptions (git-fixes). - ASoC: intel: atom: Stop advertising non working S24LE support (git-fixes). - ASoC: max98373: Added 30ms turn on/off time delay (git-fixes). - ASoC: max98373: Changed amp shutdown register as volatile (git-fixes). - ASoC: qcom: lpass-cpu: Fix lpass dai ids parse (git-fixes). - ASoC: qcom: sdm845: Fix array out of bounds access (git-fixes). - ASoC: qcom: sdm845: Fix array out of range on rx slim channels (git-fixes). - ASoC: rsnd: call rsnd_ssi_master_clk_start() from rsnd_ssi_init() (git-fixes). - ASoC: rsnd: check all BUSIF status when error (git-fixes). - ASoC: rsnd: core: Check convert rate in rsnd_hw_params (git-fixes). - ASoC: rt1015: fix i2c communication error (git-fixes). - ASoC: rt286: Generalize support for ALC3263 codec (git-fixes). - ASoC: rt286: Make RT286_SET_GPIO_* readable and writable (git-fixes). - ASoC: rt5640: Fix dac- and adc- vol-tlv values being off by a factor of 10 (git-fixes). - ASoC: rt5651: Fix dac- and adc- vol-tlv values being off by a factor of 10 (git-fixes). - ASoC: rt5659: Update MCLK rate in set_sysclk() (git-fixes). - ASoC: rt5670: Add a quirk for the Dell Venue 10 Pro 5055 (git-fixes). - ASoC: rt5670: Add emulated 'DAC1 Playback Switch' control (git-fixes). - ASoC: rt5670: Remove 'HP Playback Switch' control (git-fixes). - ASoC: rt5670: Remove 'OUT Channel Switch' control (git-fixes). - ASoC: rt5670: Remove ADC vol-ctrl mute bits poking from Sto1 ADC mixer settings (git-fixes). - ASoC: rt711: add snd_soc_component remove callback (git-fixes). - ASoC: samsung: snow: remove useless test (git-fixes). - ASoC: samsung: tm2_wm5110: check of of_parse return value (git-fixes). - ASoC: sgtl5000: set DAP_AVC_CTRL register to correct default value on probe (git-fixes). - ASoC: simple-card-utils: Do not handle device clock (git-fixes). - ASoC: simple-card: fix possible uninitialized single_cpu local variable (git-fixes). - ASoC: soc-core kABI workaround (git-fixes). - ASoC: soc-core: Prevent warning if no DMI table is present (git-fixes). - ASoC: sunxi: sun4i-codec: fill ASoC card owner (git-fixes). - ASoC: wm8960: Fix wrong bclk and lrclk with pll enabled for some chips (git-fixes). - ASoC: wm8960: Remove bitclk relax condition in wm8960_configure_sysclk (git-fixes). - Bluetooth: Fix incorrect status handling in LE PHY UPDATE event (git-fixes). - Bluetooth: Fix null pointer dereference in amp_read_loc_assoc_final_data (git-fixes). - Bluetooth: L2CAP: Fix handling LE modes by L2CAP_OPTIONS (git-fixes). - Bluetooth: SMP: Fail if remote and local public keys are identical (git-fixes). - Bluetooth: Set CONF_NOT_COMPLETE as l2cap_chan default (git-fixes). - Bluetooth: avoid deadlock between hci_dev->lock and socket lock (git-fixes). - Bluetooth: btqca: Add valid le states quirk (git-fixes). - Bluetooth: btusb: Enable quirk boolean flag for Mediatek Chip (git-fixes). - Bluetooth: check for zapped sk before connecting (git-fixes). - Bluetooth: hci_h5: Set HCI_QUIRK_SIMULTANEOUS_DISCOVERY for btrtl (git-fixes). - Bluetooth: initialize skb_queue_head at l2cap_chan_create() (git-fixes). - Drivers: hv: vmbus: Fix Suspend-to-Idle for Generation-2 VM (git-fixes). - Drivers: hv: vmbus: Increase wait time for VMbus unload (bsc#1185725). - Drivers: hv: vmbus: Initialize unload_event statically (bsc#1185725). - Drivers: hv: vmbus: Use after free in __vmbus_open() (git-fixes). - EDAC/amd64: Check for memory before fully initializing an instance (bsc#1183815). - EDAC/amd64: Get rid of the ECC disabled long message (bsc#1183815). - EDAC/amd64: Use cached data when checking for ECC (bsc#1183815). - Goodix Fingerprint device is not a modem (git-fixes). - HID: alps: fix error return code in alps_input_configured() (git-fixes). - HID: google: add don USB id (git-fixes). - HID: i2c-hid: Add I2C_HID_QUIRK_NO_IRQ_AFTER_RESET for ITE8568 EC on Voyo Winpad A15 (git-fixes). - HID: mf: add support for 0079:1846 Mayflash/Dragonrise USB Gamecube Adapter (git-fixes). - HID: plantronics: Workaround for double volume key presses (git-fixes). - HID: wacom: Assign boolean values to a bool variable (git-fixes). - HID: wacom: set EV_KEY and EV_ABS only for non-HID_GENERIC type of devices (git-fixes). - HSI: Fix PM usage counter unbalance in ssi_hw_init (git-fixes). - IB/hfi1: Fix probe time panic when AIP is enabled with a buggy BIOS (jsc#SLE-13208). - IB/hfi1: Rework AIP and VNIC dummy netdev usage (jsc#SLE-13208). - Input: applespi - do not wait for responses to commands indefinitely (git-fixes). - Input: elantech - fix protocol errors for some trackpoints in SMBus mode (git-fixes). - Input: elants_i2c - do not bind to i2c-hid compatible ACPI instantiated devices (git-fixes). - Input: i8042 - fix Pegatron C15B ID entry (git-fixes). - Input: nspire-keypad - enable interrupts only when opened (git-fixes). - Input: s6sy761 - fix coordinate read bit shift (git-fixes). - Input: silead - add workaround for x86 BIOS-es which bring the chip up in a stuck state (git-fixes). - KEYS: trusted: Fix TPM reservation for seal/unseal (git-fixes). - KEYS: trusted: Fix memory leak on object td (git-fixes). - KVM x86: Extend AMD specific guest behavior to Hygon virtual CPUs (bsc#1183447). - KVM: PPC: Book3S HV P9: Restore host CTRL SPR after guest exit (bsc#1156395). - KVM: PPC: Make the VMX instruction emulation routines static (bsc#1156395). - KVM: SVM: Clear the CR4 register on reset (bsc#1183252). - KVM: kvmclock: Fix vCPUs > 64 can't be online/hotpluged (bsc#1152489). - KVM: nVMX: Properly handle userspace interrupt window request (bsc#1183427). - KVM: s390: fix guarded storage control register handling (bsc#1133021). - KVM: x86: Add helpers to perform CPUID-based guest vendor check (bsc#1183445). - KVM: x86: Allow guests to see MSR_IA32_TSX_CTRL even if tsx=off (bsc#1183287). - KVM: x86: Allow guests to see MSR_IA32_TSX_CTRL even if tsx=off (bsc#1183323). - KVM: x86: Expose XSAVEERPTR to the guest (jsc#SLE-13573). - KVM: x86: Return -E2BIG when KVM_GET_SUPPORTED_CPUID hits max entries (bsc#1183428). - KVM: x86: Set so called 'reserved CR3 bits in LM mask' at vCPU reset (bsc#1183288). - KVM: x86: Set so called 'reserved CR3 bits in LM mask' at vCPU reset (bsc#1183324). - KVM: x86: do not reset microcode version on INIT or RESET (bsc#1183412). - KVM: x86: list MSR_IA32_UCODE_REV as an emulated MSR (bsc#1183369). - NFC: nci: fix memory leak in nci_allocate_device (git-fixes). - PCI/AER: Add RCEC AER error injection support (bsc#1174426). - PCI/AER: Add pcie_walk_rcec() to RCEC AER handling (bsc#1174426). - PCI/AER: Clear AER status from Root Port when resetting Downstream Port (bsc#1174426). - PCI/AER: Specify the type of Port that was reset (bsc#1174426). - PCI/AER: Use "aer" variable for capability offset (bsc#1174426). - PCI/AER: Write AER Capability only when we control it (bsc#1174426). - PCI/ERR: Add pci_walk_bridge() to pcie_do_recovery() (bsc#1174426). - PCI/ERR: Add pcie_link_rcec() to associate RCiEPs (bsc#1174426). - PCI/ERR: Avoid negated conditional for clarity (bsc#1174426). - PCI/ERR: Bind RCEC devices to the Root Port driver (bsc#1174426). - PCI/ERR: Bind RCEC devices to the Root Port driver (jsc#SLE-13736 jsc#SLE-14845). - PCI/ERR: Cache RCEC EA Capability offset in pci_init_capabilities() (bsc#1174426). - PCI/ERR: Clear AER status only when we control AER (bsc#1174426). - PCI/ERR: Clear PCIe Device Status errors only if OS owns AER (bsc#1174426). - PCI/ERR: Clear status of the reporting device (bsc#1174426). - PCI/ERR: Recover from RCEC AER errors (bsc#1174426). - PCI/ERR: Recover from RCiEP AER errors (bsc#1174426). - PCI/ERR: Rename reset_link() to reset_subordinates() (bsc#1174426). - PCI/ERR: Retain status from error notification (bsc#1174426). - PCI/ERR: Simplify by computing pci_pcie_type() once (bsc#1174426). - PCI/ERR: Simplify by using pci_upstream_bridge() (bsc#1174426). - PCI/ERR: Use "bridge" for clarity in pcie_do_recovery() (bsc#1174426). - PCI/PME: Add pcie_walk_rcec() to RCEC PME handling (bsc#1174426). - PCI/RCEC: Fix RCiEP device to RCEC association (git-fixes). - PCI/RCEC: Fix RCiEP device to RCEC association (jsc#SLE-13736 jsc#SLE-14845 git-fixes). - PCI/portdrv: Report reset for frozen channel (bsc#1174426). - PCI: Add a REBAR size quirk for Sapphire RX 5600 XT Pulse (git-fixes). - PCI: Add function 1 DMA alias quirk for Marvell 9215 SATA controller (git-fixes). - PCI: Allow VPD access for QLogic ISP2722 (git-fixes). - PCI: Fix pci_register_io_range() memory leak (git-fixes). - PCI: PM: Do not read power state in pci_enable_device_flags() (git-fixes). - PCI: Release OF node in pci_scan_device()'s error path (git-fixes). - PCI: designware-ep: Fix the Header Type check (git-fixes). - PCI: dwc: Move iATU detection earlier (git-fixes). - PCI: endpoint: Fix missing destroy_workqueue() (git-fixes). - PCI: iproc: Fix return value of iproc_msi_irq_domain_alloc() (git-fixes). - PCI: keystone: Let AM65 use the pci_ops defined in pcie-designware-host.c (git-fixes). - PCI: mediatek: Add missing of_node_put() to fix reference leak (git-fixes). - PCI: tegra: Fix ASPM-L1SS advertisement disable code (git-fixes). - PCI: tegra: Move "dbi" accesses to post common DWC initialization (git-fixes). - PCI: thunder: Fix compile testing (git-fixes). - PCI: xgene-msi: Fix race in installing chained irq handler (git-fixes). - PM / devfreq: Use more accurate returned new_freq as resume_freq (git-fixes). - PM: EM: postpone creating the debugfs dir till fs_initcall (git-fixes). - PM: runtime: Add documentation for pm_runtime_resume_and_get() (git-fixes). - PM: runtime: Add pm_runtime_resume_and_get to deal with usage counter (bsc#1183366). - PM: runtime: Fix ordering in pm_runtime_get_suppliers() (git-fixes). - PM: runtime: Fix ordering in pm_runtime_get_suppliers() (git-fixes). - PM: runtime: Fix race getting/putting suppliers at probe (git-fixes). - Platform: OLPC: Fix probe error handling (git-fixes). - RAS/CEC: Correct ce_add_elem()'s returned values (bsc#1152489). - RDMA/addr: create addr_wq with WQ_MEM_RECLAIM flag (bsc#1183346). - RDMA/cm: Fix IRQ restore in ib_send_cm_sidr_rep (jsc#SLE-15176). - RDMA/core: create ib_cm with WQ_MEM_RECLAIM flag (bsc#1183346). - RDMA/hns: Delete redundant abnormal interrupt status (git-fixes). - RDMA/hns: Delete redundant condition judgment related to eq (git-fixes). - RDMA/mlx5: Fix drop packet rule in egress table (jsc#SLE-15175). - RDMA/qedr: Fix error return code in qedr_iw_connect() (jsc#SLE-8215). - RDMA/rtrs-clt: Close rtrs client conn before destroying rtrs clt session files (jsc#SLE-15176). - RDMA/rtrs-clt: destroy sysfs after removing session from active list (jsc#SLE-15176). - RDMA/srp: Fix support for unpopulated and unbalanced NUMA nodes (bsc#1169709) - RDMA/srp: Fix support for unpopulated and unbalanced NUMA nodes (bsc#1169709) - RDMA/srpt: Fix error return code in srpt_cm_req_recv() (git-fixes). - Re-enable yenta socket driver for x86_64 (bsc#1186349) - SUNRPC in case of backlog, hand free slots directly to waiting task (bsc#1185428). - USB: Add LPM quirk for Lenovo ThinkPad USB-C Dock Gen2 Ethernet (git-fixes). - USB: Add reset-resume quirk for WD19's Realtek Hub (git-fixes). - USB: CDC-ACM: fix poison/unpoison imbalance (bsc#1184984). - USB: CDC-ACM: fix poison/unpoison imbalance (git-fixes). - USB: cdc-acm: downgrade message to debug (git-fixes). - USB: cdc-acm: fix TIOCGSERIAL implementation (git-fixes). - USB: cdc-acm: fix double free on probe failure (git-fixes). - USB: cdc-acm: fix unprivileged TIOCCSERIAL (git-fixes). - USB: cdc-acm: fix use-after-free after probe failure (git-fixes). - USB: cdc-acm: untangle a circular dependency between callback and softint (git-fixes). - USB: gadget: u_ether: Fix a configfs return code (git-fixes). - USB: gadget: udc: fix wrong pointer passed to IS_ERR() and PTR_ERR() (git-fixes). - USB: quirks: ignore remote wake-up on Fibocom L850-GL LTE modem (git-fixes). - USB: replace hardcode maximum usb string length by definition (git-fixes). - USB: serial: ark3116: fix TIOCGSERIAL implementation (git-fixes). - USB: serial: ch341: add new Product ID (git-fixes). - USB: serial: cp210x: add ID for Acuity Brands nLight Air Adapter (git-fixes). - USB: serial: cp210x: add some more GE USB IDs (git-fixes). - USB: serial: f81232: fix TIOCGSERIAL implementation (git-fixes). - USB: serial: f81534: fix TIOCGSERIAL implementation (git-fixes). - USB: serial: fix return value for unsupported ioctls (git-fixes). - USB: serial: io_edgeport: fix memory leak in edge_startup (git-fixes). - USB: serial: mos7720: fix TIOCGSERIAL implementation (git-fixes). - USB: serial: opticon: fix TIOCGSERIAL implementation (git-fixes). - USB: serial: pl2303: add support for PL2303HXN (bsc#1186320). - USB: serial: pl2303: fix line-speed handling on newer chips (bsc#1186320). - USB: serial: quatech2: fix TIOCGSERIAL implementation (git-fixes). - USB: serial: ssu100: fix TIOCGSERIAL implementation (git-fixes). - USB: serial: ti_usb_3410_5052: fix TIOCSSERIAL permission check (git-fixes). - USB: serial: usb_wwan: fix TIOCGSERIAL implementation (git-fixes). - USB: serial: usb_wwan: fix TIOCSSERIAL jiffies conversions (git-fixes). - USB: serial: usb_wwan: fix unprivileged TIOCCSERIAL (git-fixes). - USB: usblp: fix a hang in poll() if disconnected (git-fixes). - Update bug reference for USB-audio fixes (bsc#1182552 bsc#1183598) - amd/amdgpu: Disable VCN DPG mode for Picasso (git-fixes). - amdgpu: avoid incorrect %hu format string (git-fixes). - apparmor: Fix aa_label refcnt leak in policy_update (git-fixes). - apparmor: check/put label on apparmor_sk_clone_security() (git-fixes). - appletalk: Fix skb allocation size in loopback case (git-fixes). - arm64: make STACKPROTECTOR_PER_TASK configurable (bsc#1181862). - ata: ahci: Disable SXS for Hisilicon Kunpeng920 (git-fixes). - ata: libahci_platform: fix IRQ check (git-fixes). - ath10k: Fix a use after free in ath10k_htc_send_bundle (git-fixes). - ath10k: Fix ath10k_wmi_tlv_op_pull_peer_stats_info() unlock without lock (git-fixes). - ath10k: fix wmi mgmt tx queue full due to race condition (git-fixes). - ath10k: hold RCU lock when calling ieee80211_find_sta_by_ifaddr() (git-fixes). - ath9k: Fix error check in ath9k_hw_read_revisions() for PCI devices (git-fixes). - ath9k: fix transmitting to stations in dynamic SMPS mode (git-fixes). - atl1c: fix error return code in atl1c_probe() (git-fixes). - atl1e: fix error return code in atl1e_probe() (git-fixes). - backlight: journada720: Fix Wmisleading-indentation warning (git-fixes). - batman-adv: initialize "struct batadv_tvlv_tt_vlan_data"->reserved field (git-fixes). - binfmt_misc: fix possible deadlock in bm_register_write (git-fixes). - binfmt_misc: fix possible deadlock in bm_register_write (git-fixes). - blk-iocost: ioc_pd_free() shouldn't assume irq disabled (git-fixes). - blk-mq: plug request for shared sbitmap (jsc#SLE-15442 bsc#1180814 ltc#187461 git-fixes). - blk-mq: set default elevator as deadline in case of hctx shared tagset (jsc#SLE-15442 bsc#1180814 ltc#187461 git-fixes). - blkcg: fix memleak for iolatency (git-fixes). - block, bfq: set next_rq to waker_bfqq->next_rq in waker injection (bsc#1168838). - block: fix get_max_io_size() (git-fixes). - block: recalculate segment count for multi-segment discards correctly (bsc#1184724). - block: rsxx: fix error return code of rsxx_pci_probe() (git-fixes). - block: rsxx: select CONFIG_CRC32 (git-fixes). - bluetooth: eliminate the potential race condition when removing the HCI controller (git-fixes). - bnxt_en: Fix RX consumer index logic in the error path (git-fixes). - bnxt_en: Fix RX consumer index logic in the error path (git-fixes). - bnxt_en: fix ternary sign extension bug in bnxt_show_temp() (git-fixes). - bnxt_en: reliably allocate IRQ table on reset to avoid crash (jsc#SLE-8371 bsc#1153274). - bnxt_en: reverse order of TX disable and carrier off (git-fixes). - bpf, sockmap: Fix sk->prot unhash op reset (bsc#1155518). - bpf,x64: Pad NOPs to make images converge more easily (bsc#1178163). - bpf: Add sanity check for upper ptr_limit (bsc#1183686 bsc#1183775). - bpf: Avoid warning when re-casting __bpf_call_base into __bpf_call_base_args (bsc#1155518). - bpf: Declare __bpf_free_used_maps() unconditionally (bsc#1155518). - bpf: Do not do bpf_cgroup_storage_set() for kuprobe/tp programs (bsc#1155518). - bpf: Enforce that struct_ops programs be GPL-only (bsc#1177028). - bpf: Fix 32 bit src register truncation on div/mod (bsc#1184170). - bpf: Fix an unitialized value in bpf_iter (bsc#1177028). - bpf: Fix leakage of uninitialized bpf stack under speculation (bsc#1155518). - bpf: Fix masking negation logic upon negative dst register (bsc#1155518). - bpf: Fix propagation of 32 bit unsigned bounds from 64 bit bounds (bsc#1177028). - bpf: Fix verifier jsgt branch analysis on max bound (bsc#1155518). - bpf: Refcount task stack in bpf_get_task_stack (bsc#1177028). - bpf: Remove MTU check in __bpf_skb_max_len (bsc#1155518). - bpf: Simplify alu_limit masking for pointer arithmetic (bsc#1183686 bsc#1183775). - bpf: link: Refuse non-O_RDWR flags in BPF_OBJ_GET (bsc#1177028). - bpf_lru_list: Read double-checked variable once without lock (bsc#1155518). - brcmfmac: Add DMI nvram filename quirk for Predia Basic tablet (git-fixes). - brcmfmac: Add DMI nvram filename quirk for Voyo winpad A15 tablet (git-fixes). - brcmfmac: clear EAP/association status bits on linkdown events (git-fixes). - bsg: free the request before return error code (git-fixes). - btrfs: abort the transaction if we fail to inc ref in btrfs_copy_root (bsc#1184217). - btrfs: always pin deleted leaves when there are active tree mod log users (bsc#1184224). - btrfs: fix exhaustion of the system chunk array due to concurrent allocations (bsc#1183386). - btrfs: fix extent buffer leak on failure to copy root (bsc#1184218). - btrfs: fix qgroup data rsv leak caused by falloc failure (bsc#1185549). - btrfs: fix race between swap file activation and snapshot creation (bsc#1185587). - btrfs: fix race between swap file activation and snapshot creation (bsc#1185587). - btrfs: fix race between transaction aborts and fsyncs leading to use-after-free (bsc#1186441). - btrfs: fix race between transaction aborts and fsyncs leading to use-after-free (bsc#1186441). - btrfs: fix race between writes to swap files and scrub (bsc#1185586). - btrfs: fix race between writes to swap files and scrub (bsc#1185586). - btrfs: fix race when cloning extent buffer during rewind of an old root (bsc#1184193). - btrfs: fix race when picking most recent mod log operation for an old root (bsc#1186439). - btrfs: fix race when picking most recent mod log operation for an old root (bsc#1186439). - btrfs: fix stale data exposure after cloning a hole with NO_HOLES enabled (bsc#1184220). - btrfs: fix subvolume/snapshot deletion not triggered on mount (bsc#1184219). - btrfs: track qgroup released data in own variable in insert_prealloc_file_extent (bsc#1185549). - bus: fsl-mc: add the dpdbg device type (bsc#1185670). - bus: fsl-mc: list more commands as accepted through the ioctl (bsc#1185670). - bus: omap_l3_noc: mark l3 irqs as IRQF_NO_THREAD (git-fixes). - bus: qcom: Put child node before return (git-fixes). - bus: ti-sysc: Fix warning on unbind if reset is not deasserted (git-fixes). - can: c_can: move runtime PM enable/disable to c_can_platform (git-fixes). - can: c_can_pci: c_can_pci_remove(): fix use-after-free (git-fixes). - can: flexcan: assert FRZ bit in flexcan_chip_freeze() (git-fixes). - can: flexcan: enable RX FIFO after FRZ/HALT valid (git-fixes). - can: flexcan: flexcan_chip_freeze(): fix chip freeze for missing bitrate (git-fixes). - can: flexcan: invoke flexcan_chip_freeze() to enter freeze mode (git-fixes). - can: m_can: m_can_do_rx_poll(): fix extraneous msg loss warning (git-fixes). - can: peak_usb: Revert "can: peak_usb: add forgotten supported devices" (git-fixes). - can: peak_usb: add forgotten supported devices (git-fixes). - can: skb: can_skb_set_owner(): fix ref counting if socket was closed before setting skb ownership (git-fixes). - cdc-acm: fix BREAK rx code path adding necessary calls (git-fixes). - cdc-wdm: untangle a circular dependency between callback and softint (git-fixes). - ceph: do not clobber i_snap_caps on non-I_NEW inode (bsc#1186501). - ceph: fix inode leak on getattr error in __fh_to_dentry (bsc#1186501). - ceph: fix up error handling with snapdirs (bsc#1186501). - ceph: only check pool permissions for regular files (bsc#1186501). - cfg80211: remove WARN_ON() in cfg80211_sme_connect (git-fixes). - cfg80211: scan: drop entry from hidden_list on overflow (git-fixes). - ch_ktls: Fix kernel panic (jsc#SLE-15131). - ch_ktls: do not send snd_una update to TCB in middle (jsc#SLE-15131). - ch_ktls: fix device connection close (jsc#SLE-15131). - ch_ktls: fix enum-conversion warning (jsc#SLE-15129). - ch_ktls: tcb close causes tls connection failure (jsc#SLE-15131). - cifs: New optype for session operations (bsc#1181507). - cifs: Tracepoints and logs for tracing credit changes (bsc#1181507). - cifs: change noisy error message to FYI (bsc#1181507). - cifs: check pointer before freeing (bsc#1183534). - cifs: do not send close in compound create+close requests (bsc#1181507). - cifs: print MIDs in decimal notation (bsc#1181507). - cifs: return proper error code in statfs(2) (bsc#1181507). - cifs_debug: use %pd instead of messing with ->d_name (bsc#1181507). - clk: exynos7: Mark aclk_fsys1_200 as critical (git-fixes). - clk: fix invalid usage of list cursor in register (git-fixes). - clk: fix invalid usage of list cursor in unregister (git-fixes). - clk: mvebu: armada-37xx-periph: Fix switching CPU freq from 250 Mhz to 1 GHz (git-fixes). - clk: mvebu: armada-37xx-periph: Fix workaround for switching from L1 to L0 (git-fixes). - clk: mvebu: armada-37xx-periph: remove .set_parent method for CPU PM clock (git-fixes). - clk: qcom: a53-pll: Add missing MODULE_DEVICE_TABLE (git-fixes). - clk: socfpga: arria10: Fix memory leak of socfpga_clk on error return (git-fixes). - clk: socfpga: fix iomem pointer cast on 64-bit (git-fixes). - clk: uniphier: Fix potential infinite loop (git-fixes). - clk: zynqmp: move zynqmp_pll_set_mode out of round_rate callback (git-fixes). - completion: Drop init_completion define (git-fixes). - configfs: fix a use-after-free in __configfs_open_file (git-fixes). - coresight: etm4x: Fix issues on trcseqevr access (git-fixes). - coresight: etm4x: Fix save and restore of TRCVMIDCCTLR1 register (git-fixes). - coresight: remove broken __exit annotations (git-fixes). - coresight: tmc-etr: Fix barrier packet insertion for perf buffer (git-fixes). - cpufreq: Kconfig: fix documentation links (git-fixes). - cpufreq: armada-37xx: Fix determining base CPU frequency (git-fixes). - cpufreq: armada-37xx: Fix driver cleanup when registration failed (git-fixes). - cpufreq: armada-37xx: Fix setting TBG parent for load levels (git-fixes). - cpufreq: armada-37xx: Fix the AVS value for load L1 (git-fixes). - cpufreq: intel_pstate: Add Icelake servers support in no-HWP mode (bsc#1185758). - cpuidle/pseries: Fixup CEDE0 latency only for POWER10 onwards (bsc#1185550 ltc#192610). - crypto: api - check for ERR pointers in crypto_destroy_tfm() (git-fixes). - crypto: arm/curve25519 - Move '.fpu' after '.arch' (git-fixes). - crypto: chelsio - Read rxchannel-id from firmware (git-fixes). - crypto: mips/poly1305 - enable for all MIPS processors (git-fixes). - crypto: qat - ADF_STATUS_PF_RUNNING should be set after adf_dev_init (git-fixes). - crypto: qat - Fix a double free in adf_create_ring (git-fixes). - crypto: qat - do not release uninitialized resources (git-fixes). - crypto: qat - fix error path in adf_isr_resource_alloc() (git-fixes). - crypto: qat - fix unmap invalid dma address (git-fixes). - crypto: rng - fix crypto_rng_reset() refcounting when !CRYPTO_STATS (git-fixes). - crypto: stm32/cryp - Fix PM reference leak on stm32-cryp.c (git-fixes). - crypto: stm32/hash - Fix PM reference leak on stm32-hash.c (git-fixes). - crypto: tcrypt - avoid signed overflow in byte count (git-fixes). - cxgb4/chtls/cxgbit: Keeping the max ofld immediate data size same in cxgb4 and ulds (git-fixes). - cxgb4/chtls/cxgbit: Keeping the max ofld immediate data size same in cxgb4 and ulds (git-fixes). - cxgb4: Fix unintentional sign extension issues (git-fixes). - cxgb4: avoid collecting SGE_QBASE regs during traffic (git-fixes). - dm era: Fix bitset memory leaks (git-fixes). - dm era: Recover committed writeset after crash (git-fixes). - dm era: Reinitialize bitset cache before digesting a new writeset (git-fixes). - dm era: Update in-core bitset after committing the metadata (git-fixes). - dm era: Use correct value size in equality function of writeset tree (git-fixes). - dm era: Verify the data block size hasn't changed (git-fixes). - dm era: only resize metadata in preresume (git-fixes). - dm integrity: fix error reporting in bitmap mode after creation (git-fixes). - dm ioctl: fix error return code in target_message (git-fixes). - dm mpath: fix racey management of PG initialization (git-fixes). - dm mpath: switch paths in dm_blk_ioctl() code path (bsc#1167574, bsc#1175995, bsc#1184485). - dm raid: fix discard limits for raid1 (git-fixes). - dm rq: fix double free of blk_mq_tag_set in dev remove after table load fails (bsc#1185581). - dm writecache: fix the maximum number of arguments (git-fixes). - dm writecache: handle DAX to partitions on persistent memory correctly (git-fixes). - dm writecache: remove BUG() and fail gracefully instead (git-fixes). - dm zoned: select CONFIG_CRC32 (git-fixes). - dm: avoid filesystem lookup in dm_get_dev_t() (git-fixes). - dm: eliminate potential source of excessive kernel log noise (git-fixes). - dm: fix bug with RCU locking in dm_blk_report_zones (git-fixes). - dm: remove invalid sparse __acquires and __releases annotations (git-fixes). - dmaengine: Fix a double free in dma_async_device_register (git-fixes). - dmaengine: dw-edma: Fix crash on loading/unloading driver (git-fixes). - dmaengine: dw: Make it dependent to HAS_IOMEM (git-fixes). - dmaengine: idxd: Fix clobbering of SWERR overflow bit on writeback (git-fixes). - dmaengine: idxd: Fix potential null dereference on pointer status (git-fixes). - dmaengine: idxd: cleanup pci interrupt vector allocation management (git-fixes). - dmaengine: idxd: clear MSIX permission entry on shutdown (git-fixes). - dmaengine: idxd: fix cdev setup and free device lifetime issues (git-fixes). - dmaengine: idxd: fix delta_rec and crc size field for completion record (git-fixes). - dmaengine: idxd: fix dma device lifetime (git-fixes). - dmaengine: idxd: fix opcap sysfs attribute output (git-fixes). - dmaengine: idxd: fix wq cleanup of WQCFG registers (git-fixes). - dmaengine: idxd: fix wq size store permission state (git-fixes). - dmaengine: idxd: removal of pcim managed mmio mapping (git-fixes). - docs: kernel-parameters: Add gpio_mockup_named_lines (git-fixes). - docs: kernel-parameters: Move gpio-mockup for alphabetic order (git-fixes). - dpaa_eth: Remove unnecessary boolean expression in dpaa_get_headroom (git-fixes). - dpaa_eth: Use random MAC address when none is given (bsc#1184811). - dpaa_eth: copy timestamp fields to new skb in A-050385 workaround (git-fixes). - dpaa_eth: fix the RX headroom size alignment (git-fixes). - dpaa_eth: update the buffer layout for non-A050385 erratum scenarios (git-fixes). - drivers: hv: Fix whitespace errors (bsc#1185725). - drivers: net: xgene: Fix the order of the arguments of 'alloc_etherdev_mqs()' (git-fixes). - drivers: video: fbcon: fix NULL dereference in fbcon_cursor() (git-fixes). - drivers: video: fbcon: fix NULL dereference in fbcon_cursor() (git-fixes). - drm/amd/display/dc/dce/dce_aux: Remove duplicate line causing 'field overwritten' issue (git-fixes). - drm/amd/display: Check for DSC support instead of ASIC revision (git-fixes). - drm/amd/display: Correct algorithm for reversed gamma (git-fixes). - drm/amd/display: DCHUB underflow counter increasing in some scenarios (git-fixes). - drm/amd/display: Do not optimize bandwidth before disabling planes (git-fixes). - drm/amd/display: Fix UBSAN warning for not a valid value for type '_Bool' (git-fixes). - drm/amd/display: Fix UBSAN: shift-out-of-bounds warning (git-fixes). - drm/amd/display: Fix debugfs link_settings entry (git-fixes). - drm/amd/display: Fix nested FPU context in dcn21_validate_bandwidth() (git-fixes). - drm/amd/display: Fix off by one in hdmi_14_process_transaction() (git-fixes). - drm/amd/display: Fix two cursor duplication when using overlay (git-fixes). - drm/amd/display: Force vsync flip when reconfiguring MPCC (git-fixes). - drm/amd/display: Guard against NULL pointer deref when get_i2c_info fails (git-fixes). - drm/amd/display: Initialize attribute for hdcp_srm sysfs file (git-fixes). - drm/amd/display: Reject non-zero src_y and src_x for video planes (git-fixes). - drm/amd/display: Revert dram_clock_change_latency for DCN2.1 (git-fixes). - drm/amd/display: Try YCbCr420 color when YCbCr444 fails (git-fixes). - drm/amd/display: add handling for hdcp2 rx id list validation (git-fixes). - drm/amd/display: changing sr exit latency (git-fixes). - drm/amd/display: fix dml prefetch validation (git-fixes). - drm/amd/display: fixed divide by zero kernel crash during dsc enablement (git-fixes). - drm/amd/display: turn DPMS off on connector unplug (git-fixes). - drm/amd/pm: fix workload mismatch on vega10 (git-fixes). - drm/amd/powerplay: fix spelling mistake "smu_state_memroy_block" -> (bsc#1152489) Backporting notes: * rename amd/pm to amd/powerplay * context changes - drm/amdgpu : Fix asic reset regression issue introduce by 8f211fe8ac7c4f (git-fixes). - drm/amdgpu/display/dm: add missing parameter documentation (git-fixes). - drm/amdgpu/display: buffer INTERRUPT_LOW_IRQ_CONTEXT interrupt work (git-fixes). - drm/amdgpu/display: remove redundant continue statement (git-fixes). - drm/amdgpu/display: restore AUX_DPHY_TX_CONTROL for DCN2.x (git-fixes). - drm/amdgpu/display: use GFP_ATOMIC in dcn21_validate_bandwidth_fp() (git-fixes). - drm/amdgpu/swsmu: add interrupt work function (git-fixes). - drm/amdgpu/swsmu: add interrupt work handler for smu11 parts (git-fixes). - drm/amdgpu: Add additional Sienna Cichlid PCI ID (git-fixes). - drm/amdgpu: Add check to prevent IH overflow (git-fixes). - drm/amdgpu: Add mem sync flag for IB allocated by SA (git-fixes). - drm/amdgpu: Fix GPU TLB update error when PAGE_SIZE > AMDGPU_PAGE_SIZE (git-fixes). - drm/amdgpu: Fix some unload driver issues (git-fixes). - drm/amdgpu: Init GFX10_ADDR_CONFIG for VCN v3 in DPG mode (git-fixes). - drm/amdgpu: check alignment on CPU page for bo map (git-fixes). - drm/amdgpu: disable 3DCGCG on picasso/raven1 to avoid compute hang (git-fixes). - drm/amdgpu: fb BO should be ttm_bo_type_device (git-fixes). - drm/amdgpu: fix NULL pointer dereference (git-fixes). - drm/amdgpu: fix concurrent VM flushes on Vega/Navi v2 (git-fixes). - drm/amdgpu: fix offset calculation in amdgpu_vm_bo_clear_mappings() (git-fixes). - drm/amdgpu: fix parameter error of RREG32_PCIE() in amdgpu_regs_pcie (git-fixes). - drm/amdgpu: mask the xgmi number of hops reported from psp to kfd (git-fixes). - drm/amdgpu: remove unused variable from struct amdgpu_bo (git-fixes). - drm/amdgpu: update gc golden setting for Navi12 (git-fixes). - drm/amdgpu: update sdma golden setting for Navi12 (git-fixes). - drm/amdkfd: Fix UBSAN shift-out-of-bounds warning (git-fixes). - drm/amdkfd: Fix cat debugfs hang_hws file causes system crash bug (git-fixes). - drm/amdkfd: Put ACPI table after using it (bsc#1152489) Backporting notes: * context changes - drm/amdkfd: dqm fence memory corruption (git-fixes). - drm/amdkfd: fix build error with AMD_IOMMU_V2=m (git-fixes). - drm/ast: AST2500 fixups (bsc#1174416). - drm/ast: AST2500 fixups (bsc#1174416). - drm/ast: Add 25MHz refclk support (bsc#1174416). - drm/ast: Add 25MHz refclk support (bsc#1174416). - drm/ast: Add support for 1152x864 mode (bsc#1174416). - drm/ast: Add support for 1152x864 mode (bsc#1174416). - drm/ast: Add support for AIP200 (bsc#1174416). - drm/ast: Add support for AIP200 (bsc#1174416). - drm/ast: Correct mode table for AST2500 precatch (bsc#1174416). - drm/ast: Correct mode table for AST2500 precatch (bsc#1174416). - drm/ast: Disable VGA decoding while driver is active (bsc#1174416). - drm/ast: Disable VGA decoding while driver is active (bsc#1174416). - drm/ast: Disable screen on register init (bsc#1174416). - drm/ast: Disable screen on register init (bsc#1174416). - drm/ast: Fix P2A config detection (bsc#1174416). - drm/ast: Fix P2A config detection (bsc#1174416). - drm/ast: Fix invalid usage of AST_MAX_HWC_WIDTH in cursor atomic_check (git-fixes). - drm/ast: Fix register access in non-P2A mode for DP501 (bsc#1174416). - drm/ast: Fix register access in non-P2A mode for DP501 (bsc#1174416). - drm/ast: Keep MISC fields when enabling VGA (bsc#1174416). - drm/ast: Keep MISC fields when enabling VGA (bsc#1174416). - drm/ast: drm/ast: Fix boot address for AST2500 (bsc#1174416). - drm/ast: drm/ast: Fix boot address for AST2500 (bsc#1174416). - drm/compat: Clear bounce structures (git-fixes). - drm/dp_mst: Revise broadcast msg lct & lcr (git-fixes). - drm/dp_mst: Set CLEAR_PAYLOAD_ID_TABLE as broadcast (git-fixes). - drm/hisilicon: Fix use-after-free (git-fixes). - drm/i915/display: fix compiler warning about array overrun (git-fixes). - drm/i915/gt: Clear CACHE_MODE prior to clearing residuals (git-fixes). - drm/i915/gt: Disable HiZ Raw Stall Optimization on broken gen7 (git-fixes). - drm/i915/gvt: Fix error code in intel_gvt_init_device() (git-fixes). - drm/i915/gvt: Set SNOOP for PAT3 on BXT/APL to workaround GPU BB hang (git-fixes). - drm/i915/overlay: Fix active retire callback alignment (git-fixes). - drm/i915/selftests: Fix some error codes (git-fixes). - drm/i915: Avoid div-by-zero on gen2 (git-fixes). - drm/i915: Fix ICL MG PHY vswing handling (git-fixes). - drm/i915: Fix crash in auto_retire (git-fixes). - drm/i915: Fix invalid access to ACPI _DSM objects (bsc#1184074). - drm/i915: Hold onto an explicit ref to i915_vma_work.pinned (git-fixes). - drm/i915: Read C0DRB3/C1DRB3 as 16 bits again (git-fixes). - drm/i915: Wedge the GPU if command parser setup fails (git-fixes). - drm/imx: imx-ldb: fix out of bounds array access warning (git-fixes). - drm/ingenic: Fix non-OSD mode (git-fixes). - drm/ingenic: Register devm action to cleanup encoders (git-fixes). - drm/komeda: Fix bit check to import to value of proper type (git-fixes). - drm/lima: fix reference leak in lima_pm_busy (git-fixes). - drm/mcde/panel: Inverse misunderstood flag (git-fixes). - drm/mediatek: Fix aal size config (bsc#1152489) Backporting notes: * replaced mtk_ddp_write() with writel() - drm/msm/a5xx: Remove overwriting A5XX_PC_DBG_ECO_CNTL register (git-fixes). - drm/msm/adreno: a5xx_power: Do not apply A540 lm_setup to other GPUs (git-fixes). - drm/msm/gem: Add obj->lock wrappers (bsc#1152489) Backporting notes: * taken for 9b73bde39cf2 ("drm/msm: Fix use-after-free in msm_gem with carveout") * context changes - drm/msm/mdp5: Configure PP_SYNC_HEIGHT to double the vtotal (git-fixes). - drm/msm/mdp5: Do not multiply vclk line count by 100 (git-fixes). - drm/msm: Fix WARN_ON() splat in _free_object() (bsc#1152489) Backporting notes: * context changes - drm/msm: Fix a5xx/a6xx timestamps (git-fixes). - drm/msm: Fix races managing the OOB state for timestamp vs (bsc#1152489) Backporting notes: * context changes - drm/msm: Fix suspend/resume on i.MX5 (git-fixes). - drm/msm: Fix use-after-free in msm_gem with carveout (bsc#1152489) Backporting notes: * context changes - drm/msm: Ratelimit invalid-fence message (git-fixes). - drm/msm: Set drvdata to NULL when msm_drm_init() fails (git-fixes). - drm/msm: fix shutdown hook in case GPU components failed to bind (git-fixes). - drm/nouveau/kms/nv50-: Get rid of bogus nouveau_conn_mode_valid() (git-fixes). - drm/omap: fix misleading indentation in pixinc() (git-fixes). - drm/panfrost: Clear MMU irqs before handling the fault (git-fixes). - drm/panfrost: Do not corrupt the queue mutex on open/close (bsc#1152472) Backporting notes: * context changes - drm/panfrost: Do not try to map pages that are already mapped (git-fixes). - drm/panfrost: Fix job timeout handling (bsc#1152472) Backporting notes: * context changes - drm/panfrost: Remove unused variables in panfrost_job_close() (bsc#1152472) - drm/probe-helper: Check epoch counter in output_poll_execute() (git-fixes). - drm/qxl: do not run release if qxl failed to init (git-fixes). - drm/radeon/dpm: Disable sclk switching on Oland when two 4K 60Hz monitors are connected (git-fixes). - drm/radeon: Avoid power table parsing memory leaks (git-fixes). - drm/radeon: Fix a missing check bug in radeon_dp_mst_detect() (git-fixes). - drm/radeon: Fix off-by-one power_state index heap overwrite (git-fixes). - drm/radeon: fix AGP dependency (git-fixes). - drm/radeon: fix copy of uninitialized variable back to userspace (git-fixes). - drm/shmem-helper: Check for purged buffers in fault handler (git-fixes). - drm/shmem-helper: Do not remove the offset in vm_area_struct pgoff (git-fixes). - drm/shmem-helpers: vunmap: Do not put pages for dma-buf (git-fixes). - drm/sun4i: tcon: fix inverted DCLK polarity (bsc#1152489) Backporting notes: * context changes - drm/tegra: Fix reference leak when pm_runtime_get_sync() fails (git-fixes). - drm/tegra: dc: Do not set PLL clock to 0Hz (git-fixes). - drm/tegra: dc: Restore coupling of display controllers (git-fixes). - drm/tegra: sor: Grab runtime PM reference across reset (git-fixes). - drm/tilcdc: send vblank event when disabling crtc (git-fixes). - drm/vc4: crtc: Reduce PV fifo threshold on hvs4 (git-fixes). - drm/vc4: hdmi: Restore cec physical address on reconnect (bsc#1152472) Backporting notes: * context changes * change vc4_hdmi to vc4->hdmi * removed references to encoder->hdmi_monitor - drm/vkms: fix misuse of WARN_ON (git-fixes). - drm: Added orientation quirk for OneGX1 Pro (git-fixes). - drm: meson_drv add shutdown function (git-fixes). - drm: rcar-du: Fix PM reference leak in rcar_cmm_enable() (git-fixes). - drm: rcar-du: Fix crash when using LVDS1 clock for CRTC (bsc#1152489) Backporting notes: * context changes - drm: rcar-du: Fix leak of CMM platform device reference (git-fixes). - drm: xlnx: zynqmp: fix a memset in zynqmp_dp_train() (git-fixes). - e1000e: Fix duplicate include guard (git-fixes). - e1000e: Fix error handling in e1000_set_d0_lplu_state_82571 (git-fixes). - e1000e: add rtnl_lock() to e1000_reset_task (git-fixes). - efi: use 32-bit alignment for efi_guid_t literals (git-fixes). - enetc: Fix reporting of h/w packet counters (git-fixes). - enetc: Let the hardware auto-advance the taprio base-time of 0 (git-fixes). - enetc: Workaround for MDIO register access issue (git-fixes). - epoll: check for events when removing a timed out thread from the wait queue (git-fixes). - ethernet/netronome/nfp: Fix a use after free in nfp_bpf_ctrl_msg_rx (git-fixes). - ethernet: alx: fix order of calls on resume (git-fixes). - ethernet:enic: Fix a use after free bug in enic_hard_start_xmit (git-fixes). - ethtool: fix incorrect datatype in set_eee ops (bsc#1176447). - ethtool: fix missing NLM_F_MULTI flag when dumping (bsc#1176447). - ethtool: pause: make sure we init driver stats (jsc#SLE-15075). - exec: Move would_dump into flush_old_exec (git-fixes). - ext4: do not try to set xattr into ea_inode if value is empty (bsc#1184730). - ext4: find old entry again if failed to rename whiteout (bsc#1184742). - ext4: fix potential error in ext4_do_update_inode (bsc#1184731). - ext4: fix potential htree index checksum corruption (bsc#1184728). - extcon: Add stubs for extcon_register_notifier_all() functions (git-fixes). - extcon: Fix error handling in extcon_dev_register (git-fixes). - extcon: arizona: Fix some issues when HPDET IRQ fires after the jack has been unplugged (git-fixes). - extcon: arizona: Fix various races on driver unbind (git-fixes). - fbdev: zero-fill colormap in fbcmap.c (git-fixes). - fbmem: add margin check to fb_check_caps() (git-fixes). - firmware/efi: Fix a use after bug in efi_mem_reserve_persistent (git-fixes). - firmware: arm_scpi: Prevent the ternary sign expansion bug (git-fixes). - firmware: qcom-scm: Fix QCOM_SCM configuration (git-fixes). - firmware: qcom_scm: Fix kernel-doc function names to match (git-fixes). - firmware: qcom_scm: Make __qcom_scm_is_call_available() return bool (git-fixes). - firmware: qcom_scm: Reduce locking section for __get_convention() (git-fixes). - firmware: qcom_scm: Workaround lack of "is available" call on SC7180 (git-fixes). - flow_dissector: fix byteorder of dissected ICMP ID (bsc#1154353). - fnic: use scsi_host_busy_iter() to traverse commands (bsc#1179851). - fotg210-udc: Complete OUT requests on short packets (git-fixes). - fotg210-udc: Do not DMA more than the buffer can take (git-fixes). - fotg210-udc: Fix DMA on EP0 for length > max packet size (git-fixes). - fotg210-udc: Fix EP0 IN requests bigger than two packets (git-fixes). - fotg210-udc: Mask GRP2 interrupts we do not handle (git-fixes). - fotg210-udc: Remove a dubious condition leading to fotg210_done (git-fixes). - fs/epoll: restore waking from ep_done_scan() (bsc#1183868). - fs/jfs: fix potential integer overflow on shift of a int (bsc#1184741). - fs: direct-io: fix missing sdio->boundary (bsc#1184736). - fsl/fman: check dereferencing null pointer (git-fixes). - fsl/fman: fix dereference null return value (git-fixes). - fsl/fman: fix eth hash table allocation (git-fixes). - fsl/fman: fix unreachable code (git-fixes). - fsl/fman: reuse set_mac_address() in dtsec init() (bsc#1184811). - fsl/fman: tolerate missing MAC address in device tree (bsc#1184811). - fsl/fman: use 32-bit unsigned integer (git-fixes). - ftrace/x86: Tell objtool to ignore nondeterministic ftrace stack layout (bsc#1177028). - ftrace: Fix modify_ftrace_direct (bsc#1177028). - ftrace: Handle commands when closing set_ftrace_filter file (git-fixes). - fuse: fix bad inode (bsc#1184211). - fuse: fix bad inode (bsc#1184211). - fuse: fix live lock in fuse_iget() (bsc#1184211). - fuse: fix live lock in fuse_iget() (bsc#1184211). - fuse: fix write deadlock (bsc#1185573). - fuse: verify write return (git-fixes). - futex: Change utime parameter to be 'const ... *' (git-fixes). - futex: Do not apply time namespace adjustment on FUTEX_LOCK_PI (bsc#1164648). - futex: Get rid of the val2 conditional dance (git-fixes). - futex: Make syscall entry points less convoluted (git-fixes). - gcc-plugins: drop support for GCC &lt;= 4.7 (bcs#1181862). - gcc-plugins: make it possible to disable CONFIG_GCC_PLUGINS again (bcs#1181862). - gcc-plugins: simplify GCC plugin-dev capability test (bsc#1181862). - geneve: do not modify the shared tunnel info when PMTU triggers an ICMP reply (bsc#1176447). - geneve: do not modify the shared tunnel info when PMTU triggers an ICMP reply (git-fixes). - genirq/irqdomain: Do not try to free an interrupt that has no (git-fixes) - genirq: Disable interrupts for force threaded handlers (git-fixes) - genirq: Reduce irqdebug cacheline bouncing (bsc#1185703 ltc#192641). - gianfar: Account for Tx PTP timestamp in the skb headroom (git-fixes). - gianfar: Fix TX timestamping with a stacked DSA driver (git-fixes). - gianfar: Handle error code at MAC address change (git-fixes). - gianfar: Replace skb_realloc_headroom with skb_cow_head for PTP (git-fixes). - gpio: omap: Save and restore sysconfig (git-fixes). - gpio: pca953x: Set IRQ type when handle Intel Galileo Gen 2 (git-fixes). - gpio: sysfs: Obey valid_mask (git-fixes). - gpio: xilinx: Correct kernel doc for xgpio_probe() (git-fixes). - gpio: zynq: fix reference leak in zynq_gpio functions (git-fixes). - gpiolib: Do not free if pin ranges are not defined (git-fixes). - gpiolib: acpi: Add missing IRQF_ONESHOT (git-fixes). - gpiolib: acpi: Add quirk to ignore EC wakeups on Dell Venue 10 Pro 5055 (git-fixes). - gpu/xen: Fix a use after free in xen_drm_drv_init (git-fixes). - hrtimer: Update softirq_expires_next correctly after (git-fixes) - hv_netvsc: Reset the RSC count if NVSP_STAT_FAIL in netvsc_receive() (git-fixes). - hwmon: (ina3221) Fix PM usage counter unbalance in ina3221_write_enable (git-fixes). - hwmon: (occ) Fix poll rate limiting (git-fixes). - i2c: Add I2C_AQ_NO_REP_START adapter quirk (git-fixes). - i2c: bail out early when RDWR parameters are wrong (git-fixes). - i2c: cadence: add IRQ check (git-fixes). - i2c: emev2: add IRQ check (git-fixes). - i2c: img-scb: fix reference leak when pm_runtime_get_sync fails (git-fixes). - i2c: imx-lpi2c: fix reference leak when pm_runtime_get_sync fails (git-fixes). - i2c: jz4780: add IRQ check (git-fixes). - i2c: mlxbf: add IRQ check (git-fixes). - i2c: omap: fix reference leak when pm_runtime_get_sync fails (git-fixes). - i2c: rcar: faster irq code to minimize HW race condition (git-fixes). - i2c: rcar: optimize cacheline to minimize HW race condition (git-fixes). - i2c: sh7760: add IRQ check (git-fixes). - i2c: sh7760: fix IRQ error path (git-fixes). - i2c: sprd: fix reference leak when pm_runtime_get_sync fails (git-fixes). - i2c: tegra: Add missing pm_runtime_put() (bsc#1184386). - i2c: tegra: Check errors for both positive and negative values (bsc#1184386). - i2c: tegra: Clean up and improve comments (bsc#1184386). - i2c: tegra: Clean up printk messages (bsc#1184386). - i2c: tegra: Clean up probe function (bsc#1184386). - i2c: tegra: Clean up variable names (bsc#1184386). - i2c: tegra: Clean up variable types (bsc#1184386). - i2c: tegra: Clean up whitespaces, newlines and indentation (bsc#1184386). - i2c: tegra: Create i2c_writesl_vi() to use with VI I2C for filling TX FIFO (bsc#1184386). - i2c: tegra: Factor out error recovery from tegra_i2c_xfer_msg() (bsc#1184386). - i2c: tegra: Factor out hardware initialization into separate function (bsc#1184386). - i2c: tegra: Factor out packet header setup from tegra_i2c_xfer_msg() (bsc#1184386). - i2c: tegra: Factor out register polling into separate function (bsc#1184386). - i2c: tegra: Handle potential error of tegra_i2c_flush_fifos() (bsc#1184386). - i2c: tegra: Improve driver module description (bsc#1184386). - i2c: tegra: Improve formatting of variables (bsc#1184386). - i2c: tegra: Initialize div-clk rate unconditionally (bsc#1184386). - i2c: tegra: Make tegra_i2c_flush_fifos() usable in atomic transfer (bsc#1184386). - i2c: tegra: Mask interrupt in tegra_i2c_issue_bus_clear() (bsc#1184386). - i2c: tegra: Move out all device-tree parsing into tegra_i2c_parse_dt() (bsc#1184386). - i2c: tegra: Remove "dma" variable from tegra_i2c_xfer_msg() (bsc#1184386). - i2c: tegra: Remove error message used for devm_request_irq() failure (bsc#1184386). - i2c: tegra: Remove i2c_dev.clk_divisor_non_hs_mode member (bsc#1184386). - i2c: tegra: Remove likely/unlikely from the code (bsc#1184386). - i2c: tegra: Remove outdated barrier() (bsc#1184386). - i2c: tegra: Remove redundant check in tegra_i2c_issue_bus_clear() (bsc#1184386). - i2c: tegra: Rename wait/poll functions (bsc#1184386). - i2c: tegra: Reorder location of functions in the code (bsc#1184386). - i2c: tegra: Runtime PM always available on Tegra (bsc#1184386). - i2c: tegra: Use clk-bulk helpers (bsc#1184386). - i2c: tegra: Use devm_platform_get_and_ioremap_resource() (bsc#1184386). - i2c: tegra: Use platform_get_irq() (bsc#1184386). - i2c: tegra: Use reset_control_reset() (bsc#1184386). - i2c: tegra: Use threaded interrupt (bsc#1184386). - i2c: tegra: Wait for config load atomically while in ISR (bsc#1184386). - i40e: Add zero-initialization of AQ command structures (git-fixes). - i40e: Added Asym_Pause to supported link modes (git-fixes). - i40e: Fix PHY type identifiers for 2.5G and 5G adapters (git-fixes). - i40e: Fix add TC filter for IPv6 (git-fixes). - i40e: Fix addition of RX filters after enabling FW LLDP agent (git-fixes). - i40e: Fix display statistics for veb_tc (git-fixes). - i40e: Fix endianness conversions (git-fixes). - i40e: Fix flow for IPv6 next header (extension header) (git-fixes). - i40e: Fix kernel oops when i40e driver removes VF's (git-fixes). - i40e: Fix overwriting flow control settings during driver loading (git-fixes). - i40e: Fix parameters in aq_get_phy_register() (jsc#SLE-8025). - i40e: Fix sparse error: 'vsi->netdev' could be null (jsc#SLE-8025). - i40e: Fix sparse error: uninitialized symbol 'ring' (jsc#SLE-13701). - i40e: Fix sparse errors in i40e_txrx.c (git-fixes). - i40e: Fix sparse errors in i40e_txrx.c (git-fixes). - i40e: Fix sparse warning: missing error code 'err' (git-fixes). - i40e: Fix use-after-free in i40e_client_subtask() (git-fixes). - i40e: fix broken XDP support (git-fixes). - i40e: fix the panic when running bpf in xdpdrv mode (git-fixes). - i40e: fix the restart auto-negotiation after FEC modified (git-fixes). - i915/perf: Start hrtimer only if sampling the OA buffer (git-fixes). - iavf: Fix incorrect adapter get in iavf_resume (git-fixes). - iavf: use generic power management (git-fixes). - ibmvfc: Avoid move login if fast fail is enabled (bsc#1185938 ltc#192043). - ibmvfc: Handle move login failure (bsc#1185938 ltc#192043). - ibmvfc: Reinit target retries (bsc#1185938 ltc#192043). - ibmvnic: add comments for spinlock_t definitions (bsc#1183871 ltc#192139). - ibmvnic: avoid calling napi_disable() twice (bsc#1065729). - ibmvnic: avoid multiple line dereference (bsc#1183871 ltc#192139). - ibmvnic: clean up the remaining debugfs data structures (bsc#1065729). - ibmvnic: correctly use dev_consume/free_skb_irq (jsc#SLE-17268 jsc#SLE-17043 bsc#1179243 ltc#189290 git-fixes). - ibmvnic: fix block comments (bsc#1183871 ltc#192139). - ibmvnic: fix braces (bsc#1183871 ltc#192139). - ibmvnic: fix miscellaneous checks (bsc#1183871 ltc#192139). - ibmvnic: improve failover sysfs entry (bsc#1043990 ltc#155681 git-fixes). - ibmvnic: merge do_change_param_reset into do_reset (bsc#1183871 ltc#192139). - ibmvnic: prefer 'unsigned long' over 'unsigned long int' (bsc#1183871 ltc#192139). - ibmvnic: prefer strscpy over strlcpy (bsc#1183871 ltc#192139). - ibmvnic: print adapter state as a string (bsc#1152457 ltc#174432 git-fixes). - ibmvnic: print reset reason as a string (bsc#1152457 ltc#174432 git-fixes). - ibmvnic: queue reset work in system_long_wq (bsc#1152457 ltc#174432 git-fixes). - ibmvnic: remove default label from to_string switch (bsc#1152457 ltc#174432 git-fixes). - ibmvnic: remove duplicate napi_schedule call in do_reset function (bsc#1065729). - ibmvnic: remove duplicate napi_schedule call in open function (bsc#1065729). - ibmvnic: remove unnecessary rmb() inside ibmvnic_poll (bsc#1183871 ltc#192139). - ibmvnic: remove unused spinlock_t stats_lock definition (bsc#1183871 ltc#192139). - ibmvnic: rework to ensure SCRQ entry reads are properly ordered (bsc#1183871 ltc#192139). - ice: Account for port VLAN in VF max packet size calculation (git-fixes). - ice: Account for port VLAN in VF max packet size calculation (git-fixes). - ice: Cleanup fltr list in case of allocation issues (git-fixes). - ice: Continue probe on link/PHY errors (jsc#SLE-12878). - ice: Fix for dereference of NULL pointer (git-fixes). - ice: Increase control queue timeout (git-fixes). - ice: Use port number instead of PF ID for WoL (jsc#SLE-12878). - ice: fix memory allocation call (jsc#SLE-12878). - ice: fix memory leak if register_netdev_fails (git-fixes). - ice: fix memory leak in ice_vsi_setup (git-fixes). - ice: fix memory leak of aRFS after resuming from suspend (jsc#SLE-12878). - ice: prevent ice_open and ice_stop during reset (git-fixes). - ice: remove DCBNL_DEVRESET bit from PF state (jsc#SLE-7926). - ics932s401: fix broken handling of errors when word reading fails (git-fixes). - igb: Fix duplicate include guard (git-fixes). - igb: XDP extack message on error (jsc#SLE-13536). - igb: XDP xmit back fix error code (jsc#SLE-13536). - igb: avoid premature Rx buffer reuse (jsc#SLE-13536). - igb: avoid transmit queue timeout in xdp path (jsc#SLE-13536). - igb: check timestamp validity (git-fixes). - igb: skb add metasize for xdp (jsc#SLE-13536). - igb: take VLAN double header into account (jsc#SLE-13536). - igb: use xdp_do_flush (jsc#SLE-13536). - igc: Fix Pause Frame Advertising (git-fixes). - igc: Fix Supported Pause Frame Link Setting (git-fixes). - igc: Fix igc_ptp_rx_pktstamp() (bsc#1160634). - igc: Fix igc_ptp_rx_pktstamp() (bsc#1160634). - igc: reinit_locked() should be called with rtnl_lock (git-fixes). - igc: reinit_locked() should be called with rtnl_lock (git-fixes). - iio: adc: ad7949: fix wrong ADC result due to incorrect bit mask (git-fixes). - iio: adis16400: Fix an error code in adis16400_initial_setup() (git-fixes). - iio: gyro: mpu3050: Fix error handling in mpu3050_trigger_handler (git-fixes). - iio: gyro: mpu3050: Fix reported temperature value (git-fixes). - iio: hid-sensor-humidity: Fix alignment issue of timestamp channel (git-fixes). - iio: hid-sensor-prox: Fix scale not correct issue (git-fixes). - iio: hid-sensor-temperature: Fix issues of timestamp channel (git-fixes). - iio: proximity: pulsedlight: Fix rumtime PM imbalance on error (git-fixes). - iio: tsl2583: Fix division by a zero lux_val (git-fixes). - iio:accel:adis16201: Fix wrong axis assignment that prevents loading (git-fixes). - iio:adc:qcom-spmi-vadc: add default scale to LR_MUX2_BAT_ID channel (git-fixes). - ima: Free IMA measurement buffer after kexec syscall (git-fixes). - include/linux/sched/mm.h: use rcu_dereference in in_vfork() (git-fixes). - intel_th: Consistency and off-by-one fix (git-fixes). - intel_th: pci: Add Alder Lake-M support (git-fixes). - intel_th: pci: Add Rocket Lake CPU support (git-fixes). - interconnect: core: fix error return code of icc_link_destroy() (git-fixes). - iommu/amd: Add support for map/unmap_resource (jsc#ECO-3482). - iommu/amd: Fix sleeping in atomic in increase_address_space() (bsc#1183277). - iommu/amd: Fix sleeping in atomic in increase_address_space() (bsc#1183310). - iommu/intel: Fix memleak in intel_irq_remapping_alloc (bsc#1183278). - iommu/intel: Fix memleak in intel_irq_remapping_alloc (bsc#1183312). - iommu/qcom: add missing put_device() call in qcom_iommu_of_xlate() (bsc#1183313). - iommu/qcom: add missing put_device() call in qcom_iommu_of_xlate() (bsc#1183637). - iommu/vt-d: Add get_domain_info() helper (bsc#1183279). - iommu/vt-d: Avoid panic if iommu init fails in tboot system (bsc#1183280). - iommu/vt-d: Avoid panic if iommu init fails in tboot system (bsc#1183315). - iommu/vt-d: Correctly check addr alignment in qi_flush_dev_iotlb_pasid() (bsc#1183281). - iommu/vt-d: Correctly check addr alignment in qi_flush_dev_iotlb_pasid() (bsc#1183316). - iommu/vt-d: Do not use flush-queue when caching-mode is on (bsc#1183282). - iommu/vt-d: Do not use flush-queue when caching-mode is on (bsc#1183317). - iommu/vt-d: Fix general protection fault in aux_detach_device() (bsc#1183283). - iommu/vt-d: Fix general protection fault in aux_detach_device() (bsc#1183318). - iommu/vt-d: Fix ineffective devTLB invalidation for subdevices (bsc#1183284). - iommu/vt-d: Fix ineffective devTLB invalidation for subdevices (bsc#1183319). - iommu/vt-d: Fix status code for Allocate/Free PASID command (bsc#1183320). - iommu/vt-d: Fix unaligned addresses for intel_flush_svm_range_dev() (bsc#1183285). - iommu/vt-d: Fix unaligned addresses for intel_flush_svm_range_dev() (bsc#1183321). - iommu/vt-d: Move intel_iommu info from struct intel_svm to struct intel_svm_dev (bsc#1183286). - iommu/vt-d: Move intel_iommu info from struct intel_svm to struct intel_svm_dev (bsc#1183322). - iommu/vt-d: Use device numa domain if RHSA is missing (bsc#1184585). - iommu: Check dev->iommu in dev_iommu_priv_get() before dereferencing it (bsc#1183311). - iommu: Switch gather->end to the inclusive end (bsc#1183314). - ionic: linearize tso skb with too many frags (bsc#1167773). - ionic: linearize tso skb with too many frags (bsc#1167773). - iopoll: introduce read_poll_timeout macro (git-fixes). - ipc/mqueue, msg, sem: Avoid relying on a stack reference past its expiry (bsc#1185988). - ipmi/watchdog: Stop watchdog timer when the current action is 'none' (bsc#1184855). - ipw2x00: potential buffer overflow in libipw_wx_set_encodeext() (git-fixes). - irqchip/ls-extirq: Add LS1043A, LS1088A external interrupt support (bsc#1184264). - irqchip/ls-extirq: Add LS1043A, LS1088A external interrupt support (bsc#1185233). - irqchip/ls-extirq: add IRQCHIP_SKIP_SET_WAKE to the irqchip flags (bsc#1184264). - irqchip/ls-extirq: add IRQCHIP_SKIP_SET_WAKE to the irqchip flags (bsc#1185233). - irqchip: Add support for Layerscape external interrupt lines (bsc#1185233). - isofs: release buffer head before return (bsc#1182613). - iwlwifi: add support for Qu with AX201 device (git-fixes). - iwlwifi: pcie: make cfg vs. trans_cfg more robust (git-fixes). - ixgbe: fail to create xfrm offload of IPsec tunnel mode SA (git-fixes). - ixgbe: fix unbalanced device enable/disable in suspend/resume (jsc#SLE-13706). - jffs2: fix use after free in jffs2_sum_write_data() (bsc#1184740). - kABI: Fix kABI caused by fixes for bsc#1174426 (bsc#1174426). - kABI: cover up change in struct kvm_arch (bsc#1184969). - kABI: powerpc/pmem: Include pmem prototypes (bsc#1113295 git-fixes). - kABI: powerpc/pseries: Add shutdown() to vio_driver and vio_bus (bsc#1184209 ltc#190917). - kbuild: Fail if gold linker is detected (bcs#1181862). - kbuild: add dummy toolchains to enable all cc-option etc. in Kconfig (bcs#1181862). - kbuild: change *FLAGS_&lt;basetarget>.o to take the path relative to $(obj) (bcs#1181862). - kbuild: dummy-tools, fix inverted tests for gcc (bcs#1181862). - kbuild: dummy-tools, support MPROFILE_KERNEL checks for ppc (bsc#1181862). - kbuild: improve cc-option to clean up all temporary files (bsc#1178330). - kbuild: include scripts/Makefile.* only when relevant CONFIG is enabled (bcs#1181862). - kbuild: simplify GCC_PLUGINS enablement in dummy-tools/gcc (bcs#1181862). - kbuild: stop filtering out $(GCC_PLUGINS_CFLAGS) from cc-option base (bcs#1181862). - kbuild: use -S instead of -E for precise cc-option test in Kconfig (bsc#1178330). - kconfig: introduce m32-flag and m64-flag (bcs#1181862). - kernel-docs.spec.in: Build using an utf-8 locale. Sphinx cannot handle UTF-8 input in non-UTF-8 locale. - kernel/smp: make csdlock timeout depend on boot parameter (bsc#1180846). - kvm: svm: Update svm_xsaves_supported (jsc#SLE-13573). - kvm: x86: Enumerate support for CLZERO instruction (jsc#SLE-13573). - leds: lp5523: check return value of lp5xx_read and jump to cleanup code (git-fixes). - lib/syscall: fix syscall registers retrieval on 32-bit platforms (git-fixes). - libbpf: Add explicit padding to bpf_xdp_set_link_opts (bsc#1177028). - libbpf: Add explicit padding to btf_dump_emit_type_decl_opts (bsc#1177028). - libbpf: Clear map_info before each bpf_obj_get_info_by_fd (bsc#1155518). - libbpf: Fix BTF dump of pointer-to-array-of-struct (bsc#1155518). - libbpf: Fix INSTALL flag order (bsc#1155518). - libbpf: Fix bail out from 'ringbuf_process_ring()' on error (bsc#1177028). - libbpf: Fix error path in bpf_object__elf_init() (bsc#1177028). - libbpf: Fix signed overflow in ringbuf_process_ring (bsc#1177028). - libbpf: Initialize the bpf_seq_printf parameters array field by field (bsc#1177028). - libbpf: Only create rx and tx XDP rings when necessary (bsc#1155518). - libbpf: Use SOCK_CLOEXEC when opening the netlink socket (bsc#1155518). - libnvdimm/label: Return -ENXIO for no slot in __blk_label_update (bsc#1185269). - libnvdimm/namespace: Fix reaping of invalidated block-window-namespace labels (bsc#1185269). - libnvdimm/region: Fix nvdimm_has_flush() to handle ND_REGION_ASYNC (bsc#1184969 git-fixes). - libnvdimm/security: ensure sysfs poll thread woke up and fetch updated attr (git-fixes). - liquidio: Fix unintented sign extension of a left shift of a u16 (git-fixes). - locking/mutex: Fix non debug version of mutex_lock_io_nested() (git-fixes). - locking/qrwlock: Fix ordering in queued_write_lock_slowpath() (bsc#1185041). - lpfc: Decouple port_template and vport_template (bsc#185032). - mISDN: fix crash in fritzpci (git-fixes). - mac80211: Allow HE operation to be longer than expected (git-fixes). - mac80211: bail out if cipher schemes are invalid (git-fixes). - mac80211: choose first enabled channel for monitor (git-fixes). - mac80211: clear sta->fast_rx when STA removed from 4-addr VLAN (git-fixes). - mac80211: clear the beacon's CRC after channel switch (git-fixes). - mac80211: fix TXQ AC confusion (git-fixes). - mac80211: fix double free in ibss_leave (git-fixes). - mac80211: fix rate mask reset (git-fixes). - macvlan: macvlan_count_rx() needs to be aware of preemption (git-fixes). - md-cluster: fix use-after-free issue when removing rdev (bsc#1184082). - md/raid1: properly indicate failure when ending a failed write request (bsc#1185680). - md: do not flush workqueue unconditionally in md_open (bsc#1184081). - md: factor out a mddev_find_locked helper from mddev_find (bsc#1184081). - md: md_open returns -EBUSY when entering racing area (bsc#1184081). - md: split mddev_find (bsc#1184081). - mdio: fix mdio-thunder.c dependency & build error (git-fixes). - media: adv7604: fix possible use-after-free in adv76xx_remove() (git-fixes). - media: cros-ec-cec: do not bail on device_init_wakeup failure (git-fixes). - media: cx23885: add more quirks for reset DMA on some AMD IOMMU (git-fixes). - media: drivers: media: pci: sta2x11: fix Kconfig dependency on GPIOLIB (git-fixes). - media: dvb-usb: fix memory leak in dvb_usb_adapter_init (git-fixes). - media: dvbdev: Fix memory leak in dvb_media_device_free() (git-fixes). - media: em28xx: fix memory leak (git-fixes). - media: gspca/sq905.c: fix uninitialized variable (git-fixes). - media: i2c: adv7511-v4l2: fix possible use-after-free in adv7511_remove() (git-fixes). - media: i2c: adv7842: fix possible use-after-free in adv7842_remove() (git-fixes). - media: i2c: tda1997: Fix possible use-after-free in tda1997x_remove() (git-fixes). - media: imx: capture: Return -EPIPE from __capture_legacy_try_fmt() (git-fixes). - media: ite-cir: check for receive overflow (git-fixes). - media: m88rs6000t: avoid potential out-of-bounds reads on arrays (git-fixes). - media: mantis: remove orphan mantis_core.c (git-fixes). - media: mceusb: sanity check for prescaler value (git-fixes). - media: media/saa7164: fix saa7164_encoder_register() memory leak bugs (git-fixes). - media: omap4iss: return error code when omap4iss_get() failed (git-fixes). - media: platform: sti: Fix runtime PM imbalance in regs_show (git-fixes). - media: platform: sunxi: sun6i-csi: fix error return code of sun6i_video_start_streaming() (git-fixes). - media: rc: compile rc-cec.c into rc-core (git-fixes). - media: saa7134: use sg_dma_len when building pgtable (git-fixes). - media: saa7146: use sg_dma_len when building pgtable (git-fixes). - media: staging/intel-ipu3: Fix memory leak in imu_fmt (git-fixes). - media: staging/intel-ipu3: Fix race condition during set_fmt (git-fixes). - media: staging/intel-ipu3: Fix set_fmt error handling (git-fixes). - media: tc358743: fix possible use-after-free in tc358743_remove() (git-fixes). - media: usbtv: Fix deadlock on suspend (git-fixes). - media: uvcvideo: Allow entities with no pads (git-fixes). - media: v4l2-ctrls.c: fix race condition in hdl->requests list (git-fixes). - media: v4l2-ctrls.c: fix shift-out-of-bounds in std_validate (git-fixes). - media: v4l: vsp1: Fix bru null pointer access (git-fixes). - media: v4l: vsp1: Fix uif null pointer access (git-fixes). - media: vicodec: add missing v4l2_ctrl_request_hdl_put() (git-fixes). - memory: gpmc: fix out of bounds read and dereference on gpmc_cs[] (git-fixes). - memory: mtk-smi: Fix PM usage counter unbalance in mtk_smi ops (bsc#1183325). - memory: pl353: fix mask of ECC page_size config register (git-fixes). - mfd: arizona: Fix rumtime PM imbalance on error (git-fixes). - mfd: intel_pmt: Fix nuisance messages and handling of disabled capabilities (git-fixes). - mfd: lpc_sch: Partially revert "Add support for Intel Quark X1000" (git-fixes). - mfd: stm32-timers: Avoid clearing auto reload register (git-fixes). - misc/pvpanic: Export module FDT device table (git-fixes). - misc: eeprom_93xx46: Add quirk to support Microchip 93LC46B eeprom (git-fixes). - misc: fastrpc: restrict user apps from sending kernel RPC messages (git-fixes). - misc: lis3lv02d: Fix false-positive WARN on various HP models (git-fixes). - misc: vmw_vmci: explicitly initialize vmci_datagram payload (git-fixes). - misc: vmw_vmci: explicitly initialize vmci_notify_bm_set_msg struct (git-fixes). - mlxsw: spectrum_mr: Update egress RIF list before route's action (git-fixes). - mm, numa: fix bad pmd by atomically check for pmd_trans_huge when marking page tables prot_numa (bsc#1168777). - mm/rmap: fix potential pte_unmap on an not mapped pte (git-fixes). - mm: hugetlbfs: fix cannot migrate the fallocated HugeTLB page (git-fixes). - mm: memcontrol: fix cpuhotplug statistics flushing (bsc#1185606). - mmc: block: Update ext_csd.cache_ctrl if it was written (git-fixes). - mmc: core: Correct descriptions in mmc_of_parse() (git-fixes). - mmc: core: Do a power cycle when the CMD11 fails (git-fixes). - mmc: core: Fix partition switch time for eMMC (git-fixes). - mmc: core: Set read only for SD cards with permanent write protect bit (git-fixes). - mmc: cqhci: Add cqhci_deactivate() (git-fixes). - mmc: cqhci: Fix random crash when remove mmc module/card (git-fixes). - mmc: mmc_spi: Drop unused NO_IRQ definition (git-fixes). - mmc: mxs-mmc: Fix a resource leak in an error handling path in 'mxs_mmc_probe()' (git-fixes). - mmc: sdhci-iproc: Cap min clock frequency on BCM2711 (bsc#1186009) - mmc: sdhci-iproc: Set SDHCI_QUIRK_CAP_CLOCK_BASE_BROKEN on BCM2711 (bsc#1186009) - mmc: sdhci-of-arasan: Add missed checks for devm_clk_register() (git-fixes). - mmc: sdhci-of-dwcmshc: fix rpmb access (git-fixes). - mmc: sdhci-of-dwcmshc: implement specific set_uhs_signaling (git-fixes). - mmc: sdhci-of-dwcmshc: set SDHCI_QUIRK2_PRESET_VALUE_BROKEN (git-fixes). - mmc: sdhci-of-esdhc: make sure delay chain locked for HS400 (git-fixes). - mmc: sdhci-of-esdhc: set timeout to max before tuning (git-fixes). - mmc: sdhci-pci-gli: increase 1.8V regulator wait (git-fixes). - mmc: sdhci-pci: Add PCI IDs for Intel LKF (git-fixes). - mmc: sdhci-pci: Fix SDHCI_RESET_ALL for CQHCI for Intel GLK-based controllers (git-fixes). - mmc: sdhci-pci: Fix initialization of some SD cards for Intel BYT-based controllers (git-fixes). - mmc: sdhci: Check for reset prior to DMA address unmap (git-fixes). - mmc: sdhci: Use Auto CMD Auto Select only when v4_mode is true (git-fixes). - mmc: uniphier-sd: Fix a resource leak in the remove function (git-fixes). - mmc: uniphier-sd: Fix an error handling path in uniphier_sd_probe() (git-fixes). - mount: fix mounting of detached mounts onto targets that reside on shared mounts (git-fixes). - mt7601u: fix always true expression (git-fixes). - mt76: dma: do not report truncated frames to mac80211 (git-fixes). - mt76: mt7615: fix entering driver-own state on mt7663 (git-fixes). - mt76: mt7615: support loading EEPROM for MT7613BE (git-fixes). - mt76: mt76x0: disable GTK offloading (git-fixes). - mt76: mt7915: fix aggr len debugfs node (git-fixes). - mt76: mt7915: fix txpower init for TSSI off chips (git-fixes). - mtd: Handle possible -EPROBE_DEFER from parse_mtd_partitions() (git-fixes). - mtd: rawnand: atmel: Update ecc_stats.corrected counter (git-fixes). - mtd: rawnand: brcmnand: fix OOB R/W with Hamming ECC (git-fixes). - mtd: rawnand: fsmc: Fix error code in fsmc_nand_probe() (git-fixes). - mtd: rawnand: gpmi: Fix a double free in gpmi_nand_init (git-fixes). - mtd: rawnand: qcom: Return actual error code instead of -ENODEV (git-fixes). - mtd: require write permissions for locking and badblock ioctls (git-fixes). - mtd: spi-nor: Rename "n25q512a" to "mt25qu512a (n25q512a)" (bsc#1167260). - mtd: spi-nor: Split mt25qu512a (n25q512a) entry into two (bsc#1167260). - mtd: spinand: core: add missing MODULE_DEVICE_TABLE() (git-fixes). - mwifiex: pcie: skip cancel_work_sync() on reset failure path (git-fixes). - nbd: fix a block_device refcount leak in nbd_release (git-fixes). - net, xdp: Update pkt_type if generic XDP changes unicast MAC (git-fixes). - net/mlx4_core: Add missed mlx4_free_cmd_mailbox() (git-fixes). - net/mlx4_en: update moderation when config reset (git-fixes). - net/mlx5: Add back multicast stats for uplink representor (jsc#SLE-15172). - net/mlx5: Delete extra dump stack that gives nothing (git-fixes). - net/mlx5: Do not request more than supported EQs (git-fixes). - net/mlx5: Fix PPLM register mapping (jsc#SLE-8464). - net/mlx5: Fix bit-wise and with zero (jsc#SLE-15172). - net/mlx5: Fix health error state handling (bsc#1186467). - net/mlx5e: Allow to match on MPLS parameters only for MPLS over UDP (jsc#SLE-15172). - net/mlx5e: Do not match on Geneve options in case option masks are all zero (git-fixes). - net/mlx5e: E-switch, Fix rate calculation division (jsc#SLE-8464). - net/mlx5e: Fix error path for ethtool set-priv-flag (git-fixes). - net/mlx5e: Fix ethtool indication of connector type (git-fixes). - net/mlx5e: Fix setting of RS FEC mode (jsc#SLE-15172). - net/mlx5e: Offload tuple rewrite for non-CT flows (jsc#SLE-15172). - net/mlx5e: RX, Mind the MPWQE gaps when calculating offsets (jsc#SLE-15172). - net/mlx5e: fix ingress_ifindex check in mlx5e_flower_parse_meta (jsc#SLE-8464). - net/qlcnic: Fix a use after free in qlcnic_83xx_get_minidump_template (git-fixes). - net/sched: act_ct: fix wild memory access when clearing fragments (bsc#1176447). - net: arc_emac: Fix memleak in arc_mdio_probe (git-fixes). - net: atheros: switch from 'pci_' to 'dma_' API (git-fixes). - net: atlantic: fix out of range usage of active_vlans array (git-fixes). - net: atlantic: fix potential error handling (git-fixes). - net: atlantic: fix use after free kasan warn (git-fixes). - net: b44: fix error return code in b44_init_one() (git-fixes). - net: bonding: fix error return code of bond_neigh_init() (bsc#1154353). - net: cdc-phonet: fix data-interface release on probe failure (git-fixes). - net: cls_api: Fix uninitialised struct field bo->unlocked_driver_cb (bsc#1176447). - net: dsa: felix: implement port flushing on .phylink_mac_link_down (git-fixes). - net: dsa: rtl8366: Fix VLAN semantics (git-fixes). - net: dsa: rtl8366: Fix VLAN set-up (git-fixes). - net: dsa: rtl8366rb: Support all 4096 VLANs (git-fixes). - net: enetc: allow hardware timestamping on TX queues with tc-etf enabled (git-fixes). - net: enetc: do not disable VLAN filtering in IFF_PROMISC mode (git-fixes). - net: enetc: fix link error again (git-fixes). - net: enetc: remove bogus write to SIRXIDR from enetc_setup_rxbdr (git-fixes). - net: enetc: take the MDIO lock only once per NAPI poll cycle (git-fixes). - net: enic: Cure the enic api locking trainwreck (git-fixes). - net: ethernet: aquantia: Fix wrong return value (git-fixes). - net: ethernet: cavium: octeon_mgmt: use phy_start and phy_stop (git-fixes). - net: ethernet: ibm: ibmvnic: Fix some kernel-doc misdemeanours (bsc#1183871 ltc#192139). - net: ethernet: ti: cpsw: fix clean up of vlan mc entries for host port (git-fixes). - net: ethernet: ti: cpsw: fix error return code in cpsw_probe() (git-fixes). - net: fec: Fix PHY init after phy_reset_after_clk_enable() (git-fixes). - net: fec: Fix phy_device lookup for phy_reset_after_clk_enable() (git-fixes). - net: fec: Fix reference count leak in fec series ops (git-fixes). - net: gemini: Fix another missing clk_disable_unprepare() in probe (git-fixes). - net: gemini: Fix missing free_netdev() in error path of gemini_ethernet_port_probe() (git-fixes). - net: geneve: check skb is large enough for IPv4/IPv6 header (git-fixes). - net: geneve: modify IP header check in geneve6_xmit_skb and geneve_xmit_skb (git-fixes). - net: gianfar: Add of_node_put() before goto statement (git-fixes). - net: hdlc: In hdlc_rcv, check to make sure dev is an HDLC device (git-fixes). - net: hdlc_raw_eth: Clear the IFF_TX_SKB_SHARING flag after calling ether_setup (git-fixes). - net: hns3: Fix for geneve tx checksum bug (git-fixes). - net: hns3: Remove the left over redundant check & assignment (bsc#1154353). - net: hns3: Remove un-necessary 'else-if' in the hclge_reset_event() (git-fixes). - net: hns3: add check for HNS3_NIC_STATE_INITED in hns3_reset_notify_up_enet() (git-fixes). - net: hns3: clear VF down state bit before request link status (git-fixes). - net: hns3: clear unnecessary reset request in hclge_reset_rebuild (git-fixes). - net: hns3: disable phy loopback setting in hclge_mac_start_phy (git-fixes). - net: hns3: fix bug when calculating the TCAM table info (git-fixes). - net: hns3: fix for vxlan gpe tx checksum bug (git-fixes). - net: hns3: fix incorrect configuration for igu_egu_hw_err (git-fixes). - net: hns3: fix query vlan mask value error for flow director (git-fixes). - net: hns3: initialize the message content in hclge_get_link_mode() (git-fixes). - net: hns3: use netif_tx_disable to stop the transmit queue (git-fixes). - net: korina: cast KSEG0 address to pointer in kfree (git-fixes). - net: korina: fix kfree of rx/tx descriptor array (git-fixes). - net: lantiq: Wait for the GPHY firmware to be ready (git-fixes). - net: ll_temac: Add more error handling of dma_map_single() calls (git-fixes). - net: ll_temac: Fix RX buffer descriptor handling on GFP_ATOMIC pressure (git-fixes). - net: ll_temac: Fix race condition causing TX hang (git-fixes). - net: ll_temac: Handle DMA halt condition caused by buffer underrun (git-fixes). - net: mvneta: fix double free of txq->buf (git-fixes). - net: mvneta: make tx buffer array agnostic (git-fixes). - net: pasemi: fix error return code in pasemi_mac_open() (git-fixes). - net: phy: broadcom: Only advertise EEE for supported modes (git-fixes). - net: phy: intel-xway: enable integrated led functions (git-fixes). - net: phy: marvell: fix m88e1011_set_downshift (git-fixes). - net: phy: marvell: fix m88e1111_set_downshift (git-fixes). - net: qcom/emac: add missed clk_disable_unprepare in error path of emac_clks_phase1_init (git-fixes). - net: qualcomm: rmnet: Fix incorrect receive packet handling during cleanup (git-fixes). - net: sched: disable TCQ_F_NOLOCK for pfifo_fast (bsc#1183405) - net: smc911x: Adjust indentation in smc911x_phy_configure (git-fixes). - net: spider_net: Fix the size used in a 'dma_free_coherent()' call (git-fixes). - net: stmmac: Fix incorrect location to set real_num_rx|tx_queues (git-fixes). - net: stmmac: Use rtnl_lock/unlock on netif_set_real_num_rx_queues() call (git-fixes). - net: stmmac: fix missing IFF_MULTICAST check in dwmac4_set_filter (git-fixes). - net: stmmac: removed enabling eee in EEE set callback (git-fixes). - net: stmmac: use netif_tx_start|stop_all_queues() function (git-fixes). - net: stmmac: xgmac: fix missing IFF_MULTICAST checki in dwxgmac2_set_filter (git-fixes). - net: thunderx: Fix unintentional sign extension issue (git-fixes). - net: tulip: Adjust indentation in {dmfe, uli526x}_init_module (git-fixes). - net: usb: ax88179_178a: fix missing stop entry in driver_info (git-fixes). - net: usb: qmi_wwan: allow qmimux add/del with master up (git-fixes). - net: usb: qmi_wwan: support ZTE P685M modem (git-fixes). - net: wan/lmc: unregister device when no matching device is found (git-fixes). - net:nfc:digital: Fix a double free in digital_tg_recv_dep_req (git-fixes). - netdevice: Add missing IFF_PHONY_HEADROOM self-definition (git-fixes). - netdevsim: init u64 stats for 32bit hardware (git-fixes). - netfilter: conntrack: Make global sysctls readonly in non-init netns (bsc#1176447). - netfilter: conntrack: add new sysctl to disable RST check (bsc#1183947 bsc#1185950). - netfilter: conntrack: avoid misleading 'invalid' in log message (bsc#1183947 bsc#1185950). - netfilter: conntrack: improve RST handling when tuple is re-used (bsc#1183947 bsc#1185950). - netfilter: flowtable: Make sure GC works periodically in idle system (bsc#1176447). - netfilter: flowtable: fix NAT IPv6 offload mangling (bsc#1176447). - netfilter: nftables: allow to update flowtable flags (bsc#1176447). - netfilter: nftables: report EOPNOTSUPP on unsupported flowtable flags (bsc#1176447). - netsec: restore phy power state after controller reset (bsc#1183757). - nfc: pn533: prevent potential memory corruption (git-fixes). - nfp: devlink: initialize the devlink port attribute "lanes" (bsc#1176447). - nfp: flower: add ipv6 bit to pre_tunnel control message (bsc#1176447). - nfp: flower: fix pre_tun mask id allocation (bsc#1154353). - nfp: flower: ignore duplicate merge hints from FW (git-fixes). - node: fix device cleanups in error handling code (git-fixes). - null_blk: fix passing of REQ_FUA flag in null_handle_rq (git-fixes). - nvme-core: add cancel tagset helpers (bsc#1183976). - nvme-fabrics: decode host pathing error for connect (bsc#1179827). - nvme-fabrics: fix kato initialization (bsc#1182591). - nvme-fabrics: only reserve a single tag (bsc#1182077). - nvme-fabrics: reject I/O to offline device (bsc#1181161). - nvme-fc: check sgl supported by target (bsc#1179827). - nvme-fc: clear q_live at beginning of association teardown (bsc#1186479). - nvme-fc: fix racing controller reset and create association (bsc#1183048). - nvme-fc: return NVME_SC_HOST_ABORTED_CMD when a command has been aborted (bsc#1180197). - nvme-fc: return NVME_SC_HOST_ABORTED_CMD when a command has been aborted (bsc#1184259). - nvme-fc: set NVME_REQ_CANCELLED in nvme_fc_terminate_exchange() (bsc#1180197). - nvme-fc: set NVME_REQ_CANCELLED in nvme_fc_terminate_exchange() (bsc#1184259). - nvme-fc: short-circuit reconnect retries (bsc#1179827). - nvme-hwmon: Return error code when registration fails (bsc#1177326). - nvme-hwmon: Return error code when registration fails (bsc#1177326). - nvme-multipath: fix double initialization of ANA state (bsc#1178612, bsc#1184259). - nvme-multipath: reset bdev to ns head when failover (bsc#178378 bsc#1182999). - nvme-tcp: Fix possible race of io_work and direct send (git-fixes). - nvme-tcp: Fix warning with CONFIG_DEBUG_PREEMPT (git-fixes). - nvme-tcp: add clean action for failed reconnection (bsc#1183976). - nvme-tcp: fix kconfig dependency warning when !CRYPTO (git-fixes). - nvme-tcp: fix misuse of __smp_processor_id with preemption (git-fixes). - nvme-tcp: fix possible hang waiting for icresp response (bsc#1179519). - nvme-tcp: fix possible hang when failing to set io queues (bsc#1181161). - nvme-tcp: use cancel tagset helper for tear down (bsc#1183976). - nvme: Fix NULL dereference for pci nvme controllers (bsc#1182378). - nvme: add 'kato' sysfs attribute (bsc#1179825). - nvme: add NVME_REQ_CANCELLED flag in nvme_cancel_request() (bsc#1180197). - nvme: add NVME_REQ_CANCELLED flag in nvme_cancel_request() (bsc#1184259). - nvme: allocate the keep alive request using BLK_MQ_REQ_NOWAIT (bsc#1182077). - nvme: call nvme_identify_ns as the first thing in nvme_alloc_ns_block (bsc#1180197). - nvme: clean up the check for too large logic block sizes (bsc#1180197). - nvme: define constants for identification values (git-fixes). - nvme: do not intialize hwmon for discovery controllers (bsc#1184259). - nvme: do not intialize hwmon for discovery controllers (git-fixes). - nvme: explicitly update mpath disk capacity on revalidation (git-fixes). - nvme: expose reconnect_delay and ctrl_loss_tmo via sysfs (bsc#1182378). - nvme: factor out a nvme_configure_metadata helper (bsc#1180197). - nvme: fix controller instance leak (git-fixes). - nvme: fix initialization of the zone bitmaps (bsc#1180197). - nvme: fix possible deadlock when I/O is blocked (git-fixes). - nvme: freeze the queue over ->lba_shift updates (bsc#1180197). - nvme: lift the check for an unallocated namespace into nvme_identify_ns (bsc#1180197). - nvme: merge nvme_keep_alive into nvme_keep_alive_work (bsc#1182077). - nvme: move nvme_validate_ns (bsc#1180197). - nvme: opencode revalidate_disk in nvme_validate_ns (bsc#1180197). - nvme: query namespace identifiers before adding the namespace (bsc#1180197). - nvme: refactor nvme_validate_ns (bsc#1180197). - nvme: remove nvme_identify_ns_list (bsc#1180197). - nvme: remove nvme_update_formats (bsc#1180197). - nvme: remove superfluous else in nvme_ctrl_loss_tmo_store (bsc#1182378). - nvme: remove the 0 lba_shift check in nvme_update_ns_info (bsc#1180197). - nvme: remove the disk argument to nvme_update_zone_info (bsc#1180197). - nvme: rename __nvme_revalidate_disk (bsc#1180197). - nvme: rename _nvme_revalidate_disk (bsc#1180197). - nvme: rename nvme_validate_ns to nvme_validate_or_alloc_ns (bsc#1180197). - nvme: retrigger ANA log update if group descriptor isn't found (git-fixes) - nvme: return an error if nvme_set_queue_count() fails (bsc#1180197). - nvme: revalidate zone bitmaps in nvme_update_ns_info (bsc#1180197). - nvme: sanitize KATO setting (bsc#1179825). - nvme: set the queue limits in nvme_update_ns_info (bsc#1180197). - nvme: simplify error logic in nvme_validate_ns() (bsc#1180197). - nvme: simplify error logic in nvme_validate_ns() (bsc#1184259). - nvme: update the known admin effects (bsc#1180197). - nvmet-rdma: Fix list_del corruption on queue establishment failure (bsc#1183501). - nvmet: fix a memory leak (git-fixes). - nvmet: seset ns->file when open fails (bsc#1183873). - nvmet: use new ana_log_size instead the old one (bsc#1184259). - ocfs2: fix a use after free on error (bsc#1184738). - ovl: fix dentry leak in ovl_get_redirect (bsc#1184176). - ovl: fix out of date comment and unreachable code (bsc#1184176). - ovl: fix regression with re-formatted lower squashfs (bsc#1184176). - ovl: fix unneeded call to ovl_change_flags() (bsc#1184176). - ovl: fix value of i_ino for lower hardlink corner case (bsc#1184176). - ovl: initialize error in ovl_copy_xattr (bsc#1184176). - ovl: relax WARN_ON() when decoding lower directory file handle (bsc#1184176). - pata_arasan_cf: fix IRQ check (git-fixes). - pata_ipx4xx_cf: fix IRQ check (git-fixes). - perf/amd/uncore: Fix sysfs type mismatch (bsc#1178134). - phy: marvell: ARMADA375_USBCLUSTER_PHY should not default to y, unconditionally (git-fixes). - phy: phy-twl4030-usb: Fix possible use-after-free in twl4030_usb_remove() (git-fixes). - partitions/ibm: fix non-DASD devices (bsc#1185857 LTC#192526). - pinctrl: Ingenic: Add missing pins to the JZ4770 MAC MII group (git-fixes). - pinctrl: core: Fix kernel doc string for pin_get_name() (git-fixes). - pinctrl: ingenic: Improve unreachable code generation (git-fixes). - pinctrl: lewisburg: Update number of pins in community (git-fixes). - pinctrl: qcom: spmi-gpio: fix warning about irq chip reusage (git-fixes). - pinctrl: rockchip: fix restore error in resume (git-fixes). - pinctrl: samsung: use 'int' for register masks in Exynos (git-fixes). - platform/mellanox: mlxbf-tmfifo: Fix a memory barrier issue (git-fixes). - platform/x86: acer-wmi: Add ACER_CAP_KBD_DOCK quirk for the Aspire Switch 10E SW3-016 (git-fixes). - platform/x86: acer-wmi: Add ACER_CAP_SET_FUNCTION_MODE capability flag (git-fixes). - platform/x86: acer-wmi: Add new force_caps module parameter (git-fixes). - platform/x86: acer-wmi: Add support for SW_TABLET_MODE on Switch devices (git-fixes). - platform/x86: acer-wmi: Cleanup ACER_CAP_FOO defines (git-fixes). - platform/x86: acer-wmi: Cleanup accelerometer device handling (git-fixes). - platform/x86: intel-hid: Support Lenovo ThinkPad X1 Tablet Gen 2 (git-fixes). - platform/x86: intel-vbtn: Stop reporting SW_DOCK events (git-fixes). - platform/x86: intel_int0002_vgpio: Only call enable_irq_wake() when using s2idle (git-fixes). - platform/x86: intel_pmc_core: Do not use global pmcdev in quirks (git-fixes). - platform/x86: intel_pmt_crashlog: Fix incorrect macros (git-fixes). - platform/x86: pmc_atom: Match all Beckhoff Automation baytrail boards with critclk_systems DMI table (git-fixes). - platform/x86: thinkpad_acpi: Allow the FnLock LED to change state (git-fixes). - platform/x86: thinkpad_acpi: Correct thermal sensor allocation (git-fixes). - posix-timers: Preserve return value in clock_adjtime32() (git-fixes) - post.sh: Return an error when module update fails (bsc#1047233 bsc#1184388). - power: supply: Use IRQF_ONESHOT (git-fixes). - power: supply: generic-adc-battery: fix possible use-after-free in gab_remove() (git-fixes). - power: supply: s3c_adc_battery: fix possible use-after-free in s3c_adc_bat_remove() (git-fixes). - powerepc/book3s64/hash: Align start/end address correctly with bolt mapping (bsc#1184957). - powerpc/64s/exception: Clean up a missed SRR specifier (jsc#SLE-9246 git-fixes). - powerpc/64s: Fix crashes when toggling entry flush barrier (bsc#1177666 git-fixes). - powerpc/64s: Fix crashes when toggling stf barrier (bsc#1087082 git-fixes). - powerpc/64s: Fix instruction encoding for lis in ppc_function_entry() (bsc#1065729). - powerpc/64s: Fix pte update for kernel memory on radix (bsc#1055117 git-fixes). - powerpc/asm-offsets: GPR14 is not needed either (bsc#1065729). - powerpc/book3s64/radix: Remove WARN_ON in destroy_context() (bsc#1183692 ltc#191963). - powerpc/eeh: Fix EEH handling for hugepages in ioremap space (bsc#1156395). - powerpc/fadump: Mark fadump_calculate_reserve_size as __init (bsc#1065729). - powerpc/kexec_file: Use current CPU info while setting up FDT (bsc#1184615 ltc#189835). - powerpc/kuap: Restore AMR after replaying soft interrupts (bsc#1156395). - powerpc/mm: Add cond_resched() while removing hpte mappings (bsc#1183289 ltc#191637). - powerpc/papr_scm: Fix build error due to wrong printf specifier (bsc#1184969). - powerpc/papr_scm: Implement support for H_SCM_FLUSH hcall (bsc#1184969). - powerpc/perf: Fix PMU constraint check for EBB events (bsc#1065729). - powerpc/perf: Fix sampled instruction type for larx/stcx (jsc#SLE-13513). - powerpc/perf: Fix the threshold event selection for memory events in power10 (jsc#SLE-13513). - powerpc/pmem: Include pmem prototypes (bsc#1113295 git-fixes). - powerpc/prom: Mark identical_pvr_fixup as __init (bsc#1065729). - powerpc/pseries/mobility: handle premature return from H_JOIN (bsc#1181674 ltc#189159 git-fixes bsc#1183662 ltc#191922). - powerpc/pseries/mobility: use struct for shared state (bsc#1181674 ltc#189159 git-fixes bsc#1183662 ltc#191922). - powerpc/pseries/ras: Remove unused variable 'status' (bsc#1065729). - powerpc/pseries: Add shutdown() to vio_driver and vio_bus (bsc#1184209 ltc#190917). - powerpc/pseries: Do not trace hcall tracing wrapper (bsc#1185110 ltc#192091). - powerpc/pseries: Fix hcall tracing recursion in pv queued spinlocks (bsc#1185110 ltc#192091). - powerpc/pseries: use notrace hcall variant for H_CEDE idle (bsc#1185110 ltc#192091). - powerpc/pseries: warn if recursing into the hcall tracing code (bsc#1185110 ltc#192091). - powerpc/smp: Reintroduce cpu_core_mask (jsc#SLE-13615 bsc#1180100 ltc#190257 git-fixes). - powerpc/sstep: Check instruction validity against ISA version before emulation (bsc#1156395). - powerpc/sstep: Check instruction validity against ISA version before emulation (bsc#1156395). - powerpc/sstep: Fix darn emulation (bsc#1156395). - powerpc/sstep: Fix incorrect return from analyze_instr() (bsc#1156395). - powerpc/sstep: Fix load-store and update emulation (bsc#1156395). - powerpc/time: Enable sched clock for irqtime (bsc#1156395). - powerpc/uaccess: Avoid might_fault() when user access is enabled (bsc#1156395). - powerpc/uaccess: Perform barrier_nospec() in KUAP allowance helpers (bsc#1156395). - powerpc/uaccess: Simplify unsafe_put_user() implementation (bsc#1156395). - powerpc/xive: Drop check on irq_data in xive_core_debug_show() (bsc#1177437 ltc#188522 jsc#SLE-13294 git-fixes). - powerpc/xmon: Fix build failure for 8xx (jsc#SLE-12936 git-fixes). - powerpc: Fix inverted SET_FULL_REGS bitop (jsc#SLE-9246 git-fixes). - powerpc: Fix missing declaration ofable_kernel_vsx() (git-fixes). - proc: fix lookup in /proc/net subdirectories after setns(2) (git-fixes). - qlcnic: fix error return code in qlcnic_83xx_restart_hw() (git-fixes). - qtnfmac: Fix possible buffer overflow in qtnf_event_handle_external_auth (git-fixes). - qxl: Fix uninitialised struct field head.surface_id (git-fixes). - r8169: do not advertise pause in jumbo mode (git-fixes). - r8169: fix DMA being used after buffer free if WoL is enabled (git-fixes). - r8169: tweak max read request size for newer chips also in jumbo mtu mode (git-fixes). - regmap: set debugfs_name to NULL after it is freed (git-fixes). - regulator: Avoid a double 'of_node_get' in 'regulator_of_get_init_node()' (git-fixes). - regulator: bd9571mwv: Fix AVS and DVFS voltage range (git-fixes). - reintroduce cqhci_suspend for kABI (git-fixes). - reiserfs: update reiserfs_xattrs_initialized() condition (bsc#1184737). - rsi: Fix TX EAPOL packet handling against iwlwifi AP (git-fixes). - rsi: Move card interrupt handling to RX thread (git-fixes). - rsi: Use resume_noirq for SDIO (git-fixes). - rsxx: remove extraneous 'const' qualifier (git-fixes). - rtc: ds1307: Fix wday settings for rx8130 (git-fixes). - rtc: fsl-ftm-alarm: add MODULE_TABLE() (bsc#1185454). - rtc: fsl-ftm-alarm: avoid struct rtc_time conversions (bsc#1185454). - rtc: fsl-ftm-alarm: enable acpi support (bsc#1185454). - rtc: fsl-ftm-alarm: fix freeze(s2idle) failed to wake (bsc#1185454). - rtc: fsl-ftm-alarm: report alarm to core (bsc#1185454). - rtc: fsl-ftm-alarm: switch to ktime_get_real_seconds (bsc#1185454). - rtc: fsl-ftm-alarm: switch to rtc_time64_to_tm/rtc_tm_to_time64 (bsc#1185454). - rtc: fsl-ftm-alarm: update acpi device id (bsc#1185454). - rtc: pcf2127: add alarm support (bsc#1185233). - rtc: pcf2127: add pca2129 device id (bsc#1185233). - rtc: pcf2127: add tamper detection support (bsc#1185233). - rtc: pcf2127: add watchdog feature support (bsc#1185233). - rtc: pcf2127: bugfix: watchdog build dependency (bsc#1185233). - rtc: pcf2127: cleanup register and bit defines (bsc#1185233). - rtc: pcf2127: convert to devm_rtc_allocate_device (bsc#1185233). - rtc: pcf2127: fix a bug when not specify interrupts property (bsc#1185233). - rtc: pcf2127: fix alarm handling (bsc#1185233). - rtc: pcf2127: fix pcf2127_nvmem_read/write() returns (bsc#1185233). - rtc: pcf2127: handle boot-enabled watchdog feature (bsc#1185233). - rtc: pcf2127: handle timestamp interrupts (bsc#1185495). - rtc: pcf2127: let the core handle rtc range (bsc#1185233). - rtc: pcf2127: move watchdog initialisation to a separate function (bsc#1185233). - rtc: pcf2127: only use watchdog when explicitly available (bsc#1185233). - rtc: pcf2127: properly set flag WD_CD for rtc chips(pcf2129, pca2129) (bsc#1185233). - rtc: pcf2127: remove unnecessary #ifdef (bsc#1185233). - rtc: pcf2127: set regmap max_register (bsc#1185233). - rtc: pcf2127: watchdog: handle nowayout feature (bsc#1185233). - rtlwifi: 8821ae: upgrade PHY and RF parameters (git-fixes). - rtw88: Fix an error code in rtw_debugfs_set_rsvd_page() (git-fixes). - rtw88: Fix array overrun in rtw_get_tx_power_params() (git-fixes). - rtw88: coex: 8821c: correct antenna switch function (git-fixes). - s390/cio: return -EFAULT if copy_to_user() fails (git-fixes). - s390/cio: return -EFAULT if copy_to_user() fails (git-fixes). - s390/crypto: return -EFAULT if copy_to_user() fails (git-fixes). - s390/dasd: fix hanging DASD driver unbind (bsc#1183932 LTC#192153). - s390/dasd: fix hanging IO request during DASD driver unbind (git-fixes). - s390/entry: save the caller of psw_idle (bsc#1185677). - s390/ipl: support NVMe IPL kernel parameters (bsc#1185980 LTC#192679). - s390/kdump: fix out-of-memory with PCI (bsc#1182257 LTC#191375). - s390/pci: fix leak of PCI device structure (git-fixes). - s390/qeth: fix memory leak after failed TX Buffer allocation (git-fixes). - s390/qeth: fix notification for pending buffers during teardown (git-fixes). - s390/qeth: improve completion of pending TX buffers (git-fixes). - s390/qeth: schedule TX NAPI on QAOB completion (git-fixes). - s390/vtime: fix increased steal time accounting (bsc#1183859). - s390/zcrypt: return EIO when msg retry limit reached (git-fixes). - samples, bpf: Add missing munmap in xdpsock (bsc#1155518). - samples/bpf: Fix possible hang in xdpsock with multiple threads (bsc#1155518). - sata_mv: add IRQ checks (git-fixes). - sched/eas: Do not update misfit status if the task is pinned (git-fixes) - sched/fair: Avoid stale CPU util_est value for schedutil in (git-fixes) - sched/fair: Fix shift-out-of-bounds in load_balance() (git fixes (sched)). - sched/fair: Fix unfairness caused by missing load decay (git-fixes) - scripts/git_sort/git_sort.py: add bpf git repo - scsi: aacraid: Improve compat_ioctl handlers (bsc#1186352). - scsi: block: Fix a race in the runtime power management code (git-fixes). - scsi: core: Only return started requests from scsi_host_find_tag() (bsc#1179851). - scsi: core: Run queue in case of I/O resource contention failure (bsc#1186416). - scsi: core: add scsi_host_busy_iter() (bsc#1179851). - scsi: fnic: Kill 'exclude_id' argument to fnic_cleanup_io() (bsc#1179851). - scsi: fnic: Remove bogus ratelimit messages (bsc#1183249). - scsi: libfc: Avoid invoking response handler twice if ep is already completed (bsc#1186573). - scsi: lpfc: Add a option to enable interlocked ABTS before job completion (bsc#1186451). - scsi: lpfc: Add ndlp kref accounting for resume RPI path (bsc#1186451). - scsi: lpfc: Change wording of invalid pci reset log message (bsc#1182574). - scsi: lpfc: Correct function header comments related to ndlp reference counting (bsc#1182574). - scsi: lpfc: Eliminate use of LPFC_DRIVER_NAME in lpfc_attr.c (bsc#1185472). - scsi: lpfc: Fix "Unexpected timeout" error in direct attach topology (bsc#1186451). - scsi: lpfc: Fix ADISC handling that never frees nodes (bsc#1182574). - scsi: lpfc: Fix DMA virtual address ptr assignment in bsg (bsc#1185365). - scsi: lpfc: Fix FLOGI failure due to accessing a freed node (bsc#1182574). - scsi: lpfc: Fix NMI crash during rmmod due to circular hbalock dependency (bsc#1185472). - scsi: lpfc: Fix Node recovery when driver is handling simultaneous PLOGIs (bsc#1186451). - scsi: lpfc: Fix PLOGI ACC to be transmit after REG_LOGIN (bsc#1182574). - scsi: lpfc: Fix a bunch of kernel-doc issues (bsc#1185472). - scsi: lpfc: Fix a bunch of kernel-doc misdemeanours (bsc#1185472). - scsi: lpfc: Fix a bunch of misnamed functions (bsc#1185472). - scsi: lpfc: Fix a few incorrectly named functions (bsc#1185472). - scsi: lpfc: Fix a typo (bsc#1185472). - scsi: lpfc: Fix bad memory access during VPD DUMP mailbox command (bsc#1186451). - scsi: lpfc: Fix crash caused by switch reboot (bsc#1182574). - scsi: lpfc: Fix crash when a REG_RPI mailbox fails triggering a LOGO response (bsc#1185472). - scsi: lpfc: Fix crash when lpfc_sli4_hba_setup() fails to initialize the SGLs (bsc#1186451). - scsi: lpfc: Fix dropped FLOGI during pt2pt discovery recovery (bsc#1182574). - scsi: lpfc: Fix error handling for mailboxes completed in MBX_POLL mode (bsc#1185472). - scsi: lpfc: Fix formatting and misspelling issues (bsc#1185472). - scsi: lpfc: Fix gcc -Wstringop-overread warning (bsc#1185472). - scsi: lpfc: Fix illegal memory access on Abort IOCBs (bsc#1183203). - scsi: lpfc: Fix incorrect dbde assignment when building target abts wqe (bsc#1182574). - scsi: lpfc: Fix incorrect naming of __lpfc_update_fcf_record() (bsc#1185472). - scsi: lpfc: Fix incorrectly documented function lpfc_debugfs_commonxripools_data() (bsc#1185472). - scsi: lpfc: Fix kernel-doc formatting issue (bsc#1185472). - scsi: lpfc: Fix lack of device removal on port swaps with PRLIs (bsc#1185472). - scsi: lpfc: Fix lpfc_els_retry() possible null pointer dereference (bsc#1182574). - scsi: lpfc: Fix lpfc_hdw_queue attribute being ignored (bsc#1185472). - scsi: lpfc: Fix missing FDMI registrations after Mgmt Svc login (bsc#1185472). - scsi: lpfc: Fix node handling for Fabric Controller and Domain Controller (bsc#1186451). - scsi: lpfc: Fix nodeinfo debugfs output (bsc#1182574). - scsi: lpfc: Fix non-optimized ERSP handling (bsc#1186451). - scsi: lpfc: Fix null pointer dereference in lpfc_prep_els_iocb() (bsc#1182574). - scsi: lpfc: Fix pt2pt connection does not recover after LOGO (bsc#1182574). - scsi: lpfc: Fix pt2pt state transition causing rmmod hang (bsc#1182574). - scsi: lpfc: Fix reference counting errors in lpfc_cmpl_els_rsp() (bsc#1185472). - scsi: lpfc: Fix reftag generation sizing errors (bsc#1182574). - scsi: lpfc: Fix rmmod crash due to bad ring pointers to abort_iotag (bsc#1185472). - scsi: lpfc: Fix silent memory allocation failure in lpfc_sli4_bsg_link_diag_test() (bsc#1185472). - scsi: lpfc: Fix some error codes in debugfs (bsc#1185472). - scsi: lpfc: Fix stale node accesses on stale RRQ request (bsc#1182574). - scsi: lpfc: Fix status returned in lpfc_els_retry() error exit path (bsc#1182574). - scsi: lpfc: Fix unnecessary null check in lpfc_release_scsi_buf (bsc#1182574). - scsi: lpfc: Fix unreleased RPIs when NPIV ports are created (bsc#1186451). - scsi: lpfc: Fix use after free in lpfc_els_free_iocb (bsc#1182574). - scsi: lpfc: Fix use-after-free on unused nodes after port swap (bsc#1185472). - scsi: lpfc: Fix various trivial errors in comments and log messages (bsc#1185472). - scsi: lpfc: Fix vport indices in lpfc_find_vport_by_vpid() (bsc#1182574). - scsi: lpfc: Ignore GID-FT response that may be received after a link flip (bsc#1186451). - scsi: lpfc: Reduce LOG_TRACE_EVENT logging for vports (bsc#1182574). - scsi: lpfc: Remove unsupported mbox PORT_CAPABILITIES logic (bsc#1185472). - scsi: lpfc: Reregister FPIN types if ELS_RDF is received from fabric controller (bsc#1186451). - scsi: lpfc: Standardize discovery object logging format (bsc#1185472). - scsi: lpfc: Update copyrights for 12.8.0.7 and 12.8.0.8 changes (bsc#1182574). - scsi: lpfc: Update lpfc version to 12.8.0.10 (bsc#1186451). - scsi: lpfc: Update lpfc version to 12.8.0.8 (bsc#1182574). - scsi: lpfc: Update lpfc version to 12.8.0.9 (bsc#1185472). - scsi: mpt3sas: Only one vSES is present even when IOC has multi vSES (bsc#1185954). - scsi: pm80xx: Do not sleep in atomic context (bsc#1186353). - scsi: pm80xx: Fix chip initialization failure (bsc#1186354). - scsi: pm80xx: Fix potential infinite loop (bsc#1186354). - scsi: pm80xx: Increase timeout for pm80xx mpi_uninit_check() (bsc#1186355). - scsi: qla2xxx: Add H:C:T info in the log message for fc ports (bsc#1185491). - scsi: qla2xxx: Add error counters to debugfs node (bsc#1185491). - scsi: qla2xxx: Always check the return value of qla24xx_get_isp_stats() (bsc#1185491). - scsi: qla2xxx: Assign boolean values to a bool variable (bsc#1185491). - scsi: qla2xxx: Check kzalloc() return value (bsc#1185491). - scsi: qla2xxx: Consolidate zio threshold setting for both FCP & NVMe (bsc#1185491). - scsi: qla2xxx: Constify struct qla_tgt_func_tmpl (bsc#1185491). - scsi: qla2xxx: Do logout even if fabric scan retries got exhausted (bsc#1185491). - scsi: qla2xxx: Enable NVMe CONF (BIT_7) when enabling SLER (bsc#1185491). - scsi: qla2xxx: Fix IOPS drop seen in some adapters (bsc#1185491). - scsi: qla2xxx: Fix RISC RESET completion polling (bsc#1185491). - scsi: qla2xxx: Fix a couple of misdocumented functions (bsc#1185491). - scsi: qla2xxx: Fix a couple of misnamed functions (bsc#1185491). - scsi: qla2xxx: Fix broken #endif placement (bsc#1185491). - scsi: qla2xxx: Fix crash in PCIe error handling (bsc#1185491). - scsi: qla2xxx: Fix crash in qla2xxx_mqueuecommand() (bsc#1185491). - scsi: qla2xxx: Fix endianness annotations (bsc#1185491). - scsi: qla2xxx: Fix incorrectly named function qla8044_check_temp() (bsc#1185491). - scsi: qla2xxx: Fix mailbox Ch erroneous error (bsc#1185491). - scsi: qla2xxx: Fix mailbox recovery during PCIe error (bsc#1185491). - scsi: qla2xxx: Fix some incorrect formatting/spelling issues (bsc#1185491). - scsi: qla2xxx: Fix some memory corruption (bsc#1185491). - scsi: qla2xxx: Fix stuck session (bsc#1185491). - scsi: qla2xxx: Fix use after free in bsg (bsc#1185491). - scsi: qla2xxx: Implementation to get and manage host, target stats and initiator port (bsc#1185491). - scsi: qla2xxx: Move some messages from debug to normal log level (bsc#1185491). - scsi: qla2xxx: Remove redundant NULL check (bsc#1185491). - scsi: qla2xxx: Remove unnecessary NULL check (bsc#1185491). - scsi: qla2xxx: Remove unneeded if-null-free check (bsc#1185491). - scsi: qla2xxx: Replace __qla2x00_marker()'s missing underscores (bsc#1185491). - scsi: qla2xxx: Reserve extra IRQ vectors (bsc#1184436). - scsi: qla2xxx: Reuse existing error handling path (bsc#1185491). - scsi: qla2xxx: Simplify if statement (bsc#1185491). - scsi: qla2xxx: Simplify qla8044_minidump_process_control() (bsc#1185491). - scsi: qla2xxx: Simplify the calculation of variables (bsc#1185491). - scsi: qla2xxx: Suppress Coverity complaints about dseg_r* (bsc#1185491). - scsi: qla2xxx: Update default AER debug mask (bsc#1185491). - scsi: qla2xxx: Update version to 10.02.00.105-k (bsc#1185491). - scsi: qla2xxx: Update version to 10.02.00.106-k (bsc#1185491). - scsi: qla2xxx: Use dma_pool_zalloc() (bsc#1185491). - scsi: qla2xxx: Wait for ABTS response on I/O timeouts for NVMe (bsc#1185491). - scsi: qla2xxx: fc_remote_port_chkready() returns a SCSI result value (bsc#1185491). - scsi: smartpqi: Correct driver removal with HBA disks (bsc#1178089). - scsi: smartpqi: Correct driver removal with HBA disks (bsc#1178089). - scsi: smartpqi: Correct pqi_sas_smp_handler busy condition (bsc#1178089). - scsi: smartpqi: Correct pqi_sas_smp_handler busy condition (bsc#1178089). - scsi: smartpqi: Update version to 1.2.16-012 (bsc#1178089). - scsi: smartpqi: Update version to 1.2.16-012 (bsc#1178089). - scsi: target: pscsi: Avoid OOM in pscsi_map_sg() (bsc#1183843). - scsi: target: pscsi: Clean up after failure in pscsi_map_sg() (bsc#1183843). - scsi: target: tcmu: Fix use-after-free of se_cmd->priv (bsc#1186356). - scsi: target: tcmu: Fix warning: 'page' may be used uninitialized (bsc#1186357). - sctp: delay auto_asconf init until binding the first addr (&lt;cover.1620748346.git.mkubecek@suse.cz>). - security: keys: trusted: fix TPM2 authorizations (git-fixes). - selftests/bpf: Fix BPF_CORE_READ_BITFIELD() macro (bsc#1177028). - selftests/bpf: Fix the ASSERT_ERR_PTR macro (bsc#1177028). - selftests/bpf: Mask bpf_csum_diff() return value to 16 bits in test_verifier (bsc#1155518). - selftests/bpf: No need to drop the packet when there is no geneve opt (bsc#1155518). - selftests/bpf: Re-generate vmlinux.h and BPF skeletons if bpftool changed (bsc#1177028). - selftests/bpf: Set gopt opt_class to 0 if get tunnel opt failed (bsc#1155518). - selftests/powerpc: Add pkey helpers for rights (bsc#1184934 ltc#191460). - selftests/powerpc: Add test for execute-disabled pkeys (bsc#1184934 ltc#191460). - selftests/powerpc: Add test for pkey siginfo verification (bsc#1184934 ltc#191460). - selftests/powerpc: Add wrapper for gettid (bsc#1184934 ltc#191460). - selftests/powerpc: Fix L1D flushing tests for Power10 (bsc#1184934 ltc#191460). - selftests/powerpc: Fix exit status of pkey tests (bsc#1184934 ltc#191460). - selftests/powerpc: Fix pkey syscall redefinitions (bsc#1184934 ltc#191460). - selftests/powerpc: Move pkey helpers to headers (bsc#1184934 ltc#191460). - selftests/powerpc: refactor entry and rfi_flush tests (bsc#1184934 ltc#191460). - selftests: mlxsw: Remove a redundant if statement in tc_flower_scale test (bsc#1176774). - selinux: Fix error return code in sel_ib_pkey_sid_slow() (git-fixes). - selinux: fix error initialization in inode_doinit_with_dentry() (git-fixes). - selinux: fix inode_doinit_with_dentry() LABEL_INVALID error handling (git-fixes). - serial: core: return early on unsupported ioctls (git-fixes). - serial: stm32: fix incorrect characters on console (git-fixes). - serial: stm32: fix tx_empty condition (git-fixes). - smb3: Fix out-of-bounds bug in SMB2_negotiate() (bsc#1183540). - smb3: add dynamic trace point to trace when credits obtained (bsc#1181507). - smb3: fix crediting for compounding when only one request in flight (bsc#1181507). - smc: disallow TCP_ULP in smc_setsockopt() (git-fixes). - soc/fsl: qbman: fix conflicting alignment attributes (git-fixes). - soc: aspeed: fix a ternary sign expansion bug (git-fixes). - soc: fsl: qe: replace qe_io{read,write}* wrappers by generic io{read,write}* (git-fixes). - soc: qcom: mdt_loader: Detect truncated read of segments (git-fixes). - soc: qcom: mdt_loader: Validate that p_filesz &lt; p_memsz (git-fixes). - software node: Fix node registration (git-fixes). - soundwire: bus: Fix device found flag correctly (git-fixes). - soundwire: stream: fix memory leak in stream config error path (git-fixes). - spi: Introduce dspi_slave_abort() function for NXP's dspi SPI driver (bsc#1167260). - spi: ath79: always call chipselect function (git-fixes). - spi: ath79: remove spi-master setup and cleanup assignment (git-fixes). - spi: cadence: set cqspi to the driver_data field of struct device (git-fixes). - spi: dln2: Fix reference leak to master (git-fixes). - spi: fsl-dspi: fix NULL pointer dereference (bsc#1167260). - spi: fsl-dspi: fix use-after-free in remove path (bsc#1167260). - spi: fsl-dspi: fix wrong pointer in suspend/resume (bsc#1167260). - spi: fsl-lpspi: Fix PM reference leak in lpspi_prepare_xfer_hardware() (git-fixes). - spi: omap-100k: Fix reference leak to master (git-fixes). - spi: qup: fix PM reference leak in spi_qup_remove() (git-fixes). - spi: spi-fsl-dspi: Accelerate transfers using larger word size if possible (bsc#1167260). - spi: spi-fsl-dspi: Add comments around dspi_pop_tx and dspi_push_rx functions (bsc#1167260). - spi: spi-fsl-dspi: Add support for LS1028A (bsc#1167260). - spi: spi-fsl-dspi: Adding shutdown hook (bsc#1167260). - spi: spi-fsl-dspi: Always use the TCFQ devices in poll mode (bsc#1167260). - spi: spi-fsl-dspi: Avoid NULL pointer in dspi_slave_abort for non-DMA mode (bsc#1167260). - spi: spi-fsl-dspi: Avoid reading more data than written in EOQ mode (bsc#1167260). - spi: spi-fsl-dspi: Change usage pattern of SPI_MCR_* and SPI_CTAR_* macros (bsc#1167260). - spi: spi-fsl-dspi: Convert TCFQ users to XSPI FIFO mode (bsc#1167260). - spi: spi-fsl-dspi: Convert the instantiations that support it to DMA (bsc#1167260). - spi: spi-fsl-dspi: Demistify magic value in SPI_SR_CLEAR (bsc#1167260). - spi: spi-fsl-dspi: Do not access reserved fields in SPI_MCR (bsc#1167260). - spi: spi-fsl-dspi: Do not mask off undefined bits (bsc#1167260). - spi: spi-fsl-dspi: Exit the ISR with IRQ_NONE when it's not ours (bsc#1167260). - spi: spi-fsl-dspi: Fix 16-bit word order in 32-bit XSPI mode (bsc#1167260). - spi: spi-fsl-dspi: Fix a resource leak in an error handling path (git-fixes). - spi: spi-fsl-dspi: Fix bits-per-word acceleration in DMA mode (bsc#1167260). - spi: spi-fsl-dspi: Fix code alignment (bsc#1167260). - spi: spi-fsl-dspi: Fix external abort on interrupt in resume or exit paths (bsc#1167260). - spi: spi-fsl-dspi: Fix interrupt-less DMA mode taking an XSPI code path (bsc#1167260). - spi: spi-fsl-dspi: Fix little endian access to PUSHR CMD and TXDATA (bsc#1167260). - spi: spi-fsl-dspi: Fix lockup if device is removed during SPI transfer (bsc#1167260). - spi: spi-fsl-dspi: Fix lockup if device is shutdown during SPI transfer (bsc#1167260). - spi: spi-fsl-dspi: Fix race condition in TCFQ/EOQ interrupt (bsc#1167260). - spi: spi-fsl-dspi: Fix typos (bsc#1167260). - spi: spi-fsl-dspi: Free DMA memory with matching function (bsc#1167260). - spi: spi-fsl-dspi: Implement .max_message_size method for EOQ mode (bsc#1167260). - spi: spi-fsl-dspi: Initialize completion before possible interrupt (bsc#1167260). - spi: spi-fsl-dspi: LS2080A and LX2160A support XSPI mode (bsc#1167260). - spi: spi-fsl-dspi: Make bus-num property optional (bsc#1167260). - spi: spi-fsl-dspi: Move dspi_interrupt above dspi_transfer_one_message (bsc#1167260). - spi: spi-fsl-dspi: Move invariant configs out of dspi_transfer_one_message (bsc#1167260). - spi: spi-fsl-dspi: Optimize dspi_setup_accel for lowest interrupt count (bsc#1167260). - spi: spi-fsl-dspi: Parameterize the FIFO size and DMA buffer size (bsc#1167260). - spi: spi-fsl-dspi: Protect against races on dspi->words_in_flight (bsc#1167260). - spi: spi-fsl-dspi: Reduce indentation in dspi_release_dma() (bsc#1167260). - spi: spi-fsl-dspi: Reduce indentation level in dspi_interrupt (bsc#1167260). - spi: spi-fsl-dspi: Remove impossible to reach error check (bsc#1167260). - spi: spi-fsl-dspi: Remove pointless assignment of master->transfer to NULL (bsc#1167260). - spi: spi-fsl-dspi: Remove unused chip->void_write_data (bsc#1167260). - spi: spi-fsl-dspi: Remove unused defines and includes (bsc#1167260). - spi: spi-fsl-dspi: Remove unused initialization of 'ret' in dspi_probe (bsc#1167260). - spi: spi-fsl-dspi: Rename fifo_{read,write} and {tx,cmd}_fifo_write (bsc#1167260). - spi: spi-fsl-dspi: Replace interruptible wait queue with a simple completion (bsc#1167260). - spi: spi-fsl-dspi: Replace legacy spi_master names with spi_controller (bsc#1167260). - spi: spi-fsl-dspi: Simplify bytes_per_word gymnastics (bsc#1167260). - spi: spi-fsl-dspi: Take software timestamp in dspi_fifo_write (bsc#1167260). - spi: spi-fsl-dspi: Use BIT() and GENMASK() macros (bsc#1167260). - spi: spi-fsl-dspi: Use EOQ for last word in buffer even for XSPI mode (bsc#1167260). - spi: spi-fsl-dspi: Use dma_request_chan() instead dma_request_slave_channel() (bsc#1167260). - spi: spi-fsl-dspi: Use poll mode in case the platform IRQ is missing (bsc#1167260). - spi: spi-fsl-dspi: Use reverse Christmas tree declaration order (bsc#1167260). - spi: spi-fsl-dspi: Use specific compatible strings for all SoC instantiations (bsc#1167260). - spi: spi-fsl-dspi: delete EOQ transfer mode (bsc#1167260). - spi: spi-fsl-dspi: fix DMA mapping (bsc#1167260). - spi: spi-fsl-dspi: fix native data copy (bsc#1167260). - spi: spi-fsl-dspi: remove git-fixes Remove git-fixes. Prepare to update the driver. References: bsc#1167260 - spi: spi-fsl-dspi: set ColdFire to DMA mode (bsc#1167260). - spi: spi-fsl-dspi: use XSPI mode instead of DMA for DPAA2 SoCs (bsc#1167260). - spi: spi-ti-qspi: Free DMA resources (git-fixes). - spi: stm32: make spurious and overrun interrupts visible (git-fixes). - squashfs: fix inode lookup sanity checks (bsc#1183750). - squashfs: fix xattr id and id lookup sanity checks (bsc#1183750). - staging: bcm2835-audio: Replace unsafe strcpy() with strscpy() (git-fixes). - staging: comedi: addi_apci_1032: Fix endian problem for COS sample (git-fixes). - staging: comedi: addi_apci_1500: Fix endian problem for command sample (git-fixes). - staging: comedi: adv_pci1710: Fix endian problem for AI command data (git-fixes). - staging: comedi: cb_pcidas64: fix request_irq() warn (git-fixes). - staging: comedi: cb_pcidas: fix request_irq() warn (git-fixes). - staging: comedi: das6402: Fix endian problem for AI command data (git-fixes). - staging: comedi: das800: Fix endian problem for AI command data (git-fixes). - staging: comedi: dmm32at: Fix endian problem for AI command data (git-fixes). - staging: comedi: me4000: Fix endian problem for AI command data (git-fixes). - staging: comedi: pcl711: Fix endian problem for AI command data (git-fixes). - staging: comedi: pcl818: Fix endian problem for AI command data (git-fixes). - staging: fwserial: Fix error handling in fwserial_create (git-fixes). - staging: fwserial: fix TIOCGSERIAL implementation (git-fixes). - staging: fwserial: fix TIOCSSERIAL implementation (git-fixes). - staging: fwserial: fix TIOCSSERIAL jiffies conversions (git-fixes). - staging: fwserial: fix TIOCSSERIAL permission check (git-fixes). - staging: ks7010: prevent buffer overflow in ks_wlan_set_scan() (git-fixes). - staging: most: sound: add sanity check for function argument (git-fixes). - staging: rtl8188eu: fix potential memory corruption in rtw_check_beacon_data() (git-fixes). - staging: rtl8188eu: prevent ->ssid overflow in rtw_wx_set_scan() (git-fixes). - staging: rtl8192e: Change state information from u16 to u8 (git-fixes). - staging: rtl8192e: Fix incorrect source in memcpy() (git-fixes). - staging: rtl8192e: Fix possible buffer overflow in _rtl92e_wx_set_scan (git-fixes). - staging: rtl8192u: Fix potential infinite loop (git-fixes). - staging: rtl8192u: fix ->ssid overflow in r8192_wx_set_scan() (git-fixes). - staging: rtl8712: Fix possible buffer overflow in r8712_sitesurvey_cmd (git-fixes). - staging: rtl8712: unterminated string leads to read overflow (git-fixes). - stop_machine: mark helpers __always_inline (git-fixes). - supported.conf: - supported.conf: add bsc1185010 dependency - supported.conf: mark usb_otg_fsm as supported (bsc#1185010) - tcp: fix to update snd_wl1 in bulk receiver fast path (&lt;cover.1620748346.git.mkubecek@suse.cz>). - tee: optee: remove need_resched() before cond_resched() (git-fixes). - tee: optee: replace might_sleep with cond_resched (git-fixes). - thermal/core: Add NULL pointer check before using cooling device stats (git-fixes). - thermal/drivers/cpufreq_cooling: Update cpufreq_state only if state has changed (git-fixes). - thermal/drivers/ti-soc-thermal/bandgap Remove unused variable 'val' (git-fixes). - thermal: thermal_of: Fix error return code of thermal_of_populate_bind_params() (git-fixes). - thunderbolt: Fix a leak in tb_retimer_add() (git-fixes). - thunderbolt: Fix a leak in tb_retimer_add() (git-fixes). - thunderbolt: Fix off by one in tb_port_find_retimer() (git-fixes). - thunderbolt: Fix off by one in tb_port_find_retimer() (git-fixes). - thunderbolt: Initialize HopID IDAs in tb_switch_alloc() (git-fixes). - tools/resolve_btfids: Fix build error with older host toolchains (bsc#1177028). - tpm: acpi: Check eventlog signature before using it (git-fixes). - tracing: Map all PIDs to command lines (git-fixes). - tty: amiserial: fix TIOCSSERIAL permission check (git-fixes). - tty: fix memory leak in vc_deallocate (git-fixes). - tty: moxa: fix TIOCSSERIAL jiffies conversions (git-fixes). - tty: moxa: fix TIOCSSERIAL permission check (git-fixes). - tty: serial: lpuart: fix lpuart32_write usage (git-fixes). - tty: serial: ucc_uart: replace qe_io{read,write}* wrappers by generic io{read,write}* (git-fixes). - udlfb: Fix memory leak in dlfb_usb_probe (git-fixes). - uio: uio_hv_generic: use devm_kzalloc() for private data alloc (git-fixes). - uio_hv_generic: Fix a memory leak in error handling paths (git-fixes). - uio_hv_generic: Fix another memory leak in error handling paths (git-fixes). - uio_hv_generic: add missed sysfs_remove_bin_file (git-fixes). - usb-storage: Add quirk to defeat Kindle's automatic unload (git-fixes). - usb: Remove dev_err() usage after platform_get_irq() (git-fixes). - usb: core: hub: Fix PM reference leak in usb_port_resume() (git-fixes). - usb: core: hub: fix race condition about TRSMRCY of resume (git-fixes). - usb: dwc2: Fix HPRT0.PrtSusp bit setting for HiKey 960 board (git-fixes). - usb: dwc2: Fix gadget DMA unmap direction (git-fixes). - usb: dwc2: Fix hibernation between host and device modes (git-fixes). - usb: dwc2: Fix host mode hibernation exit with remote wakeup flow (git-fixes). - usb: dwc2: Fix session request interrupt handler (git-fixes). - usb: dwc2: Prevent core suspend when port connection flag is 0 (git-fixes). - usb: dwc3: Switch to use device_property_count_u32() (git-fixes). - usb: dwc3: Update soft-reset wait polling rate (git-fixes). - usb: dwc3: gadget: Fix START_TRANSFER link state check (git-fixes). - usb: dwc3: gadget: Return success always for kick transfer in ep queue (git-fixes). - usb: dwc3: keystone: use devm_platform_ioremap_resource() to simplify code (git-fixes). - usb: dwc3: meson-g12a: use devm_platform_ioremap_resource() to simplify code (git-fixes). - usb: dwc3: omap: improve extcon initialization (git-fixes). - usb: dwc3: pci: Enable usb2-gadget-lpm-disable for Intel Merrifield (git-fixes). - usb: dwc3: qcom: Add missing DWC3 OF node refcount decrement (git-fixes). - usb: dwc3: qcom: Honor wakeup enabled/disabled state (git-fixes). - usb: fotg210-hcd: Fix an error message (git-fixes). - usb: gadget/function/f_fs string table fix for multiple languages (git-fixes). - usb: gadget: Fix double free of device descriptor pointers (git-fixes). - usb: gadget: aspeed: fix dma map failure (git-fixes). - usb: gadget: configfs: Fix KASAN use-after-free (git-fixes). - usb: gadget: dummy_hcd: fix gpf in gadget_setup (git-fixes). - usb: gadget: f_uac1: stop playback on function disable (git-fixes). - usb: gadget: f_uac1: validate input parameters (git-fixes). - usb: gadget: f_uac2: always increase endpoint max_packet_size by one audio slot (git-fixes). - usb: gadget: f_uac2: validate input parameters (git-fixes). - usb: gadget: pch_udc: Check for DMA mapping error (git-fixes). - usb: gadget: pch_udc: Check if driver is present before calling ->setup() (git-fixes). - usb: gadget: pch_udc: Move pch_udc_init() to satisfy kernel doc (git-fixes). - usb: gadget: pch_udc: Replace cpu_to_le32() by lower_32_bits() (git-fixes). - usb: gadget: pch_udc: Revert d3cb25a12138 completely (git-fixes). - usb: gadget: r8a66597: Add missing null check on return from platform_get_resource (git-fixes). - usb: gadget: udc: amd5536udc_pci fix null-ptr-dereference (git-fixes). - usb: gadget: uvc: add bInterval checking for HS mode (git-fixes). - usb: musb: Fix suspend with devices connected for a64 (git-fixes). - usb: musb: fix PM reference leak in musb_irq_work() (git-fixes). - usb: pci-quirks: disable D3cold on xhci suspend for s2idle on AMD Renoire (bsc#1185840). - usb: renesas_usbhs: Clear PIPECFG for re-enabling pipe with other EPNUM (git-fixes). - usb: roles: Call try_module_get() from usb_role_switch_find_by_fwnode() (git-fixes). - usb: roles: Call try_module_get() from usb_role_switch_find_by_fwnode() (git-fixes). - usb: sl811-hcd: improve misleading indentation (git-fixes). - usb: typec: Remove vdo[3] part of tps6598x_rx_identity_reg struct (git-fixes). - usb: typec: tcpci: Check ROLE_CONTROL while interpreting CC_STATUS (git-fixes). - usb: typec: tcpm: Address incorrect values of tcpm psy for fixed supply (git-fixes). - usb: typec: tcpm: Honour pSnkStdby requirement during negotiation (git-fixes). - usb: typec: tcpm: Invoke power_supply_changed for tcpm-source-psy- (git-fixes). - usb: typec: tcpm: Invoke power_supply_changed for tcpm-source-psy- (git-fixes). - usb: typec: tps6598x: Fix return value check in tps6598x_probe() (git-fixes). - usb: typec: tps6598x: Fix return value check in tps6598x_probe() (git-fixes). - usb: typec: ucsi: Put fwnode in any case during ->probe() (git-fixes). - usb: webcam: Invalid size of Processing Unit Descriptor (git-fixes). - usb: xhci-mtk: fix broken streams issue on 0.96 xHCI (git-fixes). - usb: xhci-mtk: improve bandwidth scheduling with TT (git-fixes). - usb: xhci-mtk: remove or operator for setting schedule parameters (git-fixes). - usb: xhci: Fix ASMedia ASM1042A and ASM3242 DMA addressing (git-fixes). - usb: xhci: Fix port minor revision (git-fixes). - usb: xhci: Increase timeout for HC halt (git-fixes). - usb: xhci: do not perform Soft Retry for some xHCI hosts (git-fixes). - usbip: Fix incorrect double assignment to udc->ud.tcp_rx (git-fixes). - usbip: fix stub_dev to check for stream socket (git-fixes). - usbip: fix stub_dev usbip_sockfd_store() races leading to gpf (git-fixes). - usbip: fix vhci_hcd attach_store() races leading to gpf (git-fixes). - usbip: fix vhci_hcd to check for stream socket (git-fixes). - usbip: fix vudc to check for stream socket (git-fixes). - usbip: fix vudc usbip_sockfd_store races leading to gpf (git-fixes). - usbip: tools: fix build error for multiple definition (git-fixes). - usbip: vhci_hcd fix shift out-of-bounds in vhci_hub_control() (git-fixes). - use __netdev_notify_peers in ibmvnic (bsc#1183871 ltc#192139). - veth: Store queue_mapping independently of XDP prog presence (git-fixes). - vfio-pci/zdev: fix possible segmentation fault issue (git-fixes). - vfio/iommu_type1: Populate full dirty when detach non-pinned group (bsc#1183326). - vfio/mdev: Do not allow a mdev_type to have a NULL parent pointer (git-fixes). - vfio/mdev: Make to_mdev_device() into a static inline (git-fixes). - vfio/pci: Add missing range check in vfio_pci_mmap (git-fixes). - vfio/pci: Move VGA and VF initialization to functions (git-fixes). - vfio/pci: Re-order vfio_pci_probe() (git-fixes). - vgacon: Record video mode changes with VT_RESIZEX (git-fixes). - video: fbdev: acornfb: remove free_unused_pages() (bsc#1152489) - video: hyperv_fb: Add ratelimit on error message (bsc#1185725). - video: hyperv_fb: Fix a double free in hvfb_probe (git-fixes). - virt_wifi: Return micros for BSS TSF values (git-fixes). - virtiofs: fix memory leak in virtio_fs_probe() (bsc#1185558). - vrf: fix a comment about loopback device (git-fixes). - vt/consolemap: do font sum unsigned (git-fixes). - vxlan: do not modify the shared tunnel info when PMTU triggers an ICMP reply (bsc#1176447). - vxlan: move debug check after netdev unregister (git-fixes). - watchdog/softlockup: Remove obsolete check of last reported task (bsc#1185982). - watchdog/softlockup: report the overall time of softlockups (bsc#1185982). - watchdog: explicitly update timestamp when reporting softlockup (bsc#1185982). - watchdog: rename __touch_watchdog() to a better descriptive name (bsc#1185982). - whitespace cleanup - wl3501_cs: Fix out-of-bounds warnings in wl3501_mgmt_join (git-fixes). - wl3501_cs: Fix out-of-bounds warnings in wl3501_send_pkt (git-fixes). - wlcore: Fix command execute failure 19 for wl12xx (git-fixes). - workqueue: Minor follow-ups to the rescuer destruction change (bsc#1185911). - workqueue: Move the position of debug_work_activate() in __queue_work() (bsc#1184893). - workqueue: more destroy_workqueue() fixes (bsc#1185911). - x86,swiotlb: Adjust SWIOTLB bounce buffer size for SEV guests (bsc#1186219). - x86/crash: Fix crash_setup_memmap_entries() out-of-bounds access (bsc#1152489). - x86/fsgsbase/64: Fix NULL deref in 86_fsgsbase_read_task (bsc#1152489). - x86/insn: Add some Intel instructions to the opcode map (bsc#1184760). - x86/insn: Add some more Intel instructions to the opcode map (bsc#1184760). - x86/ioapic: Ignore IRQ2 again (bsc#1152489). - x86/mem_encrypt: Correct physical address calculation in __set_clr_pte_enc() (bsc#1152489). - x86/microcode: Check for offline CPUs before requesting new microcode (bsc#1152489). - x86/mm: Fix NX bit clearing issue in kernel_map_pages_in_pgd (bsc#1152489). - x86/platform/uv: Set section block size for hubless architectures (bsc#1152489). - x86/reboot: Force all cpus to exit VMX root if VMX is supported (bsc#1152489). - x86/sev-es: Invalidate the GHCB after completing VMGEXIT (bsc#1178134). - x86/sev-es: Move sev_es_put_ghcb() in prep for follow on patch (bsc#1178134). - x86: Introduce TS_COMPAT_RESTART to fix get_nr_restart_syscall() (bsc#1152489). - xen/events: avoid handling the same event on two cpus at the same time (git-fixes). - xen/events: do not unmask an event channel when an eoi is pending (git-fixes). - xen/events: reset affinity of 2-level event when tearing it down (git-fixes). - xen/evtchn: Change irq_info lock to raw_spinlock_t (git-fixes). - xfrm: Provide private skb extensions for segmented and hw offloaded ESP packets (bsc#1176447). - xfs: group quota should return EDQUOT when prj quota enabled (bsc#1180980). - xhci: Do not use GFP_KERNEL in (potentially) atomic context (git-fixes). - xhci: Fix repeated xhci wake after suspend due to uncleared internal wake state (git-fixes). - xhci: Improve detection of device initiated wake signal (git-fixes). - xhci: check control context is valid before dereferencing it (git-fixes). - xhci: fix potential array out of bounds with several interrupters (git-fixes). - xsk: Respect device's headroom and tailroom on generic xmit path (git-fixes). - xsk: Respect device's headroom and tailroom on generic xmit path (git-fixes). cluster-md-kmp-default-5.3.18-59.5.2.x86_64.rpm True cluster-md-kmp-preempt-5.3.18-59.5.2.x86_64.rpm True dlm-kmp-default-5.3.18-59.5.2.x86_64.rpm True dlm-kmp-preempt-5.3.18-59.5.2.x86_64.rpm True gfs2-kmp-default-5.3.18-59.5.2.x86_64.rpm True gfs2-kmp-preempt-5.3.18-59.5.2.x86_64.rpm True kernel-debug-5.3.18-59.5.2.nosrc.rpm True kernel-debug-5.3.18-59.5.2.x86_64.rpm True kernel-debug-devel-5.3.18-59.5.2.x86_64.rpm True kernel-debug-livepatch-devel-5.3.18-59.5.2.x86_64.rpm True kernel-default-5.3.18-59.5.2.nosrc.rpm True kernel-default-5.3.18-59.5.2.x86_64.rpm True kernel-default-base-5.3.18-59.5.2.18.2.2.src.rpm True kernel-default-base-5.3.18-59.5.2.18.2.2.x86_64.rpm True kernel-default-base-rebuild-5.3.18-59.5.2.18.2.2.x86_64.rpm True kernel-default-devel-5.3.18-59.5.2.x86_64.rpm True kernel-default-extra-5.3.18-59.5.2.x86_64.rpm True kernel-default-livepatch-5.3.18-59.5.2.x86_64.rpm True kernel-default-livepatch-devel-5.3.18-59.5.2.x86_64.rpm True kernel-default-optional-5.3.18-59.5.2.x86_64.rpm True kernel-devel-5.3.18-59.5.2.noarch.rpm True kernel-docs-5.3.18-59.5.2.noarch.rpm True kernel-docs-5.3.18-59.5.2.nosrc.rpm True kernel-docs-html-5.3.18-59.5.2.noarch.rpm True kernel-kvmsmall-5.3.18-59.5.2.nosrc.rpm True kernel-kvmsmall-5.3.18-59.5.2.x86_64.rpm True kernel-kvmsmall-devel-5.3.18-59.5.2.x86_64.rpm True kernel-kvmsmall-livepatch-devel-5.3.18-59.5.2.x86_64.rpm True kernel-macros-5.3.18-59.5.2.noarch.rpm True kernel-obs-build-5.3.18-59.5.1.src.rpm True kernel-obs-build-5.3.18-59.5.1.x86_64.rpm True kernel-obs-qa-5.3.18-59.5.1.src.rpm True kernel-obs-qa-5.3.18-59.5.1.x86_64.rpm True kernel-preempt-5.3.18-59.5.2.nosrc.rpm True kernel-preempt-5.3.18-59.5.2.x86_64.rpm True kernel-preempt-devel-5.3.18-59.5.2.x86_64.rpm True kernel-preempt-extra-5.3.18-59.5.2.x86_64.rpm True kernel-preempt-livepatch-devel-5.3.18-59.5.2.x86_64.rpm True kernel-preempt-optional-5.3.18-59.5.2.x86_64.rpm True kernel-source-5.3.18-59.5.2.noarch.rpm True kernel-source-5.3.18-59.5.2.src.rpm True kernel-source-vanilla-5.3.18-59.5.2.noarch.rpm True kernel-syms-5.3.18-59.5.1.src.rpm True kernel-syms-5.3.18-59.5.1.x86_64.rpm True kselftests-kmp-default-5.3.18-59.5.2.x86_64.rpm True kselftests-kmp-preempt-5.3.18-59.5.2.x86_64.rpm True ocfs2-kmp-default-5.3.18-59.5.2.x86_64.rpm True ocfs2-kmp-preempt-5.3.18-59.5.2.x86_64.rpm True reiserfs-kmp-default-5.3.18-59.5.2.x86_64.rpm True reiserfs-kmp-preempt-5.3.18-59.5.2.x86_64.rpm True cluster-md-kmp-default-5.3.18-59.5.2.s390x.rpm True dlm-kmp-default-5.3.18-59.5.2.s390x.rpm True gfs2-kmp-default-5.3.18-59.5.2.s390x.rpm True kernel-default-5.3.18-59.5.2.s390x.rpm True kernel-default-base-5.3.18-59.5.2.18.2.2.s390x.rpm True kernel-default-base-rebuild-5.3.18-59.5.2.18.2.2.s390x.rpm True kernel-default-devel-5.3.18-59.5.2.s390x.rpm True kernel-default-extra-5.3.18-59.5.2.s390x.rpm True kernel-default-livepatch-5.3.18-59.5.2.s390x.rpm True kernel-default-livepatch-devel-5.3.18-59.5.2.s390x.rpm True kernel-default-optional-5.3.18-59.5.2.s390x.rpm True kernel-obs-build-5.3.18-59.5.1.s390x.rpm True kernel-obs-qa-5.3.18-59.5.1.s390x.rpm True kernel-syms-5.3.18-59.5.1.s390x.rpm True kernel-zfcpdump-5.3.18-59.5.2.nosrc.rpm True kernel-zfcpdump-5.3.18-59.5.2.s390x.rpm True kselftests-kmp-default-5.3.18-59.5.2.s390x.rpm True ocfs2-kmp-default-5.3.18-59.5.2.s390x.rpm True reiserfs-kmp-default-5.3.18-59.5.2.s390x.rpm True cluster-md-kmp-default-5.3.18-59.5.2.ppc64le.rpm True dlm-kmp-default-5.3.18-59.5.2.ppc64le.rpm True gfs2-kmp-default-5.3.18-59.5.2.ppc64le.rpm True kernel-debug-5.3.18-59.5.2.ppc64le.rpm True kernel-debug-devel-5.3.18-59.5.2.ppc64le.rpm True kernel-debug-livepatch-devel-5.3.18-59.5.2.ppc64le.rpm True kernel-default-5.3.18-59.5.2.ppc64le.rpm True kernel-default-base-5.3.18-59.5.2.18.2.2.ppc64le.rpm True kernel-default-base-rebuild-5.3.18-59.5.2.18.2.2.ppc64le.rpm True kernel-default-devel-5.3.18-59.5.2.ppc64le.rpm True kernel-default-extra-5.3.18-59.5.2.ppc64le.rpm True kernel-default-livepatch-5.3.18-59.5.2.ppc64le.rpm True kernel-default-livepatch-devel-5.3.18-59.5.2.ppc64le.rpm True kernel-default-optional-5.3.18-59.5.2.ppc64le.rpm True kernel-kvmsmall-5.3.18-59.5.2.ppc64le.rpm True kernel-kvmsmall-devel-5.3.18-59.5.2.ppc64le.rpm True kernel-kvmsmall-livepatch-devel-5.3.18-59.5.2.ppc64le.rpm True kernel-obs-build-5.3.18-59.5.1.ppc64le.rpm True kernel-obs-qa-5.3.18-59.5.1.ppc64le.rpm True kernel-syms-5.3.18-59.5.1.ppc64le.rpm True kselftests-kmp-default-5.3.18-59.5.2.ppc64le.rpm True ocfs2-kmp-default-5.3.18-59.5.2.ppc64le.rpm True reiserfs-kmp-default-5.3.18-59.5.2.ppc64le.rpm True cluster-md-kmp-64kb-5.3.18-59.5.2.aarch64.rpm True cluster-md-kmp-default-5.3.18-59.5.2.aarch64.rpm True cluster-md-kmp-preempt-5.3.18-59.5.2.aarch64.rpm True dlm-kmp-64kb-5.3.18-59.5.2.aarch64.rpm True dlm-kmp-default-5.3.18-59.5.2.aarch64.rpm True dlm-kmp-preempt-5.3.18-59.5.2.aarch64.rpm True gfs2-kmp-64kb-5.3.18-59.5.2.aarch64.rpm True gfs2-kmp-default-5.3.18-59.5.2.aarch64.rpm True gfs2-kmp-preempt-5.3.18-59.5.2.aarch64.rpm True kernel-64kb-5.3.18-59.5.2.aarch64.rpm True kernel-64kb-5.3.18-59.5.2.nosrc.rpm True kernel-64kb-devel-5.3.18-59.5.2.aarch64.rpm True kernel-64kb-extra-5.3.18-59.5.2.aarch64.rpm True kernel-64kb-livepatch-devel-5.3.18-59.5.2.aarch64.rpm True kernel-64kb-optional-5.3.18-59.5.2.aarch64.rpm True kernel-default-5.3.18-59.5.2.aarch64.rpm True kernel-default-base-5.3.18-59.5.2.18.2.2.aarch64.rpm True kernel-default-base-rebuild-5.3.18-59.5.2.18.2.2.aarch64.rpm True kernel-default-devel-5.3.18-59.5.2.aarch64.rpm True kernel-default-extra-5.3.18-59.5.2.aarch64.rpm True kernel-default-livepatch-5.3.18-59.5.2.aarch64.rpm True kernel-default-livepatch-devel-5.3.18-59.5.2.aarch64.rpm True kernel-default-optional-5.3.18-59.5.2.aarch64.rpm True kernel-obs-build-5.3.18-59.5.1.aarch64.rpm True kernel-obs-qa-5.3.18-59.5.1.aarch64.rpm True kernel-preempt-5.3.18-59.5.2.aarch64.rpm True kernel-preempt-devel-5.3.18-59.5.2.aarch64.rpm True kernel-preempt-extra-5.3.18-59.5.2.aarch64.rpm True kernel-preempt-livepatch-devel-5.3.18-59.5.2.aarch64.rpm True kernel-preempt-optional-5.3.18-59.5.2.aarch64.rpm True kernel-syms-5.3.18-59.5.1.aarch64.rpm True kselftests-kmp-64kb-5.3.18-59.5.2.aarch64.rpm True kselftests-kmp-default-5.3.18-59.5.2.aarch64.rpm True kselftests-kmp-preempt-5.3.18-59.5.2.aarch64.rpm True ocfs2-kmp-64kb-5.3.18-59.5.2.aarch64.rpm True ocfs2-kmp-default-5.3.18-59.5.2.aarch64.rpm True ocfs2-kmp-preempt-5.3.18-59.5.2.aarch64.rpm True reiserfs-kmp-64kb-5.3.18-59.5.2.aarch64.rpm True reiserfs-kmp-default-5.3.18-59.5.2.aarch64.rpm True reiserfs-kmp-preempt-5.3.18-59.5.2.aarch64.rpm True openSUSE-SLE-15.3-2021-1883 Recommended update for file-roller moderate SUSE Updates openSUSE-SLE 15.3 This update for file-roller fixes the following issues: - Prevent segmentation fault while displaying error messages when trying to extract broken/corrupted files. (bsc#1186435) file-roller-3.32.5-3.3.1.src.rpm file-roller-3.32.5-3.3.1.x86_64.rpm file-roller-lang-3.32.5-3.3.1.noarch.rpm file-roller-3.32.5-3.3.1.s390x.rpm file-roller-3.32.5-3.3.1.ppc64le.rpm file-roller-3.32.5-3.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-1846 Recommended update for mozilla-nss moderate SUSE Updates openSUSE-SLE 15.3 This update for mozilla-nss fixes the following issue: - Provide some missing binaries from `mozilla-nss` not added in `SLE-Module-Basesystem_15-SP3`. (bsc#1185910) libfreebl3-3.53.1-3.53.1.x86_64.rpm libfreebl3-32bit-3.53.1-3.53.1.x86_64.rpm libfreebl3-hmac-3.53.1-3.53.1.x86_64.rpm libfreebl3-hmac-32bit-3.53.1-3.53.1.x86_64.rpm libsoftokn3-3.53.1-3.53.1.x86_64.rpm libsoftokn3-32bit-3.53.1-3.53.1.x86_64.rpm libsoftokn3-hmac-3.53.1-3.53.1.x86_64.rpm libsoftokn3-hmac-32bit-3.53.1-3.53.1.x86_64.rpm mozilla-nss-3.53.1-3.53.1.src.rpm mozilla-nss-3.53.1-3.53.1.x86_64.rpm mozilla-nss-32bit-3.53.1-3.53.1.x86_64.rpm mozilla-nss-certs-3.53.1-3.53.1.x86_64.rpm mozilla-nss-certs-32bit-3.53.1-3.53.1.x86_64.rpm mozilla-nss-devel-3.53.1-3.53.1.x86_64.rpm mozilla-nss-sysinit-3.53.1-3.53.1.x86_64.rpm mozilla-nss-sysinit-32bit-3.53.1-3.53.1.x86_64.rpm mozilla-nss-tools-3.53.1-3.53.1.x86_64.rpm libfreebl3-3.53.1-3.53.1.s390x.rpm libfreebl3-hmac-3.53.1-3.53.1.s390x.rpm libsoftokn3-3.53.1-3.53.1.s390x.rpm libsoftokn3-hmac-3.53.1-3.53.1.s390x.rpm mozilla-nss-3.53.1-3.53.1.s390x.rpm mozilla-nss-certs-3.53.1-3.53.1.s390x.rpm mozilla-nss-devel-3.53.1-3.53.1.s390x.rpm mozilla-nss-sysinit-3.53.1-3.53.1.s390x.rpm mozilla-nss-tools-3.53.1-3.53.1.s390x.rpm libfreebl3-3.53.1-3.53.1.ppc64le.rpm libfreebl3-hmac-3.53.1-3.53.1.ppc64le.rpm libsoftokn3-3.53.1-3.53.1.ppc64le.rpm libsoftokn3-hmac-3.53.1-3.53.1.ppc64le.rpm mozilla-nss-3.53.1-3.53.1.ppc64le.rpm mozilla-nss-certs-3.53.1-3.53.1.ppc64le.rpm mozilla-nss-devel-3.53.1-3.53.1.ppc64le.rpm mozilla-nss-sysinit-3.53.1-3.53.1.ppc64le.rpm mozilla-nss-tools-3.53.1-3.53.1.ppc64le.rpm libfreebl3-3.53.1-3.53.1.aarch64.rpm libfreebl3-hmac-3.53.1-3.53.1.aarch64.rpm libsoftokn3-3.53.1-3.53.1.aarch64.rpm libsoftokn3-hmac-3.53.1-3.53.1.aarch64.rpm mozilla-nss-3.53.1-3.53.1.aarch64.rpm mozilla-nss-certs-3.53.1-3.53.1.aarch64.rpm mozilla-nss-devel-3.53.1-3.53.1.aarch64.rpm mozilla-nss-sysinit-3.53.1-3.53.1.aarch64.rpm mozilla-nss-tools-3.53.1-3.53.1.aarch64.rpm openSUSE-SLE-15.3-2021-2249 Optional update for gnutls low SUSE Updates openSUSE-SLE 15.3 This update for gnutls does not fix any user visible issues. It is therefore optional to install. gnutls-3.6.7-14.13.5.src.rpm gnutls-3.6.7-14.13.5.x86_64.rpm gnutls-guile-3.6.7-14.13.5.x86_64.rpm libgnutls-devel-3.6.7-14.13.5.x86_64.rpm libgnutls-devel-32bit-3.6.7-14.13.5.x86_64.rpm libgnutls30-3.6.7-14.13.5.x86_64.rpm libgnutls30-32bit-3.6.7-14.13.5.x86_64.rpm libgnutls30-hmac-3.6.7-14.13.5.x86_64.rpm libgnutls30-hmac-32bit-3.6.7-14.13.5.x86_64.rpm libgnutlsxx-devel-3.6.7-14.13.5.x86_64.rpm libgnutlsxx28-3.6.7-14.13.5.x86_64.rpm gnutls-3.6.7-14.13.5.s390x.rpm gnutls-guile-3.6.7-14.13.5.s390x.rpm libgnutls-devel-3.6.7-14.13.5.s390x.rpm libgnutls30-3.6.7-14.13.5.s390x.rpm libgnutls30-hmac-3.6.7-14.13.5.s390x.rpm libgnutlsxx-devel-3.6.7-14.13.5.s390x.rpm libgnutlsxx28-3.6.7-14.13.5.s390x.rpm gnutls-3.6.7-14.13.5.ppc64le.rpm gnutls-guile-3.6.7-14.13.5.ppc64le.rpm libgnutls-devel-3.6.7-14.13.5.ppc64le.rpm libgnutls30-3.6.7-14.13.5.ppc64le.rpm libgnutls30-hmac-3.6.7-14.13.5.ppc64le.rpm libgnutlsxx-devel-3.6.7-14.13.5.ppc64le.rpm libgnutlsxx28-3.6.7-14.13.5.ppc64le.rpm gnutls-3.6.7-14.13.5.aarch64.rpm gnutls-guile-3.6.7-14.13.5.aarch64.rpm libgnutls-devel-3.6.7-14.13.5.aarch64.rpm libgnutls30-3.6.7-14.13.5.aarch64.rpm libgnutls30-hmac-3.6.7-14.13.5.aarch64.rpm libgnutlsxx-devel-3.6.7-14.13.5.aarch64.rpm libgnutlsxx28-3.6.7-14.13.5.aarch64.rpm openSUSE-SLE-15.3-2021-2285 Recommended update for yast2-apparmor moderate SUSE Updates openSUSE-SLE 15.3 This update for yast2-apparmor fixes the following issues: - Fixes a crash when the profiles list was empty (bsc#1186330) yast2-apparmor-4.3.2-3.3.1.noarch.rpm yast2-apparmor-4.3.2-3.3.1.src.rpm openSUSE-SLE-15.3-2021-2286 Recommended update for dosfstools moderate SUSE Updates openSUSE-SLE 15.3 This update for dosfstools fixes the following issue: - Fixed a bug that was causing an installation issue when trying to create an EFI partition on an NVMe-over-Fabrics device (bsc#1172863) dosfstools-4.1-3.3.1.src.rpm dosfstools-4.1-3.3.1.x86_64.rpm dosfstools-4.1-3.3.1.s390x.rpm dosfstools-4.1-3.3.1.ppc64le.rpm dosfstools-4.1-3.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-2870 Recommended update for yast2-packager moderate SUSE Updates openSUSE-SLE 15.3 This update for yast2-packager fixes the following issues: - Corrects package selection when on "armv7l" (bsc#1183795) yast2-packager-4.3.22-3.3.6.src.rpm yast2-packager-4.3.22-3.3.6.x86_64.rpm yast2-packager-4.3.22-3.3.6.s390x.rpm yast2-packager-4.3.22-3.3.6.ppc64le.rpm yast2-packager-4.3.22-3.3.6.aarch64.rpm openSUSE-SLE-15.3-2021-2171 Recommended update for btrfsmaintenance moderate SUSE Updates openSUSE-SLE 15.3 This update for btrfsmaintenance fixes the following issues: - Remove [Install] section from btrfsmaintenance. (bsc#1178874) btrfsmaintenance-0.4.2-3.3.1.noarch.rpm btrfsmaintenance-0.4.2-3.3.1.src.rpm openSUSE-SLE-15.3-2021-1958 Security update for libjpeg-turbo moderate SUSE Updates openSUSE-SLE 15.3 This update for libjpeg-turbo fixes the following issues: - CVE-2020-17541: Fixed a stack-based buffer overflow in the "transform" component (bsc#1186764). libjpeg-turbo-1.5.3-5.18.1.src.rpm libjpeg-turbo-1.5.3-5.18.1.x86_64.rpm libjpeg62-32bit-62.2.0-5.18.1.x86_64.rpm libjpeg62-62.2.0-5.18.1.x86_64.rpm libjpeg62-devel-32bit-62.2.0-5.18.1.x86_64.rpm libjpeg62-devel-62.2.0-5.18.1.x86_64.rpm libjpeg62-turbo-1.5.3-5.18.1.src.rpm libjpeg62-turbo-1.5.3-5.18.1.x86_64.rpm libjpeg8-32bit-8.1.2-5.18.1.x86_64.rpm libjpeg8-8.1.2-5.18.1.x86_64.rpm libjpeg8-devel-32bit-8.1.2-5.18.1.x86_64.rpm libjpeg8-devel-8.1.2-5.18.1.x86_64.rpm libturbojpeg0-32bit-8.1.2-5.18.1.x86_64.rpm libturbojpeg0-8.1.2-5.18.1.x86_64.rpm libjpeg-turbo-1.5.3-5.18.1.s390x.rpm libjpeg62-62.2.0-5.18.1.s390x.rpm libjpeg62-devel-62.2.0-5.18.1.s390x.rpm libjpeg62-turbo-1.5.3-5.18.1.s390x.rpm libjpeg8-8.1.2-5.18.1.s390x.rpm libjpeg8-devel-8.1.2-5.18.1.s390x.rpm libturbojpeg0-8.1.2-5.18.1.s390x.rpm libjpeg-turbo-1.5.3-5.18.1.ppc64le.rpm libjpeg62-62.2.0-5.18.1.ppc64le.rpm libjpeg62-devel-62.2.0-5.18.1.ppc64le.rpm libjpeg62-turbo-1.5.3-5.18.1.ppc64le.rpm libjpeg8-8.1.2-5.18.1.ppc64le.rpm libjpeg8-devel-8.1.2-5.18.1.ppc64le.rpm libturbojpeg0-8.1.2-5.18.1.ppc64le.rpm libjpeg-turbo-1.5.3-5.18.1.aarch64.rpm libjpeg62-62.2.0-5.18.1.aarch64.rpm libjpeg62-devel-62.2.0-5.18.1.aarch64.rpm libjpeg62-turbo-1.5.3-5.18.1.aarch64.rpm libjpeg8-8.1.2-5.18.1.aarch64.rpm libjpeg8-devel-8.1.2-5.18.1.aarch64.rpm libturbojpeg0-8.1.2-5.18.1.aarch64.rpm openSUSE-SLE-15.3-2021-2414 Security update for caribou important SUSE Updates openSUSE-SLE 15.3 This update for caribou fixes the following issues: Security issue fixed: - CVE-2021-3567: Fixed a segfault when attempting to use shifted characters (bsc#1186617). caribou-0.4.21-12.5.1.src.rpm caribou-0.4.21-12.5.1.x86_64.rpm caribou-common-0.4.21-12.5.1.x86_64.rpm caribou-devel-0.4.21-12.5.1.x86_64.rpm caribou-gtk-module-common-0.4.21-12.5.1.x86_64.rpm caribou-gtk2-module-0.4.21-12.5.1.x86_64.rpm caribou-gtk3-module-0.4.21-12.5.1.x86_64.rpm caribou-lang-0.4.21-12.5.1.noarch.rpm libcaribou0-0.4.21-12.5.1.x86_64.rpm typelib-1_0-Caribou-1_0-0.4.21-12.5.1.x86_64.rpm caribou-0.4.21-12.5.1.s390x.rpm caribou-common-0.4.21-12.5.1.s390x.rpm caribou-devel-0.4.21-12.5.1.s390x.rpm caribou-gtk-module-common-0.4.21-12.5.1.s390x.rpm caribou-gtk2-module-0.4.21-12.5.1.s390x.rpm caribou-gtk3-module-0.4.21-12.5.1.s390x.rpm libcaribou0-0.4.21-12.5.1.s390x.rpm typelib-1_0-Caribou-1_0-0.4.21-12.5.1.s390x.rpm caribou-0.4.21-12.5.1.ppc64le.rpm caribou-common-0.4.21-12.5.1.ppc64le.rpm caribou-devel-0.4.21-12.5.1.ppc64le.rpm caribou-gtk-module-common-0.4.21-12.5.1.ppc64le.rpm caribou-gtk2-module-0.4.21-12.5.1.ppc64le.rpm caribou-gtk3-module-0.4.21-12.5.1.ppc64le.rpm libcaribou0-0.4.21-12.5.1.ppc64le.rpm typelib-1_0-Caribou-1_0-0.4.21-12.5.1.ppc64le.rpm caribou-0.4.21-12.5.1.aarch64.rpm caribou-common-0.4.21-12.5.1.aarch64.rpm caribou-devel-0.4.21-12.5.1.aarch64.rpm caribou-gtk-module-common-0.4.21-12.5.1.aarch64.rpm caribou-gtk2-module-0.4.21-12.5.1.aarch64.rpm caribou-gtk3-module-0.4.21-12.5.1.aarch64.rpm libcaribou0-0.4.21-12.5.1.aarch64.rpm typelib-1_0-Caribou-1_0-0.4.21-12.5.1.aarch64.rpm openSUSE-SLE-15.3-2021-1879 Recommended update for libzypp, zypper important SUSE Updates openSUSE-SLE 15.3 This update for libzypp, zypper fixes the following issues: libzypp was updated to 17.26.0: - Work around download.o.o broken https redirects. - Allow trusted repos to add additional signing keys (bsc#1184326) Repositories signed with a trusted gpg key may import additional package signing keys. This is needed if different keys were used to sign the the packages shipped by the repository. - MediaCurl: Fix logging of redirects. - Use 15.3 resolver problem and solution texts on all distros. - $ZYPP_LOCK_TIMEOUT: Let negative values wait forever for the zypp lock (bsc#1184399) Helps boot time services like 'zypper purge-kernels' to wait for the zypp lock until other services using zypper have completed. - Fix purge-kernels is broken in Leap 15.3 (bsc#1185325) Leap 15.3 introduces a new kernel package called kernel-flavour-extra, which contain kmp's. Currently kmp's are detected by name ".*-kmp(-.*)?" but this does not work which those new packages. This patch fixes the problem by checking packages for kmod(*) and ksym(*) provides and only falls back to name checking if the package in question does not provide one of those. - Introduce zypp-runpurge, a tool to run purge-kernels on testcases. zypper was updated to 1.14.45: - Fix service detection with cgroupv2 (bsc#1184997) - Add hints to 'trust GPG key' prompt. - Add report when receiving new package signing keys from a trusted repo (bsc#1184326) - Added translation using Weblate (Kabyle) libsolv-0.7.19-6.1.src.rpm True libsolv-demo-0.7.19-6.1.x86_64.rpm True libsolv-devel-0.7.19-6.1.x86_64.rpm True libsolv-tools-0.7.19-6.1.x86_64.rpm True libzypp-17.26.0-9.1.src.rpm True libzypp-17.26.0-9.1.x86_64.rpm True libzypp-devel-17.26.0-9.1.x86_64.rpm True libzypp-devel-doc-17.26.0-9.1.x86_64.rpm True perl-solv-0.7.19-6.1.x86_64.rpm True python-solv-0.7.19-6.1.x86_64.rpm True python3-solv-0.7.19-6.1.x86_64.rpm True ruby-solv-0.7.19-6.1.x86_64.rpm True zypper-1.14.45-10.1.src.rpm True zypper-1.14.45-10.1.x86_64.rpm True zypper-aptitude-1.14.45-10.1.noarch.rpm True zypper-log-1.14.45-10.1.noarch.rpm True zypper-needs-restarting-1.14.45-10.1.noarch.rpm True libsolv-demo-0.7.19-6.1.s390x.rpm True libsolv-devel-0.7.19-6.1.s390x.rpm True libsolv-tools-0.7.19-6.1.s390x.rpm True libzypp-17.26.0-9.1.s390x.rpm True libzypp-devel-17.26.0-9.1.s390x.rpm True libzypp-devel-doc-17.26.0-9.1.s390x.rpm True perl-solv-0.7.19-6.1.s390x.rpm True python-solv-0.7.19-6.1.s390x.rpm True python3-solv-0.7.19-6.1.s390x.rpm True ruby-solv-0.7.19-6.1.s390x.rpm True zypper-1.14.45-10.1.s390x.rpm True libsolv-demo-0.7.19-6.1.ppc64le.rpm True libsolv-devel-0.7.19-6.1.ppc64le.rpm True libsolv-tools-0.7.19-6.1.ppc64le.rpm True libzypp-17.26.0-9.1.ppc64le.rpm True libzypp-devel-17.26.0-9.1.ppc64le.rpm True libzypp-devel-doc-17.26.0-9.1.ppc64le.rpm True perl-solv-0.7.19-6.1.ppc64le.rpm True python-solv-0.7.19-6.1.ppc64le.rpm True python3-solv-0.7.19-6.1.ppc64le.rpm True ruby-solv-0.7.19-6.1.ppc64le.rpm True zypper-1.14.45-10.1.ppc64le.rpm True libsolv-demo-0.7.19-6.1.aarch64.rpm True libsolv-devel-0.7.19-6.1.aarch64.rpm True libsolv-tools-0.7.19-6.1.aarch64.rpm True libzypp-17.26.0-9.1.aarch64.rpm True libzypp-devel-17.26.0-9.1.aarch64.rpm True libzypp-devel-doc-17.26.0-9.1.aarch64.rpm True perl-solv-0.7.19-6.1.aarch64.rpm True python-solv-0.7.19-6.1.aarch64.rpm True python3-solv-0.7.19-6.1.aarch64.rpm True ruby-solv-0.7.19-6.1.aarch64.rpm True zypper-1.14.45-10.1.aarch64.rpm True openSUSE-SLE-15.3-2021-2090 Optional update for p7zip low SUSE Updates openSUSE-SLE 15.3 This update for p7zip fixes the following issues: - Initial shipping of p7zip-full (bsc#1185910) p7zip-16.02-14.7.1.src.rpm p7zip-16.02-14.7.1.x86_64.rpm p7zip-doc-16.02-14.7.1.noarch.rpm p7zip-full-16.02-14.7.1.x86_64.rpm p7zip-16.02-14.7.1.s390x.rpm p7zip-full-16.02-14.7.1.s390x.rpm p7zip-16.02-14.7.1.ppc64le.rpm p7zip-full-16.02-14.7.1.ppc64le.rpm p7zip-16.02-14.7.1.aarch64.rpm p7zip-full-16.02-14.7.1.aarch64.rpm openSUSE-SLE-15.3-2021-2116 Recommended update for google-guest-configs moderate SUSE Updates openSUSE-SLE 15.3 This update for google-guest-configs contains the following fix: - Sync package in Public Cloud 15-SP3. google-guest-configs-20210317.00-1.13.1.noarch.rpm google-guest-configs-20210317.00-1.13.1.src.rpm openSUSE-SLE-15.3-2021-1995 Security update for xstream important SUSE Updates openSUSE-SLE 15.3 This update for xstream fixes the following issues: Upgrade to 1.4.17 - CVE-2021-29505: Fixed potential code execution when unmarshalling with XStream instances using an uninitialized security framework (bsc#1186651) xstream-1.4.17-3.11.2.noarch.rpm xstream-1.4.17-3.11.2.src.rpm xstream-benchmark-1.4.17-3.11.2.noarch.rpm xstream-javadoc-1.4.17-3.11.2.noarch.rpm xstream-parent-1.4.17-3.11.2.noarch.rpm openSUSE-SLE-15.3-2021-1935 Recommended update for gzip moderate SUSE Updates openSUSE-SLE 15.3 This update for gzip fixes the following issue: - gzip had a lower release number in 15 sp2 and sp3 than in 15 sp1, which could lead to migration issues. (bsc#1186642) gzip-1.10-7.1.src.rpm gzip-1.10-7.1.x86_64.rpm gzip-1.10-7.1.s390x.rpm gzip-1.10-7.1.ppc64le.rpm gzip-1.10-7.1.aarch64.rpm openSUSE-SLE-15.3-2021-1936 Recommended update for numactl moderate SUSE Updates openSUSE-SLE 15.3 This update for numactl fixes the following issue: - numactl had a lower release number in 15 sp3 than in earlier service packs, which could lead to migration issues. (bsc#1186642) libnuma-devel-2.0.14-7.1.x86_64.rpm libnuma1-2.0.14-7.1.x86_64.rpm libnuma1-32bit-2.0.14-7.1.x86_64.rpm numactl-2.0.14-7.1.src.rpm numactl-2.0.14-7.1.x86_64.rpm libnuma-devel-2.0.14-7.1.s390x.rpm libnuma1-2.0.14-7.1.s390x.rpm numactl-2.0.14-7.1.s390x.rpm libnuma-devel-2.0.14-7.1.ppc64le.rpm libnuma1-2.0.14-7.1.ppc64le.rpm numactl-2.0.14-7.1.ppc64le.rpm libnuma-devel-2.0.14-7.1.aarch64.rpm libnuma1-2.0.14-7.1.aarch64.rpm numactl-2.0.14-7.1.aarch64.rpm openSUSE-SLE-15.3-2021-2923 Security update for xen important SUSE Updates openSUSE-SLE 15.3 This update for xen fixes the following issues: Update to Xen 4.13.3 general bug fix release (bsc#1027519). Security issues fixed: - CVE-2021-28693: xen/arm: Boot modules are not scrubbed (bsc#1186428) - CVE-2021-28692: xen: inappropriate x86 IOMMU timeout detection / handling (bsc#1186429) - CVE-2021-0089: xen: Speculative Code Store Bypass (bsc#1186433) - CVE-2021-28690: xen: x86: TSX Async Abort protections not restored after S3 (bsc#1186434) - CVE-2021-28694,CVE-2021-28695,CVE-2021-28696: IOMMU page mapping issues on x86 (XSA-378)(bsc#1189373). - CVE-2021-28697: grant table v2 status pages may remain accessible after de-allocation (XSA-379)(bsc#1189376). - CVE-2021-28698: long running loops in grant table handling (XSA-380)(bsc#1189378). - CVE-2021-28699: inadequate grant-v2 status frames array bounds check (XSA-382)(bsc#1189380). - CVE-2021-28700: No memory limit for dom0less domUs (XSA-383)(bsc#1189381). Other issues fixed: - Fixed "Panic on CPU 0: IO-APIC + timer doesn't work!" (bsc#1180491) - Fixed an issue with xencommons, where file format expecations by fillup did not allign (bsc#1185682) - Fixed shell macro expansion in the spec file, so that ExecStart= in xendomains-wait-disks.service is created correctly (bsc#1183877) - Upstream bug fixes (bsc#1027519) - Fixed Xen SLES11SP4 guest hangs on cluster (bsc#1188050). - xl monitoring process exits during xl save -p|-c keep the monitoring process running to cleanup the domU during shutdown (bsc#1176189). - Dom0 hangs when pinning CPUs for dom0 with HVM guest (bsc#1179246). - Some long deprecated commands were finally removed in qemu6. Adjust libxl to use supported commands (bsc#1183243). - Update logrotate.conf, move global options into per-file sections to prevent globbering of global state (bsc#1187406). - Prevent superpage allocation in the LAPIC and ACPI_INFO range (bsc#1189882). xen-4.14.2_04-3.9.1.src.rpm xen-4.14.2_04-3.9.1.x86_64.rpm xen-devel-4.14.2_04-3.9.1.x86_64.rpm xen-doc-html-4.14.2_04-3.9.1.x86_64.rpm xen-libs-32bit-4.14.2_04-3.9.1.x86_64.rpm xen-libs-4.14.2_04-3.9.1.x86_64.rpm xen-tools-4.14.2_04-3.9.1.x86_64.rpm xen-tools-domU-4.14.2_04-3.9.1.x86_64.rpm xen-tools-xendomains-wait-disk-4.14.2_04-3.9.1.noarch.rpm xen-4.14.2_04-3.9.1.aarch64.rpm xen-devel-4.14.2_04-3.9.1.aarch64.rpm xen-doc-html-4.14.2_04-3.9.1.aarch64.rpm xen-libs-4.14.2_04-3.9.1.aarch64.rpm xen-tools-4.14.2_04-3.9.1.aarch64.rpm xen-tools-domU-4.14.2_04-3.9.1.aarch64.rpm openSUSE-SLE-15.3-2021-2248 Recommended update for sysstat low SUSE Updates openSUSE-SLE 15.3 This update for sysstat fixes the following issues: - Dropped systemd runtime requirement (bsc#1186827) sysstat-12.0.2-3.30.1.src.rpm sysstat-12.0.2-3.30.1.x86_64.rpm sysstat-isag-12.0.2-3.30.1.x86_64.rpm sysstat-12.0.2-3.30.1.s390x.rpm sysstat-isag-12.0.2-3.30.1.s390x.rpm sysstat-12.0.2-3.30.1.ppc64le.rpm sysstat-isag-12.0.2-3.30.1.ppc64le.rpm sysstat-12.0.2-3.30.1.aarch64.rpm sysstat-isag-12.0.2-3.30.1.aarch64.rpm openSUSE-SLE-15.3-2021-1937 Recommended update for nghttp2 moderate SUSE Updates openSUSE-SLE 15.3 This update for nghttp2 fixes the following issue: - The (lib)nghttp2 packages had a lower release number in SUSE Linux Enterprise 15 sp2 and sp3 than in 15 sp1, which could lead to migration issues. (bsc#1186642) libnghttp2-14-1.40.0-6.1.x86_64.rpm libnghttp2-14-32bit-1.40.0-6.1.x86_64.rpm libnghttp2-devel-1.40.0-6.1.x86_64.rpm libnghttp2_asio-devel-1.40.0-6.1.x86_64.rpm libnghttp2_asio1-1.40.0-6.1.x86_64.rpm libnghttp2_asio1-32bit-1.40.0-6.1.x86_64.rpm nghttp2-1.40.0-6.1.src.rpm nghttp2-1.40.0-6.1.x86_64.rpm libnghttp2-14-1.40.0-6.1.s390x.rpm libnghttp2-devel-1.40.0-6.1.s390x.rpm libnghttp2_asio-devel-1.40.0-6.1.s390x.rpm libnghttp2_asio1-1.40.0-6.1.s390x.rpm nghttp2-1.40.0-6.1.s390x.rpm libnghttp2-14-1.40.0-6.1.ppc64le.rpm libnghttp2-devel-1.40.0-6.1.ppc64le.rpm libnghttp2_asio-devel-1.40.0-6.1.ppc64le.rpm libnghttp2_asio1-1.40.0-6.1.ppc64le.rpm nghttp2-1.40.0-6.1.ppc64le.rpm libnghttp2-14-1.40.0-6.1.aarch64.rpm libnghttp2-devel-1.40.0-6.1.aarch64.rpm libnghttp2_asio-devel-1.40.0-6.1.aarch64.rpm libnghttp2_asio1-1.40.0-6.1.aarch64.rpm nghttp2-1.40.0-6.1.aarch64.rpm openSUSE-SLE-15.3-2021-2307 Recommended update for s390-tools moderate SUSE Updates openSUSE-SLE 15.3 This update for s390-tools fixes the following issues: - Fixed an issue with an incorrect output from the 'dasdfmt' command when *not* using "YaST mode". (bsc#1182816, bsc#1182820) - If more DASD volumes are to be formatted than are allowed by the "maximum number to do in parallel" parameter, dasdfmt waits until one of the child processes ends before starting another. For YaST to be able to figure out how many cylinders a particular DASD volume has, that information has to be output for all of the volumes, before any of the child processes are spawned. (bsc#1187012) libekmfweb1-2.15.1-8.5.1.s390x.rpm libekmfweb1-devel-2.15.1-8.5.1.s390x.rpm osasnmpd-2.15.1-8.5.1.s390x.rpm s390-tools-2.15.1-8.5.1.s390x.rpm s390-tools-2.15.1-8.5.1.src.rpm s390-tools-hmcdrvfs-2.15.1-8.5.1.s390x.rpm s390-tools-zdsfs-2.15.1-8.5.1.s390x.rpm openSUSE-SLE-15.3-2021-1941 Recommended update for sysconfig moderate SUSE Updates openSUSE-SLE 15.3 This update for sysconfig fixes the following issue: - sysconfig had a lower release number in 15 sp2 and sp3 than in 15 sp1, which could lead to migration issues. (bsc#1186642) sysconfig-0.85.6-6.1.src.rpm sysconfig-0.85.6-6.1.x86_64.rpm sysconfig-netconfig-0.85.6-6.1.x86_64.rpm sysconfig-0.85.6-6.1.s390x.rpm sysconfig-netconfig-0.85.6-6.1.s390x.rpm sysconfig-0.85.6-6.1.ppc64le.rpm sysconfig-netconfig-0.85.6-6.1.ppc64le.rpm sysconfig-0.85.6-6.1.aarch64.rpm sysconfig-netconfig-0.85.6-6.1.aarch64.rpm openSUSE-SLE-15.3-2021-1946 Recommended update for SUSEConnect moderate SUSE Updates openSUSE-SLE 15.3 This update for SUSEConnect fixes the following issue: - SUSEConnect had a lower release number in 15 sp2 and sp3 than in 15 sp1, which could lead to migration issues. (bsc#1186642) SUSEConnect-0.3.29-10.1.src.rpm SUSEConnect-0.3.29-10.1.x86_64.rpm SUSEConnect-0.3.29-10.1.s390x.rpm SUSEConnect-0.3.29-10.1.ppc64le.rpm SUSEConnect-0.3.29-10.1.aarch64.rpm openSUSE-SLE-15.3-2021-2197 Add anthy to SLE 15 SP3 moderate SUSE Updates openSUSE-SLE 15.3 Deliver package 'anthy' to SLE 15 SP3 channels so the ibus-anthy can be delivered for SP3 too. (jsc#ECO-3104) anthy-9100h-8.3.1.src.rpm anthy-9100h-8.3.1.x86_64.rpm anthy-devel-9100h-8.3.1.x86_64.rpm libanthy0-32bit-9100h-8.3.1.x86_64.rpm libanthy0-9100h-8.3.1.x86_64.rpm anthy-9100h-8.3.1.s390x.rpm anthy-devel-9100h-8.3.1.s390x.rpm libanthy0-9100h-8.3.1.s390x.rpm anthy-9100h-8.3.1.ppc64le.rpm anthy-devel-9100h-8.3.1.ppc64le.rpm libanthy0-9100h-8.3.1.ppc64le.rpm anthy-9100h-8.3.1.aarch64.rpm anthy-devel-9100h-8.3.1.aarch64.rpm libanthy0-9100h-8.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-2555 Security update for git moderate SUSE Updates openSUSE-SLE 15.3 This update for git fixes the following issues: Update from version 2.26.2 to version 2.31.1 (jsc#SLE-18152) Security fixes: - CVE-2021-21300: On case-insensitive file systems with support for symbolic links, if Git is configured globally to apply delay-capable clean/smudge filters (such as Git LFS), Git could run remote code during a clone. (bsc#1183026) Non security changes: - Add `sysusers` file to create `git-daemon` user. - Remove `perl-base` and `openssh-server` dependency on `git-core`and provide a `perl-Git` package. (jsc#SLE-17838) - `fsmonitor` bug fixes - Fix `git bisect` to take an annotated tag as a good/bad endpoint - Fix a corner case in `git mv` on case insensitive systems - Require only `openssh-clients` where possible (like Tumbleweed or SUSE Linux Enterprise >= 15 SP3). (bsc#1183580) - Drop `rsync` requirement, not necessary anymore. - Use of `pack-redundant` command is discouraged and will trigger a warning. The replacement is `repack -d`. - The `--format=%(trailers)` mechanism gets enhanced to make it easier to design output for machine consumption. - No longer give message to choose between rebase or merge upon pull if the history `fast-forwards`. - The configuration variable `core.abbrev` can be set to `no` to force no abbreviation regardless of the hash algorithm - `git rev-parse` can be explicitly told to give output as absolute or relative path with the `--path-format=(absolute|relative)` option. - Bash completion update to make it easier for end-users to add completion for their custom `git` subcommands. - `git maintenance` learned to drive scheduled maintenance on platforms whose native scheduling methods are not 'cron'. - After expiring a reflog and making a single commit, the reflog for the branch would record a single entry that knows both `@{0}` and `@{1}`, but we failed to answer "what commit were we on?", i.e. `@{1}` - `git bundle` learns `--stdin` option to read its refs from the standard input. Also, it now does not lose refs when they point at the same object. - `git log` learned a new `--diff-merges=<how>` option. - `git ls-files` can and does show multiple entries when the index is unmerged, which is a source for confusion unless `-s/-u` option is in use. A new option `--deduplicate` has been introduced. - `git worktree list` now annotates worktrees as prunable, shows locked and prunable attributes in `--porcelain mode`, and gained a `--verbose` option. - `git clone` tries to locally check out the branch pointed at by HEAD of the remote repository after it is done, but the protocol did not convey the information necessary to do so when copying an empty repository. The protocol v2 learned how to do so. - There are other ways than `..` for a single token to denote a `commit range", namely `<rev>^!` and `<rev>^-<n>`, but `git range-diff` did not understand them. - The `git range-diff` command learned `--(left|right)-only` option to show only one side of the compared range. - `git mergetool` feeds three versions (base, local and remote) of a conflicted path unmodified. The command learned to optionally prepare these files with unconflicted parts already resolved. - The `.mailmap` is documented to be read only from the root level of a working tree, but a stray file in a bare repository also was read by accident, which has been corrected. - `git maintenance` tool learned a new `pack-refs` maintenance task. - Improved error message given when a configuration variable that is expected to have a boolean value. - Signed commits and tags now allow verification of objects, whose two object names (one in SHA-1, the other in SHA-256) are both signed. - `git rev-list` command learned `--disk-usage` option. - `git diff`, `git log` `--{skip,rotate}-to=<path>` allows the user to discard diff output for early paths or move them to the end of the output. - `git difftool` learned `--skip-to=<path>` option to restart an interrupted session from an arbitrary path. - `git grep` has been tweaked to be limited to the sparse checkout paths. - `git rebase --[no-]fork-point` gained a configuration variable `rebase.forkPoint` so that users do not have to keep specifying a non-default setting. - `git stash` did not work well in a sparsely checked out working tree. - Newline characters in the host and path part of `git://` URL are now forbidden. - `Userdiff` updates for PHP, Rust, CSS - Avoid administrator error leading to data loss with `git push --force-with-lease[=<ref>]` by introducing `--force-if-includes` - only pull `asciidoctor` for the default ruby version - The `--committer-date-is-author-date` option of `rebase` and `am` subcommands lost the e-mail address by mistake in 2.29 - The transport protocol v2 has become the default again - `git worktree` gained a `repair` subcommand, `git init --separate-git-dir` no longer corrupts administrative data related to linked worktrees - `git maintenance` introduced for repository maintenance tasks - `fetch.writeCommitGraph` is deemed to be still a bit too risky and is no longer part of the `feature.experimental` set. - The commands in the `diff` family honors the `diff.relative` configuration variable. - `git diff-files` has been taught to say paths that are marked as `intent-to-add` are new files, not modified from an empty blob. - `git gui` now allows opening work trees from the start-up dialog. - `git bugreport` reports what shell is in use. - Some repositories have commits that record wrong committer timezone; `git fast-import` has an option to pass these timestamps intact to allow recreating existing repositories as-is. - `git describe` will always use the `long` version when giving its output based misplaced tags - `git pull` issues a warning message until the `pull.rebase` configuration variable is explicitly given git-2.31.1-10.3.1.src.rpm git-2.31.1-10.3.1.x86_64.rpm git-arch-2.31.1-10.3.1.x86_64.rpm git-core-2.31.1-10.3.1.x86_64.rpm git-credential-gnome-keyring-2.31.1-10.3.1.x86_64.rpm git-credential-libsecret-2.31.1-10.3.1.x86_64.rpm git-cvs-2.31.1-10.3.1.x86_64.rpm git-daemon-2.31.1-10.3.1.x86_64.rpm git-doc-2.31.1-10.3.1.noarch.rpm git-email-2.31.1-10.3.1.x86_64.rpm git-gui-2.31.1-10.3.1.x86_64.rpm git-p4-2.31.1-10.3.1.x86_64.rpm git-svn-2.31.1-10.3.1.x86_64.rpm git-web-2.31.1-10.3.1.x86_64.rpm gitk-2.31.1-10.3.1.x86_64.rpm perl-Git-2.31.1-10.3.1.x86_64.rpm git-2.31.1-10.3.1.s390x.rpm git-arch-2.31.1-10.3.1.s390x.rpm git-core-2.31.1-10.3.1.s390x.rpm git-credential-gnome-keyring-2.31.1-10.3.1.s390x.rpm git-credential-libsecret-2.31.1-10.3.1.s390x.rpm git-cvs-2.31.1-10.3.1.s390x.rpm git-daemon-2.31.1-10.3.1.s390x.rpm git-email-2.31.1-10.3.1.s390x.rpm git-gui-2.31.1-10.3.1.s390x.rpm git-p4-2.31.1-10.3.1.s390x.rpm git-svn-2.31.1-10.3.1.s390x.rpm git-web-2.31.1-10.3.1.s390x.rpm gitk-2.31.1-10.3.1.s390x.rpm perl-Git-2.31.1-10.3.1.s390x.rpm git-2.31.1-10.3.1.ppc64le.rpm git-arch-2.31.1-10.3.1.ppc64le.rpm git-core-2.31.1-10.3.1.ppc64le.rpm git-credential-gnome-keyring-2.31.1-10.3.1.ppc64le.rpm git-credential-libsecret-2.31.1-10.3.1.ppc64le.rpm git-cvs-2.31.1-10.3.1.ppc64le.rpm git-daemon-2.31.1-10.3.1.ppc64le.rpm git-email-2.31.1-10.3.1.ppc64le.rpm git-gui-2.31.1-10.3.1.ppc64le.rpm git-p4-2.31.1-10.3.1.ppc64le.rpm git-svn-2.31.1-10.3.1.ppc64le.rpm git-web-2.31.1-10.3.1.ppc64le.rpm gitk-2.31.1-10.3.1.ppc64le.rpm perl-Git-2.31.1-10.3.1.ppc64le.rpm git-2.31.1-10.3.1.aarch64.rpm git-arch-2.31.1-10.3.1.aarch64.rpm git-core-2.31.1-10.3.1.aarch64.rpm git-credential-gnome-keyring-2.31.1-10.3.1.aarch64.rpm git-credential-libsecret-2.31.1-10.3.1.aarch64.rpm git-cvs-2.31.1-10.3.1.aarch64.rpm git-daemon-2.31.1-10.3.1.aarch64.rpm git-email-2.31.1-10.3.1.aarch64.rpm git-gui-2.31.1-10.3.1.aarch64.rpm git-p4-2.31.1-10.3.1.aarch64.rpm git-svn-2.31.1-10.3.1.aarch64.rpm git-web-2.31.1-10.3.1.aarch64.rpm gitk-2.31.1-10.3.1.aarch64.rpm perl-Git-2.31.1-10.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-1955 Recommended update for webkit2gtk3 moderate SUSE Updates openSUSE-SLE 15.3 This update for webkit2gtk3 fixes the following issue: - webkit2gtk3 had a lower release number in 15 sp2 and sp3 than in 15 sp1, which could lead to migration issues. (bsc#1186642) libjavascriptcoregtk-4_0-18-2.32.0-6.7.x86_64.rpm libjavascriptcoregtk-4_0-18-32bit-2.32.0-6.7.x86_64.rpm libwebkit2gtk-4_0-37-2.32.0-6.7.x86_64.rpm libwebkit2gtk-4_0-37-32bit-2.32.0-6.7.x86_64.rpm libwebkit2gtk3-lang-2.32.0-6.7.noarch.rpm libwoff2common1_0_2-1.0.2-3.2.1.x86_64.rpm libwoff2common1_0_2-32bit-1.0.2-3.2.1.x86_64.rpm libwoff2dec1_0_2-1.0.2-3.2.1.x86_64.rpm libwoff2dec1_0_2-32bit-1.0.2-3.2.1.x86_64.rpm libwoff2enc1_0_2-1.0.2-3.2.1.x86_64.rpm libwoff2enc1_0_2-32bit-1.0.2-3.2.1.x86_64.rpm typelib-1_0-JavaScriptCore-4_0-2.32.0-6.7.x86_64.rpm typelib-1_0-WebKit2-4_0-2.32.0-6.7.x86_64.rpm typelib-1_0-WebKit2WebExtension-4_0-2.32.0-6.7.x86_64.rpm webkit-jsc-4-2.32.0-6.7.x86_64.rpm webkit2gtk-4_0-injected-bundles-2.32.0-6.7.x86_64.rpm webkit2gtk3-2.32.0-6.7.src.rpm webkit2gtk3-devel-2.32.0-6.7.x86_64.rpm webkit2gtk3-minibrowser-2.32.0-6.7.x86_64.rpm woff2-1.0.2-3.2.1.src.rpm woff2-devel-1.0.2-3.2.1.x86_64.rpm libjavascriptcoregtk-4_0-18-2.32.0-6.7.s390x.rpm libwebkit2gtk-4_0-37-2.32.0-6.7.s390x.rpm libwoff2common1_0_2-1.0.2-3.2.1.s390x.rpm libwoff2dec1_0_2-1.0.2-3.2.1.s390x.rpm libwoff2enc1_0_2-1.0.2-3.2.1.s390x.rpm typelib-1_0-JavaScriptCore-4_0-2.32.0-6.7.s390x.rpm typelib-1_0-WebKit2-4_0-2.32.0-6.7.s390x.rpm typelib-1_0-WebKit2WebExtension-4_0-2.32.0-6.7.s390x.rpm webkit-jsc-4-2.32.0-6.7.s390x.rpm webkit2gtk-4_0-injected-bundles-2.32.0-6.7.s390x.rpm webkit2gtk3-devel-2.32.0-6.7.s390x.rpm webkit2gtk3-minibrowser-2.32.0-6.7.s390x.rpm woff2-devel-1.0.2-3.2.1.s390x.rpm libjavascriptcoregtk-4_0-18-2.32.0-6.7.ppc64le.rpm libwebkit2gtk-4_0-37-2.32.0-6.7.ppc64le.rpm libwoff2common1_0_2-1.0.2-3.2.1.ppc64le.rpm libwoff2dec1_0_2-1.0.2-3.2.1.ppc64le.rpm libwoff2enc1_0_2-1.0.2-3.2.1.ppc64le.rpm typelib-1_0-JavaScriptCore-4_0-2.32.0-6.7.ppc64le.rpm typelib-1_0-WebKit2-4_0-2.32.0-6.7.ppc64le.rpm typelib-1_0-WebKit2WebExtension-4_0-2.32.0-6.7.ppc64le.rpm webkit-jsc-4-2.32.0-6.7.ppc64le.rpm webkit2gtk-4_0-injected-bundles-2.32.0-6.7.ppc64le.rpm webkit2gtk3-devel-2.32.0-6.7.ppc64le.rpm webkit2gtk3-minibrowser-2.32.0-6.7.ppc64le.rpm woff2-devel-1.0.2-3.2.1.ppc64le.rpm libjavascriptcoregtk-4_0-18-2.32.0-6.7.aarch64.rpm libwebkit2gtk-4_0-37-2.32.0-6.7.aarch64.rpm libwoff2common1_0_2-1.0.2-3.2.1.aarch64.rpm libwoff2dec1_0_2-1.0.2-3.2.1.aarch64.rpm libwoff2enc1_0_2-1.0.2-3.2.1.aarch64.rpm typelib-1_0-JavaScriptCore-4_0-2.32.0-6.7.aarch64.rpm typelib-1_0-WebKit2-4_0-2.32.0-6.7.aarch64.rpm typelib-1_0-WebKit2WebExtension-4_0-2.32.0-6.7.aarch64.rpm webkit-jsc-4-2.32.0-6.7.aarch64.rpm webkit2gtk-4_0-injected-bundles-2.32.0-6.7.aarch64.rpm webkit2gtk3-devel-2.32.0-6.7.aarch64.rpm webkit2gtk3-minibrowser-2.32.0-6.7.aarch64.rpm woff2-devel-1.0.2-3.2.1.aarch64.rpm openSUSE-SLE-15.3-2021-2091 Recommended update for wget moderate SUSE Updates openSUSE-SLE 15.3 This update for wget fixes the following issue: - When running recursively, wget will verify the length of the whole URL when saving the files. This will make it overwrite files with truncated names, throwing the following message: "The name is too long,... trying to shorten". (bsc#1181173) wget-1.20.3-3.12.1.src.rpm wget-1.20.3-3.12.1.x86_64.rpm wget-lang-1.20.3-3.12.1.noarch.rpm wget-1.20.3-3.12.1.s390x.rpm wget-1.20.3-3.12.1.ppc64le.rpm wget-1.20.3-3.12.1.aarch64.rpm openSUSE-SLE-15.3-2021-1933 Security update for ucode-intel important SUSE Updates openSUSE-SLE 15.3 This update for ucode-intel fixes the following issues: Updated to Intel CPU Microcode 20210608 release. - CVE-2020-24513: A domain bypass transient execution vulnerability was discovered on some Intel Atom processors that use a micro-architectural incident channel. (INTEL-SA-00465 bsc#1179833) See also: https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00465.html - CVE-2020-24511: The IBRS feature to mitigate Spectre variant 2 transient execution side channel vulnerabilities may not fully prevent non-root (guest) branches from controlling the branch predictions of the root (host) (INTEL-SA-00464 bsc#1179836) See also https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00464.html) - CVE-2020-24512: Fixed trivial data value cache-lines such as all-zero value cache-lines may lead to changes in cache-allocation or write-back behavior for such cache-lines (bsc#1179837 INTEL-SA-00464) See also https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00464.html) - CVE-2020-24489: Fixed Intel VT-d device pass through potential local privilege escalation (INTEL-SA-00442 bsc#1179839) See also https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00442.html Other fixes: - Update for functional issues. Refer to [Third Generation Intel Xeon Processor Scalable Family Specification Update](https://cdrdv2.intel.com/v1/dl/getContent/637780)for details. - Update for functional issues. Refer to [Second Generation Intel Xeon Processor Scalable Family Specification Update](https://cdrdv2.intel.com/v1/dl/getContent/338848) for details. - Update for functional issues. Refer to [Intel Xeon Processor Scalable Family Specification Update](https://cdrdv2.intel.com/v1/dl/getContent/613537) for details. - Update for functional issues. Refer to [Intel Xeon Processor D-1500, D-1500 NS and D-1600 NS Spec Update](https://www.intel.com/content/www/us/en/products/docs/processors/xeon/xeon-d-1500-specification-update.html) for details. - Update for functional issues. Refer to [Intel Xeon E7-8800 and E7-4800 v3 Processor Specification Update](https://www.intel.com/content/www/us/en/processors/xeon/xeon-e7-v3-spec-update.html) for details. - Update for functional issues. Refer to [Intel Xeon Processor E5 v3 Product Family Specification Update](https://www.intel.com/content/www/us/en/processors/xeon/xeon-e5-v3-spec-update.html?wapkw=processor+spec+update+e5) for details. - Update for functional issues. Refer to [10th Gen Intel Core Processor Families Specification Update](https://www.intel.com/content/www/us/en/products/docs/processors/core/10th-gen-core-families-specification-update.html) for details. - Update for functional issues. Refer to [8th and 9th Gen Intel Core Processor Family Spec Update](https://www.intel.com/content/www/us/en/products/docs/processors/core/8th-gen-core-spec-update.html) for details. - Update for functional issues. Refer to [7th Gen and 8th Gen (U Quad-Core) Intel Processor Families Specification Update](https://www.intel.com/content/www/us/en/processors/core/7th-gen-core-family-spec-update.html) for details. - Update for functional issues. Refer to [6th Gen Intel Processor Family Specification Update](https://cdrdv2.intel.com/v1/dl/getContent/332689) for details. - Update for functional issues. Refer to [Intel Xeon E3-1200 v6 Processor Family Specification Update](https://www.intel.com/content/www/us/en/processors/xeon/xeon-e3-1200v6-spec-update.html) for details. - Update for functional issues. Refer to [Intel Xeon E-2100 and E-2200 Processor Family Specification Update](https://www.intel.com/content/www/us/en/products/docs/processors/xeon/xeon-e-2100-specification-update.html) for details. - New platforms: | Processor | Stepping | F-M-S/PI | Old Ver | New Ver | Products |:---------------|:---------|:------------|:---------|:---------|:--------- | CLX-SP | A0 | 06-55-05/b7 | | 03000010 | Xeon Scalable Gen2 | ICX-SP | C0 | 06-6a-05/87 | | 0c0002f0 | Xeon Scalable Gen3 | ICX-SP | D0 | 06-6a-06/87 | | 0d0002a0 | Xeon Scalable Gen3 | SNR | B0 | 06-86-04/01 | | 0b00000f | Atom P59xxB | SNR | B1 | 06-86-05/01 | | 0b00000f | Atom P59xxB | TGL | B1 | 06-8c-01/80 | | 00000088 | Core Gen11 Mobile | TGL-R | C0 | 06-8c-02/c2 | | 00000016 | Core Gen11 Mobile | TGL-H | R0 | 06-8d-01/c2 | | 0000002c | Core Gen11 Mobile | EHL | B1 | 06-96-01/01 | | 00000011 | Pentium J6426/N6415, Celeron J6412/J6413/N6210/N6211, Atom x6000E | JSL | A0/A1 | 06-9c-00/01 | | 0000001d | Pentium N6000/N6005, Celeron N4500/N4505/N5100/N5105 | RKL-S | B0 | 06-a7-01/02 | | 00000040 | Core Gen11 - Updated platforms: | Processor | Stepping | F-M-S/PI | Old Ver | New Ver | Products |:---------------|:---------|:------------|:---------|:---------|:--------- | HSX-E/EP | Cx/M1 | 06-3f-02/6f | 00000044 | 00000046 | Core Gen4 X series; Xeon E5 v3 | HSX-EX | E0 | 06-3f-04/80 | 00000016 | 00000019 | Xeon E7 v3 | SKL-U/Y | D0 | 06-4e-03/c0 | 000000e2 | 000000ea | Core Gen6 Mobile | SKL-U23e | K1 | 06-4e-03/c0 | 000000e2 | 000000ea | Core Gen6 Mobile | BDX-ML | B0/M0/R0 | 06-4f-01/ef | 0b000038 | 0b00003e | Xeon E5/E7 v4; Core i7-69xx/68xx | SKX-SP | B1 | 06-55-03/97 | 01000159 | 0100015b | Xeon Scalable | SKX-SP | H0/M0/U0 | 06-55-04/b7 | 02006a0a | 02006b06 | Xeon Scalable | SKX-D | M1 | 06-55-04/b7 | 02006a0a | 02006b06 | Xeon D-21xx | CLX-SP | B0 | 06-55-06/bf | 04003006 | 04003102 | Xeon Scalable Gen2 | CLX-SP | B1 | 06-55-07/bf | 05003006 | 05003102 | Xeon Scalable Gen2 | CPX-SP | A1 | 06-55-0b/bf | 0700001e | 07002302 | Xeon Scalable Gen3 | BDX-DE | V2/V3 | 06-56-03/10 | 07000019 | 0700001b | Xeon D-1518/19/21/27/28/31/33/37/41/48, Pentium D1507/08/09/17/19 | BDX-DE | Y0 | 06-56-04/10 | 0f000017 | 0f000019 | Xeon D-1557/59/67/71/77/81/87 | BDX-NS | A0 | 06-56-05/10 | 0e00000f | 0e000012 | Xeon D-1513N/23/33/43/53 | APL | D0 | 06-5c-09/03 | 00000040 | 00000044 | Pentium N/J4xxx, Celeron N/J3xxx, Atom x5/7-E39xx | APL | E0 | 06-5c-0a/03 | 0000001e | 00000020 | Atom x5-E39xx | SKL-H/S | R0/N0 | 06-5e-03/36 | 000000e2 | 000000ea | Core Gen6; Xeon E3 v5 | DNV | B0 | 06-5f-01/01 | 0000002e | 00000034 | Atom C Series | GLK | B0 | 06-7a-01/01 | 00000034 | 00000036 | Pentium Silver N/J5xxx, Celeron N/J4xxx | GKL-R | R0 | 06-7a-08/01 | 00000018 | 0000001a | Pentium J5040/N5030, Celeron J4125/J4025/N4020/N4120 | ICL-U/Y | D1 | 06-7e-05/80 | 000000a0 | 000000a6 | Core Gen10 Mobile | LKF | B2/B3 | 06-8a-01/10 | 00000028 | 0000002a | Core w/Hybrid Technology | AML-Y22 | H0 | 06-8e-09/10 | 000000de | 000000ea | Core Gen8 Mobile | KBL-U/Y | H0 | 06-8e-09/c0 | 000000de | 000000ea | Core Gen7 Mobile | CFL-U43e | D0 | 06-8e-0a/c0 | 000000e0 | 000000ea | Core Gen8 Mobile | WHL-U | W0 | 06-8e-0b/d0 | 000000de | 000000ea | Core Gen8 Mobile | AML-Y42 | V0 | 06-8e-0c/94 | 000000de | 000000ea | Core Gen10 Mobile | CML-Y42 | V0 | 06-8e-0c/94 | 000000de | 000000ea | Core Gen10 Mobile | WHL-U | V0 | 06-8e-0c/94 | 000000de | 000000ea | Core Gen8 Mobile | KBL-G/H/S/E3 | B0 | 06-9e-09/2a | 000000de | 000000ea | Core Gen7; Xeon E3 v6 | CFL-H/S/E3 | U0 | 06-9e-0a/22 | 000000de | 000000ea | Core Gen8 Desktop, Mobile, Xeon E | CFL-S | B0 | 06-9e-0b/02 | 000000de | 000000ea | Core Gen8 | CFL-H/S | P0 | 06-9e-0c/22 | 000000de | 000000ea | Core Gen9 | CFL-H | R0 | 06-9e-0d/22 | 000000de | 000000ea | Core Gen9 Mobile | CML-H | R1 | 06-a5-02/20 | 000000e0 | 000000ea | Core Gen10 Mobile | CML-S62 | G1 | 06-a5-03/22 | 000000e0 | 000000ea | Core Gen10 | CML-S102 | Q0 | 06-a5-05/22 | 000000e0 | 000000ec | Core Gen10 | CML-U62 | A0 | 06-a6-00/80 | 000000e0 | 000000e8 | Core Gen10 Mobile | CML-U62 V2 | K0 | 06-a6-01/80 | 000000e0 | 000000ea | Core Gen10 Mobile ucode-intel-20210525-7.1.src.rpm True ucode-intel-20210525-7.1.x86_64.rpm True openSUSE-SLE-15.3-2021-2000 Recommended update for tomcat moderate SUSE Updates openSUSE-SLE 15.3 This update for tomcat fixes the following issue: - tomcat had a lower release number in 15 sp2 and sp3 than in 15 sp1, which could lead to migration issues. (bsc#1186642) tomcat-9.0.36-8.1.noarch.rpm tomcat-9.0.36-8.1.src.rpm tomcat-admin-webapps-9.0.36-8.1.noarch.rpm tomcat-docs-webapp-9.0.36-8.1.noarch.rpm tomcat-el-3_0-api-9.0.36-8.1.noarch.rpm tomcat-embed-9.0.36-8.1.noarch.rpm tomcat-javadoc-9.0.36-8.1.noarch.rpm tomcat-jsp-2_3-api-9.0.36-8.1.noarch.rpm tomcat-jsvc-9.0.36-8.1.noarch.rpm tomcat-lib-9.0.36-8.1.noarch.rpm tomcat-servlet-4_0-api-9.0.36-8.1.noarch.rpm tomcat-webapps-9.0.36-8.1.noarch.rpm openSUSE-SLE-15.3-2021-1975 Security update for the Linux Kernel important SUSE Updates openSUSE-SLE 15.3 The SUSE Linux Enterprise 15 SP3 Azure kernel was updated to receive various security and bugfixes. The following security bugs were fixed: - CVE-2021-33200: Enforcing incorrect limits for pointer arithmetic operations by the BPF verifier could be abused to perform out-of-bounds reads and writes in kernel memory (bsc#1186484). - CVE-2021-33034: Fixed a use-after-free when destroying an hci_chan. This could lead to writing an arbitrary values. (bsc#1186111) - CVE-2020-26139: Fixed a denial-of-service when an Access Point (AP) forwards EAPOL frames to other clients even though the sender has not yet successfully authenticated to the AP. (bnc#1186062) - CVE-2021-23134: A Use After Free vulnerability in nfc sockets allowed local attackers to elevate their privileges. (bnc#1186060) - CVE-2021-3491: Fixed a potential heap overflow in mem_rw(). This vulnerability is related to the PROVIDE_BUFFERS operation, which allowed the MAX_RW_COUNT limit to be bypassed (bsc#1185642). - CVE-2021-32399: Fixed a race condition when removing the HCI controller (bnc#1184611). - CVE-2020-24586: The 802.11 standard that underpins Wi-Fi Protected Access (WPA, WPA2, and WPA3) and Wired Equivalent Privacy (WEP) doesn't require that received fragments be cleared from memory after (re)connecting to a network. Under the right circumstances this can be abused to inject arbitrary network packets and/or exfiltrate user data (bnc#1185859). - CVE-2020-24587: The 802.11 standard that underpins Wi-Fi Protected Access (WPA, WPA2, and WPA3) and Wired Equivalent Privacy (WEP) doesn't require that all fragments of a frame are encrypted under the same key. An adversary can abuse this to decrypt selected fragments when another device sends fragmented frames and the WEP, CCMP, or GCMP encryption key is periodically renewed (bnc#1185859 bnc#1185862). - CVE-2020-24588: The 802.11 standard that underpins Wi-Fi Protected Access (WPA, WPA2, and WPA3) and Wired Equivalent Privacy (WEP) doesn't require that the A-MSDU flag in the plaintext QoS header field is authenticated. Against devices that support receiving non-SSP A-MSDU frames (which is mandatory as part of 802.11n), an adversary can abuse this to inject arbitrary network packets. (bnc#1185861) - CVE-2020-26147: The WEP, WPA, WPA2, and WPA3 implementations reassemble fragments, even though some of them were sent in plaintext. This vulnerability can be abused to inject packets and/or exfiltrate selected fragments when another device sends fragmented frames and the WEP, CCMP, or GCMP data-confidentiality protocol is used (bnc#1185859). - CVE-2020-26145: An issue was discovered with Samsung Galaxy S3 i9305 4.4.4 devices. The WEP, WPA, WPA2, and WPA3 implementations accept second (or subsequent) broadcast fragments even when sent in plaintext and process them as full unfragmented frames. An adversary can abuse this to inject arbitrary network packets independent of the network configuration. (bnc#1185860) - CVE-2020-26141: An issue was discovered in the ALFA driver for AWUS036H, where the Message Integrity Check (authenticity) of fragmented TKIP frames was not verified. An adversary can abuse this to inject and possibly decrypt packets in WPA or WPA2 networks that support the TKIP data-confidentiality protocol. (bnc#1185987) - CVE-2021-29650: Fixed an issue with the netfilter subsystem that allowed attackers to cause a denial of service (panic) because net/netfilter/x_tables.c and include/linux/netfilter/x_tables.h lack a full memory barrier upon the assignment of a new table value (bnc#1184208). - CVE-2021-29155: Fixed an issue that was discovered in kernel/bpf/verifier.c that performs undesirable out-of-bounds speculation on pointer arithmetic, leading to side-channel attacks that defeat Spectre mitigations and obtain sensitive information from kernel memory. Specifically, for sequences of pointer arithmetic operations, the pointer modification performed by the first operation was not correctly accounted for when restricting subsequent operations (bnc#1184942). - CVE-2021-3444: Fixed an issue with the bpf verifier which did not properly handle mod32 destination register truncation when the source register was known to be 0 leading to out of bounds read (bsc#1184170). - CVE-2021-3428: Fixed an integer overflow in ext4_es_cache_extent (bsc#1173485). - CVE-2021-29647: Fixed an issue in qrtr_recvmsg which could have allowed attackers to obtain sensitive information from kernel memory because of a partially uninitialized data structure (bsc#1184192 ). - CVE-2021-29265: Fixed an issue in usbip_sockfd_store which could have allowed attackers to cause a denial of service due to race conditions during an update of the local and shared status (bsc#1184167). - CVE-2021-29264: Fixed an issue in the Freescale Gianfar Ethernet driver which could have allowed attackers to cause a system crash due to a calculation of negative fragment size (bsc#1184168). - CVE-2021-28972: Fixed a user-tolerable buffer overflow when writing a new device name to the driver from userspace, allowing userspace to write data to the kernel stack frame directly (bsc#1184198). - CVE-2021-28971: Fixed an issue in intel_pmu_drain_pebs_nhm which could have caused a system crash because the PEBS status in a PEBS record was mishandled (bsc#1184196 ). - CVE-2021-28964: Fixed a race condition in get_old_root which could have allowed attackers to cause a denial of service (bsc#1184193). - CVE-2021-28688: Fixed an issue introduced by XSA-365 (bsc#1183646). - CVE-2021-28660: Fixed an out of bounds write in rtw_wx_set_scan (bsc#1183593 ). - CVE-2021-28375: Fixed an issue in fastrpc_internal_invoke which did not prevent user applications from sending kernel RPC messages (bsc#1183596). - CVE-2021-28038: Fixed an issue with the netback driver which was lacking necessary treatment of errors such as failed memory allocations (bsc#1183022). - CVE-2021-27365: Fixed an issue where an unprivileged user can send a Netlink message that is associated with iSCSI, and has a length up to the maximum length of a Netlink message (bsc#1182715). - CVE-2021-27364: Fixed an issue where an attacker could craft Netlink messages (bsc#1182717). - CVE-2021-27363: Fixed a kernel pointer leak which could have been used to determine the address of the iscsi_transport structure (bsc#1182716). - CVE-2020-35519: Fixed an out-of-bounds memory access was found in x25_bind (bsc#1183696). - CVE-2020-27815: Fixed an issue in JFS filesystem where could have allowed an attacker to execute code (bsc#1179454). - CVE-2020-27171: Fixed an off-by-one error affecting out-of-bounds speculation on pointer arithmetic, leading to side-channel attacks that defeat Spectre mitigations and obtain sensitive information from kernel memory (bsc#1183775). - CVE-2020-27170: Fixed potential side-channel attacks that defeat Spectre mitigations and obtain sensitive information from kernel memory (bsc#1183686). - CVE-2019-19769: Fixed a use-after-free in the perf_trace_lock_acquire function (bsc#1159280 ). - CVE-2019-18814: Fixed a use-after-free when aa_label_parse() fails in aa_audit_rule_init() (bsc#1156256). - CVE-2021-3483: Fixed a use-after-free in nosy.c (bsc#1184393). - CVE-2021-30002: Fixed a memory leak for large arguments in video_usercopy (bsc#1184120). - CVE-2021-29154: Fixed incorrect computation of branch displacements, allowing arbitrary code execution (bsc#1184391). - CVE-2021-28950: Fixed an issue in fs/fuse/fuse_i.h due to a retry loop continually was finding the same bad inode (bsc#1184194). - CVE-2021-28952: Fixed a buffer overflow in the soundwire device driver, triggered when an unexpected port ID number is encountered. (bnc#1184197). - CVE-2021-20268: Fixed an out-of-bounds access flaw in the implementation of the eBPF code verifier. This flaw allowed a local user to crash the system or possibly escalate their privileges. (bnc#1183077) - CVE-2020-27673: Fixed a vulnerability with xen, where guest OS users could cause a denial of service (host OS hang) via a high rate of events to dom0 (bnc#1177411). - CVE-2020-36312: Fixed a memory leak upon a kmalloc failure (bsc#1184509 ). - CVE-2020-36311: Fixed a denial of service (soft lockup) by triggering destruction of a large SEV VM (bsc#1184511). - CVE-2020-36310: Fixed infinite loop for certain nested page faults (bsc#1184512). - CVE-2021-3489: Fixed an issue where the eBPF RINGBUF bpf_ringbuf_reserve did not check that the allocated size was smaller than the ringbuf size (bnc#1185640). - CVE-2021-3490: Fixed an issue where the eBPF ALU32 bounds tracking for bitwise ops (AND, OR and XOR) did not update the 32-bit bounds (bnc#1185641 bnc#1185796 ). - CVE-2020-36322: Fixed an issue was discovered in FUSE filesystem implementation which could have caused a system crash (bsc#1184211). - CVE-2020-25670, CVE-2020-25671, CVE-2020-25672, CVE-2020-25673: Fixed multiple bugs in NFC subsytem (bsc#1178181). The following non-security bugs were fixed: - ACPI / hotplug / PCI: Fix reference count leak in enable_slot() (git-fixes). - ACPI / idle: override c-state latency when not in conformance with s0ix (bsc#1185840). - ACPI: CPPC: Replace cppc_attr with kobj_attribute (git-fixes). - ACPI: GTDT: Do not corrupt interrupt mappings on watchdow probe failure (git-fixes). - ACPI: PM: Add ACPI ID of Alder Lake Fan (git-fixes). - ACPI: PM: s2idle: Add AMD support to handle _DSM (bsc#1185840). - ACPI: PM: s2idle: Add missing LPS0 functions for AMD (bsc#1185840). - ACPI: PM: s2idle: Drop unused local variables and related code (bsc#1185840). - ACPI: PM: s2idle: Move x86-specific code to the x86 directory (bsc#1185840). - ACPI: custom_method: fix a possible memory leak (git-fixes). - ACPI: custom_method: fix potential use-after-free issue (git-fixes). - ACPI: processor: Fix CPU0 wakeup in acpi_idle_play_dead() (git-fixes). - ACPI: processor: Fix build when CONFIG_ACPI_PROCESSOR=m (git-fixes). - ACPI: scan: Rearrange memory allocation in acpi_device_add() (git-fixes). - ACPI: video: Add DMI quirk for GIGABYTE GB-BXBT-2807 (git-fixes). - ACPI: video: Add missing callback back for Sony VPCEH3U1E (git-fixes). - ACPICA: Always create namespace nodes using acpi_ns_create_node() (git-fixes). - ACPICA: Enable sleep button on ACPI legacy wake (bsc#1181383). - ACPICA: Fix race in generic_serial_bus (I2C) and GPIO op_region parameter handling (git-fixes). - ALSA: Convert strlcpy to strscpy when return value is unused (git-fixes). - ALSA: aloop: Fix initialization of controls (git-fixes). - ALSA: bebob/oxfw: fix Kconfig entry for Mackie d.2 Pro (git-fixes). - ALSA: bebob: enable to deliver MIDI messages for multiple ports (git-fixes). - ALSA: core: remove redundant spin_lock pair in snd_card_disconnect (git-fixes). - ALSA: dice: fix null pointer dereference when node is disconnected (git-fixes). - ALSA: dice: fix stream format at middle sampling rate for Alesis iO 26 (git-fixes). - ALSA: dice: fix stream format for TC Electronic Konnekt Live at high sampling transfer frequency (git-fixes). - ALSA: emu8000: Fix a use after free in snd_emu8000_create_mixer (git-fixes). - ALSA: firewire-lib: fix amdtp_packet tracepoints event for packet_index field (git-fixes). - ALSA: firewire-lib: fix calculation for size of IR context payload (git-fixes). - ALSA: firewire-lib: fix check for the size of isochronous packet payload (git-fixes). - ALSA: hda/ca0132: Add Sound BlasterX AE-5 Plus support (git-fixes). - ALSA: hda/cirrus: Add Headphone and Headset MIC Volume Control (git-fixes). - ALSA: hda/cirrus: Add error handling into CS8409 I2C functions (git-fixes). - ALSA: hda/cirrus: Add jack detect interrupt support from CS42L42 companion codec (git-fixes). - ALSA: hda/cirrus: Add support for CS8409 HDA bridge and CS42L42 companion codec (git-fixes). - ALSA: hda/cirrus: Cleanup patch_cirrus.c code (git-fixes). - ALSA: hda/cirrus: Fix CS42L42 Headset Mic volume control name (git-fixes). - ALSA: hda/cirrus: Make CS8409 driver more generic by using fixups (git-fixes). - ALSA: hda/cirrus: Set Initial DMIC volume for Bullseye to -26 dB (git-fixes). - ALSA: hda/cirrus: Use CS8409 filter to fix abnormal sounds on Bullseye (git-fixes). - ALSA: hda/conexant: Add quirk for mute LED control on HP ZBook G5 (git-fixes). - ALSA: hda/conexant: Apply quirk for another HP ZBook G5 model (git-fixes). - ALSA: hda/conexant: Re-order CX5066 quirk table entries (git-fixes). - ALSA: hda/conexant: Re-order CX5066 quirk table entries (git-fixes). - ALSA: hda/hdmi: Cancel pending works before suspend (bsc#1182377). - ALSA: hda/hdmi: Cancel pending works before suspend (git-fixes). - ALSA: hda/hdmi: fix race in handling acomp ELD notification at resume (git-fixes). - ALSA: hda/realtek - Headset Mic issue on HP platform (git-fixes). - ALSA: hda/realtek: ALC285 Thinkpad jack pin quirk is unreachable (git-fixes). - ALSA: hda/realtek: Add fixup for HP OMEN laptop (git-fixes). - ALSA: hda/realtek: Add fixup for HP Spectre x360 15-df0xxx (git-fixes). - ALSA: hda/realtek: Add quirk for Intel Clevo PCx0Dx (git-fixes). - ALSA: hda/realtek: Add quirk for Lenovo Ideapad S740 (git-fixes). - ALSA: hda/realtek: Add some CLOVE SSIDs of ALC293 (git-fixes). - ALSA: hda/realtek: Apply headset-mic quirks for Xiaomi Redmibook Air (git-fixes). - ALSA: hda/realtek: Chain in pop reduction fixup for ThinkStation P340 (git-fixes). - ALSA: hda/realtek: Enable mute/micmute LEDs and limit mic boost on EliteBook 845 G8 (git-fixes). - ALSA: hda/realtek: Fix silent headphone output on ASUS UX430UA (git-fixes). - ALSA: hda/realtek: Fix speaker amp on HP Envy AiO 32 (git-fixes). - ALSA: hda/realtek: Fix speaker amp setup on Acer Aspire E1 (git-fixes). - ALSA: hda/realtek: GA503 use same quirks as GA401 (git-fixes). - ALSA: hda/realtek: Headphone volume is controlled by Front mixer (git-fixes). - ALSA: hda/realtek: Re-order ALC269 ASUS quirk table entries (git-fixes). - ALSA: hda/realtek: Re-order ALC269 Acer quirk table entries (git-fixes). - ALSA: hda/realtek: Re-order ALC269 Dell quirk table entries (git-fixes). - ALSA: hda/realtek: Re-order ALC269 HP quirk table entries (git-fixes). - ALSA: hda/realtek: Re-order ALC269 Lenovo quirk table entries (git-fixes). - ALSA: hda/realtek: Re-order ALC269 Sony quirk table entries (git-fixes). - ALSA: hda/realtek: Re-order ALC662 quirk table entries (git-fixes). - ALSA: hda/realtek: Re-order ALC882 Acer quirk table entries (git-fixes). - ALSA: hda/realtek: Re-order ALC882 Clevo quirk table entries (git-fixes). - ALSA: hda/realtek: Re-order ALC882 Sony quirk table entries (git-fixes). - ALSA: hda/realtek: Re-order remaining ALC269 quirk table entries (git-fixes). - ALSA: hda/realtek: Remove redundant entry for ALC861 Haier/Uniwill devices (git-fixes). - ALSA: hda/realtek: apply pin quirk for XiaomiNotebook Pro (git-fixes). - ALSA: hda/realtek: call alc_update_headset_mode() in hp_automute_hook (git-fixes). - ALSA: hda/realtek: fix a determine_headset_type issue for a Dell AIO (git-fixes). - ALSA: hda/realtek: fix mic boost on Intel NUC 8 (git-fixes). - ALSA: hda/realtek: fix mute/micmute LEDs and speaker for HP Zbook Fury 15 G8 (git-fixes). - ALSA: hda/realtek: fix mute/micmute LEDs and speaker for HP Zbook Fury 17 G8 (git-fixes). - ALSA: hda/realtek: fix mute/micmute LEDs and speaker for HP Zbook G8 (git-fixes). - ALSA: hda/realtek: fix mute/micmute LEDs for HP 440 G8 (git-fixes). - ALSA: hda/realtek: fix mute/micmute LEDs for HP 640 G8 (git-fixes). - ALSA: hda/realtek: fix mute/micmute LEDs for HP 840 G8 (git-fixes). - ALSA: hda/realtek: fix mute/micmute LEDs for HP 850 G8 (git-fixes). - ALSA: hda/realtek: fix mute/micmute LEDs for HP 855 G8 (git-fixes). - ALSA: hda/realtek: fix mute/micmute LEDs for HP ProBook 445 G7 (git-fixes). - ALSA: hda/realtek: fix static noise on ALC285 Lenovo laptops (git-fixes). - ALSA: hda/realtek: reset eapd coeff to default value for alc287 (git-fixes). - ALSA: hda/realtek: the bass speaker can't output sound on Yoga 9i (git-fixes). - ALSA: hda: Add missing sanity checks in PM prepare/complete callbacks (git-fixes). - ALSA: hda: Avoid spurious unsol event handling during S3/S4 (bsc#1182377). - ALSA: hda: Avoid spurious unsol event handling during S3/S4 (git-fixes). - ALSA: hda: Drop the BATCH workaround for AMD controllers (git-fixes). - ALSA: hda: Flush pending unsolicited events before suspend (bsc#1182377). - ALSA: hda: Re-add dropped snd_poewr_change_state() calls (git-fixes). - ALSA: hda: fixup headset for ASUS GU502 laptop (git-fixes). - ALSA: hda: fixup headset for ASUS GU502 laptop (git-fixes). - ALSA: hda: generic: Fix the micmute led init state (git-fixes). - ALSA: hda: generic: change the DAC ctl name for LO+SPK or LO+HP (git-fixes). - ALSA: hda: ignore invalid NHLT table (git-fixes). - ALSA: hdsp: do not disable if not enabled (git-fixes). - ALSA: hdspm: do not disable if not enabled (git-fixes). - ALSA: intel8x0: Do not update period unless prepared (git-fixes). - ALSA: line6: Fix racy initialization of LINE6 MIDI (git-fixes). - ALSA: rme9652: do not disable if not enabled (git-fixes). - ALSA: sb: Fix two use after free in snd_sb_qsound_build (git-fixes). - ALSA: usb-audio: Add DJM-450 to the quirks table (git-fixes). - ALSA: usb-audio: Add DJM450 to Pioneer format quirk (git-fixes). - ALSA: usb-audio: Add DJM450 to Pioneer format quirk (git-fixes). - ALSA: usb-audio: Add DJM750 to Pioneer mixer quirk (git-fixes). - ALSA: usb-audio: Add MIDI quirk for Vox ToneLab EX (git-fixes). - ALSA: usb-audio: Add Pioneer DJM-850 to quirks-table (git-fixes). - ALSA: usb-audio: Add dB range mapping for Sennheiser Communications Headset PC 8 (git-fixes). - ALSA: usb-audio: Add error checks for usb_driver_claim_interface() calls (git-fixes). - ALSA: usb-audio: Add implicit feeback support for the BOSS GT-1 (git-fixes). - ALSA: usb-audio: Add support for Pioneer DJM-750 (git-fixes). - ALSA: usb-audio: Add support for many Roland devices' implicit feedback quirks (git-fixes). - ALSA: usb-audio: Apply implicit feedback mode for BOSS devices (git-fixes). - ALSA: usb-audio: Apply sample rate quirk to Logitech Connect (git-fixes). - ALSA: usb-audio: Carve out connector value checking into a helper (git-fixes). - ALSA: usb-audio: Check connector value on resume (git-fixes). - ALSA: usb-audio: Configure Pioneer DJM-850 samplerate (git-fixes). - ALSA: usb-audio: Convert remaining strlcpy() to strscpy() (git-fixes). - ALSA: usb-audio: Convert the last strlcpy() usage (git-fixes). - ALSA: usb-audio: DJM-750: ensure format is set (git-fixes). - ALSA: usb-audio: Declare Pioneer DJM-850 mixer controls (git-fixes). - ALSA: usb-audio: Drop implicit fb quirk entries dubbed for capture (git-fixes). - ALSA: usb-audio: Explicitly set up the clock selector (git-fixes). - ALSA: usb-audio: Fix "RANGE setting not yet supported" errors (git-fixes). - ALSA: usb-audio: Fix Pioneer DJM devices URB_CONTROL request direction to set samplerate (git-fixes). - ALSA: usb-audio: Fix Pioneer DJM devices URB_CONTROL request direction to set samplerate (git-fixes). - ALSA: usb-audio: Fix implicit sync clearance at stopping stream (git-fixes). - ALSA: usb-audio: Fix potential out-of-bounce access in MIDI EP parser (git-fixes). - ALSA: usb-audio: Fix unintentional sign extension issue (git-fixes). - ALSA: usb-audio: Generic application of implicit fb to Roland/BOSS devices (git-fixes). - ALSA: usb-audio: Re-apply implicit feedback mode to Pioneer devices (git-fixes). - ALSA: usb-audio: Remove redundant assignment to len (git-fixes). - ALSA: usb-audio: Skip probe of UA-101 devices (git-fixes). - ALSA: usb-audio: Skip the clock selector inquiry for single connections (git-fixes). - ALSA: usb-audio: Validate MS endpoint descriptors (git-fixes). - ALSA: usb-audio: add mixer quirks for Pioneer DJM-900NXS2 (git-fixes). - ALSA: usb-audio: fix NULL ptr dereference in usb_audio_probe (bsc#1182552). - ALSA: usb-audio: fix Pioneer DJM-850 control label info (git-fixes). - ALSA: usb-audio: fix control-request direction (git-fixes). - ALSA: usb-audio: fix use after free in usb_audio_disconnect (bsc#1182552). - ALSA: usb-audio: generate midi streaming substream names from jack names (git-fixes). - ALSA: usb-audio: scarlett2: Fix device hang with ehci-pci (git-fixes). - ALSA: usb-audio: scarlett2: Improve driver startup messages (git-fixes). - ALSA: usb-audio: scarlett2: snd_scarlett_gen2_controls_create() can be static (git-fixes). - ALSA: usb-audio: use usb headers rather than define structs locally (git-fixes). - ALSA: usb: Use DIV_ROUND_UP() instead of open-coding it (git-fixes). - ALSA: usb: midi: do not return -ENOMEM when usb_urb_ep_type_check fails (git-fixes). - ARM64: vdso32: Install vdso32 from vdso_install (git-fixes). - ASoC: Intel: Add DMI quirk table to soc_intel_is_byt_cr() (git-fixes). - ASoC: Intel: boards: sof-wm8804: add check for PLL setting (git-fixes). - ASoC: Intel: bytcr_rt5640: Add quirk for ARCHOS Cesium 140 (git-fixes). - ASoC: Intel: bytcr_rt5640: Add quirk for the Acer One S1002 tablet (git-fixes). - ASoC: Intel: bytcr_rt5640: Add quirk for the Chuwi Hi8 tablet (git-fixes). - ASoC: Intel: bytcr_rt5640: Add quirk for the Estar Beauty HD MID 7316R tablet (git-fixes). - ASoC: Intel: bytcr_rt5640: Add quirk for the Voyo Winpad A15 tablet (git-fixes). - ASoC: Intel: bytcr_rt5640: Enable jack-detect support on Asus T100TAF (git-fixes). - ASoC: Intel: bytcr_rt5640: Fix HP Pavilion x2 10-p0XX OVCD current threshold (git-fixes). - ASoC: Intel: bytcr_rt5651: Add quirk for the Jumper EZpad 7 tablet (git-fixes). - ASoC: Intel: kbl_da7219_max98927: Fix kabylake_ssp_fixup function (git-fixes). - ASoC: Intel: sof_sdw: add quirk for HP Spectre x360 convertible (git-fixes). - ASoC: Intel: sof_sdw: add quirk for new ADL-P Rvp (git-fixes). - ASoC: Intel: sof_sdw: reorganize quirks by generation (git-fixes). - ASoC: SOF: Intel: HDA: fix core status verification (git-fixes). - ASoC: SOF: Intel: HDA: fix core status verification (git-fixes). - ASoC: SOF: Intel: hda: remove unnecessary parentheses (git-fixes). - ASoC: SOF: Intel: unregister DMIC device on probe error (git-fixes). - ASoC: SOF: intel: fix wrong poll bits in dsp power down (git-fixes). - ASoC: ak4458: Add MODULE_DEVICE_TABLE (git-fixes). - ASoC: ak5558: Add MODULE_DEVICE_TABLE (git-fixes). - ASoC: ak5558: Fix s/show/slow/ typo (git-fixes). - ASoC: ak5558: correct reset polarity (git-fixes). - ASoC: codecs: wcd934x: add a sanity check in set channel map (git-fixes). - ASoC: cs35l33: fix an error code in probe() (git-fixes). - ASoC: cs42l42: Always wait at least 3ms after reset (git-fixes). - ASoC: cs42l42: Do not enable/disable regulator at Bias Level (git-fixes). - ASoC: cs42l42: Fix Bitclock polarity inversion (git-fixes). - ASoC: cs42l42: Fix channel width support (git-fixes). - ASoC: cs42l42: Fix mixer volume control (git-fixes). - ASoC: cs42l42: Regmap must use_single_read/write (git-fixes). - ASoC: cygnus: fix for_each_child.cocci warnings (git-fixes). - ASoC: es8316: Simplify adc_pga_gain_tlv table (git-fixes). - ASoC: fsl_esai: Fix TDM slot setup for I2S mode (git-fixes). - ASoC: fsl_ssi: Fix TDM slot setup for I2S mode (git-fixes). - ASoC: intel: atom: Remove 44100 sample-rate from the media and deep-buffer DAI descriptions (git-fixes). - ASoC: intel: atom: Stop advertising non working S24LE support (git-fixes). - ASoC: max98373: Added 30ms turn on/off time delay (git-fixes). - ASoC: max98373: Changed amp shutdown register as volatile (git-fixes). - ASoC: qcom: lpass-cpu: Fix lpass dai ids parse (git-fixes). - ASoC: qcom: sdm845: Fix array out of bounds access (git-fixes). - ASoC: qcom: sdm845: Fix array out of range on rx slim channels (git-fixes). - ASoC: rsnd: call rsnd_ssi_master_clk_start() from rsnd_ssi_init() (git-fixes). - ASoC: rsnd: check all BUSIF status when error (git-fixes). - ASoC: rsnd: core: Check convert rate in rsnd_hw_params (git-fixes). - ASoC: rt1015: fix i2c communication error (git-fixes). - ASoC: rt286: Generalize support for ALC3263 codec (git-fixes). - ASoC: rt286: Make RT286_SET_GPIO_* readable and writable (git-fixes). - ASoC: rt5640: Fix dac- and adc- vol-tlv values being off by a factor of 10 (git-fixes). - ASoC: rt5651: Fix dac- and adc- vol-tlv values being off by a factor of 10 (git-fixes). - ASoC: rt5659: Update MCLK rate in set_sysclk() (git-fixes). - ASoC: rt5670: Add a quirk for the Dell Venue 10 Pro 5055 (git-fixes). - ASoC: rt5670: Add emulated 'DAC1 Playback Switch' control (git-fixes). - ASoC: rt5670: Remove 'HP Playback Switch' control (git-fixes). - ASoC: rt5670: Remove 'OUT Channel Switch' control (git-fixes). - ASoC: rt5670: Remove ADC vol-ctrl mute bits poking from Sto1 ADC mixer settings (git-fixes). - ASoC: rt711: add snd_soc_component remove callback (git-fixes). - ASoC: samsung: snow: remove useless test (git-fixes). - ASoC: samsung: tm2_wm5110: check of of_parse return value (git-fixes). - ASoC: sgtl5000: set DAP_AVC_CTRL register to correct default value on probe (git-fixes). - ASoC: simple-card-utils: Do not handle device clock (git-fixes). - ASoC: simple-card: fix possible uninitialized single_cpu local variable (git-fixes). - ASoC: soc-core kABI workaround (git-fixes). - ASoC: soc-core: Prevent warning if no DMI table is present (git-fixes). - ASoC: sunxi: sun4i-codec: fill ASoC card owner (git-fixes). - ASoC: wm8960: Fix wrong bclk and lrclk with pll enabled for some chips (git-fixes). - ASoC: wm8960: Remove bitclk relax condition in wm8960_configure_sysclk (git-fixes). - Bluetooth: Fix incorrect status handling in LE PHY UPDATE event (git-fixes). - Bluetooth: Fix null pointer dereference in amp_read_loc_assoc_final_data (git-fixes). - Bluetooth: L2CAP: Fix handling LE modes by L2CAP_OPTIONS (git-fixes). - Bluetooth: SMP: Fail if remote and local public keys are identical (git-fixes). - Bluetooth: Set CONF_NOT_COMPLETE as l2cap_chan default (git-fixes). - Bluetooth: avoid deadlock between hci_dev->lock and socket lock (git-fixes). - Bluetooth: btqca: Add valid le states quirk (git-fixes). - Bluetooth: btusb: Enable quirk boolean flag for Mediatek Chip (git-fixes). - Bluetooth: check for zapped sk before connecting (git-fixes). - Bluetooth: hci_h5: Set HCI_QUIRK_SIMULTANEOUS_DISCOVERY for btrtl (git-fixes). - Bluetooth: initialize skb_queue_head at l2cap_chan_create() (git-fixes). - Documentation/ABI: sysfs-platform-ideapad-laptop: update device attribute paths (git-fixes). - Drivers: hv: vmbus: Fix Suspend-to-Idle for Generation-2 VM (git-fixes). - Drivers: hv: vmbus: Increase wait time for VMbus unload (bsc#1185725). - Drivers: hv: vmbus: Initialize unload_event statically (bsc#1185725). - Drivers: hv: vmbus: Use after free in __vmbus_open() (git-fixes). - EDAC/amd64: Check for memory before fully initializing an instance (bsc#1183815). - EDAC/amd64: Get rid of the ECC disabled long message (bsc#1183815). - EDAC/amd64: Use cached data when checking for ECC (bsc#1183815). - Goodix Fingerprint device is not a modem (git-fixes). - HID: alps: fix error return code in alps_input_configured() (git-fixes). - HID: google: add don USB id (git-fixes). - HID: i2c-hid: Add I2C_HID_QUIRK_NO_IRQ_AFTER_RESET for ITE8568 EC on Voyo Winpad A15 (git-fixes). - HID: mf: add support for 0079:1846 Mayflash/Dragonrise USB Gamecube Adapter (git-fixes). - HID: plantronics: Workaround for double volume key presses (git-fixes). - HID: wacom: Assign boolean values to a bool variable (git-fixes). - HID: wacom: set EV_KEY and EV_ABS only for non-HID_GENERIC type of devices (git-fixes). - HSI: Fix PM usage counter unbalance in ssi_hw_init (git-fixes). - Hibernation: Fix Hibernate not blocked in Secure Boot with no EFI secret key - IB/hfi1: Fix probe time panic when AIP is enabled with a buggy BIOS (jsc#SLE-13208). - IB/hfi1: Rework AIP and VNIC dummy netdev usage (jsc#SLE-13208). - Input: applespi - do not wait for responses to commands indefinitely (git-fixes). - Input: elantech - fix protocol errors for some trackpoints in SMBus mode (git-fixes). - Input: elants_i2c - do not bind to i2c-hid compatible ACPI instantiated devices (git-fixes). - Input: i8042 - fix Pegatron C15B ID entry (git-fixes). - Input: nspire-keypad - enable interrupts only when opened (git-fixes). - Input: s6sy761 - fix coordinate read bit shift (git-fixes). - Input: silead - add workaround for x86 BIOS-es which bring the chip up in a stuck state (git-fixes). - KEYS: trusted: Fix TPM reservation for seal/unseal (git-fixes). - KEYS: trusted: Fix memory leak on object td (git-fixes). - KVM x86: Extend AMD specific guest behavior to Hygon virtual CPUs (bsc#1183447). - KVM: PPC: Book3S HV P9: Restore host CTRL SPR after guest exit (bsc#1156395). - KVM: PPC: Make the VMX instruction emulation routines static (bsc#1156395). - KVM: SVM: Clear the CR4 register on reset (bsc#1183252). - KVM: kvmclock: Fix vCPUs > 64 can't be online/hotpluged (bsc#1152489). - KVM: nVMX: Properly handle userspace interrupt window request (bsc#1183427). - KVM: s390: fix guarded storage control register handling (bsc#1133021). - KVM: x86: Add helpers to perform CPUID-based guest vendor check (bsc#1183445). - KVM: x86: Allow guests to see MSR_IA32_TSX_CTRL even if tsx=off (bsc#1183287). - KVM: x86: Allow guests to see MSR_IA32_TSX_CTRL even if tsx=off (bsc#1183323). - KVM: x86: Expose XSAVEERPTR to the guest (jsc#SLE-13573). - KVM: x86: Return -E2BIG when KVM_GET_SUPPORTED_CPUID hits max entries (bsc#1183428). - KVM: x86: Set so called 'reserved CR3 bits in LM mask' at vCPU reset (bsc#1183288). - KVM: x86: Set so called 'reserved CR3 bits in LM mask' at vCPU reset (bsc#1183324). - KVM: x86: do not reset microcode version on INIT or RESET (bsc#1183412). - KVM: x86: list MSR_IA32_UCODE_REV as an emulated MSR (bsc#1183369). - NFC: nci: fix memory leak in nci_allocate_device (git-fixes). - PCI/AER: Add RCEC AER error injection support (bsc#1174426). - PCI/AER: Add pcie_walk_rcec() to RCEC AER handling (bsc#1174426). - PCI/AER: Clear AER status from Root Port when resetting Downstream Port (bsc#1174426). - PCI/AER: Specify the type of Port that was reset (bsc#1174426). - PCI/AER: Use "aer" variable for capability offset (bsc#1174426). - PCI/AER: Write AER Capability only when we control it (bsc#1174426). - PCI/ERR: Add pci_walk_bridge() to pcie_do_recovery() (bsc#1174426). - PCI/ERR: Add pcie_link_rcec() to associate RCiEPs (bsc#1174426). - PCI/ERR: Avoid negated conditional for clarity (bsc#1174426). - PCI/ERR: Bind RCEC devices to the Root Port driver (bsc#1174426). - PCI/ERR: Bind RCEC devices to the Root Port driver (jsc#SLE-13736 jsc#SLE-14845). - PCI/ERR: Cache RCEC EA Capability offset in pci_init_capabilities() (bsc#1174426). - PCI/ERR: Clear AER status only when we control AER (bsc#1174426). - PCI/ERR: Clear PCIe Device Status errors only if OS owns AER (bsc#1174426). - PCI/ERR: Clear status of the reporting device (bsc#1174426). - PCI/ERR: Recover from RCEC AER errors (bsc#1174426). - PCI/ERR: Recover from RCiEP AER errors (bsc#1174426). - PCI/ERR: Rename reset_link() to reset_subordinates() (bsc#1174426). - PCI/ERR: Retain status from error notification (bsc#1174426). - PCI/ERR: Simplify by computing pci_pcie_type() once (bsc#1174426). - PCI/ERR: Simplify by using pci_upstream_bridge() (bsc#1174426). - PCI/ERR: Use "bridge" for clarity in pcie_do_recovery() (bsc#1174426). - PCI/PME: Add pcie_walk_rcec() to RCEC PME handling (bsc#1174426). - PCI/RCEC: Fix RCiEP device to RCEC association (git-fixes). - PCI/RCEC: Fix RCiEP device to RCEC association (jsc#SLE-13736 jsc#SLE-14845 git-fixes). - PCI/portdrv: Report reset for frozen channel (bsc#1174426). - PCI: Add a REBAR size quirk for Sapphire RX 5600 XT Pulse (git-fixes). - PCI: Add function 1 DMA alias quirk for Marvell 9215 SATA controller (git-fixes). - PCI: Allow VPD access for QLogic ISP2722 (git-fixes). - PCI: Fix pci_register_io_range() memory leak (git-fixes). - PCI: PM: Do not read power state in pci_enable_device_flags() (git-fixes). - PCI: Release OF node in pci_scan_device()'s error path (git-fixes). - PCI: designware-ep: Fix the Header Type check (git-fixes). - PCI: dwc: Move iATU detection earlier (git-fixes). - PCI: endpoint: Fix missing destroy_workqueue() (git-fixes). - PCI: iproc: Fix return value of iproc_msi_irq_domain_alloc() (git-fixes). - PCI: keystone: Let AM65 use the pci_ops defined in pcie-designware-host.c (git-fixes). - PCI: mediatek: Add missing of_node_put() to fix reference leak (git-fixes). - PCI: tegra: Fix ASPM-L1SS advertisement disable code (git-fixes). - PCI: tegra: Move "dbi" accesses to post common DWC initialization (git-fixes). - PCI: thunder: Fix compile testing (git-fixes). - PCI: xgene-msi: Fix race in installing chained irq handler (git-fixes). - PM / devfreq: Use more accurate returned new_freq as resume_freq (git-fixes). - PM: EM: postpone creating the debugfs dir till fs_initcall (git-fixes). - PM: runtime: Add documentation for pm_runtime_resume_and_get() (git-fixes). - PM: runtime: Add pm_runtime_resume_and_get to deal with usage counter (bsc#1183366). - PM: runtime: Fix ordering in pm_runtime_get_suppliers() (git-fixes). - PM: runtime: Fix ordering in pm_runtime_get_suppliers() (git-fixes). - PM: runtime: Fix race getting/putting suppliers at probe (git-fixes). - Platform: OLPC: Fix probe error handling (git-fixes). - RAS/CEC: Correct ce_add_elem()'s returned values (bsc#1152489). - RDMA/addr: create addr_wq with WQ_MEM_RECLAIM flag (bsc#1183346). - RDMA/cm: Fix IRQ restore in ib_send_cm_sidr_rep (jsc#SLE-15176). - RDMA/core: create ib_cm with WQ_MEM_RECLAIM flag (bsc#1183346). - RDMA/hns: Delete redundant abnormal interrupt status (git-fixes). - RDMA/hns: Delete redundant condition judgment related to eq (git-fixes). - RDMA/mlx5: Fix drop packet rule in egress table (jsc#SLE-15175). - RDMA/qedr: Fix error return code in qedr_iw_connect() (jsc#SLE-8215). - RDMA/rtrs-clt: Close rtrs client conn before destroying rtrs clt session files (jsc#SLE-15176). - RDMA/rtrs-clt: destroy sysfs after removing session from active list (jsc#SLE-15176). - RDMA/srp: Fix support for unpopulated and unbalanced NUMA nodes (bsc#1169709) - RDMA/srp: Fix support for unpopulated and unbalanced NUMA nodes (bsc#1169709) - RDMA/srpt: Fix error return code in srpt_cm_req_recv() (git-fixes). - Re-enable yenta socket driver for x86_64 (bsc#1186349) - SUNRPC in case of backlog, hand free slots directly to waiting task (bsc#1185428). - SUNRPC: More fixes for backlog congestion (bsc#1185428). - USB: Add LPM quirk for Lenovo ThinkPad USB-C Dock Gen2 Ethernet (git-fixes). - USB: Add reset-resume quirk for WD19's Realtek Hub (git-fixes). - USB: CDC-ACM: fix poison/unpoison imbalance (bsc#1184984). - USB: CDC-ACM: fix poison/unpoison imbalance (git-fixes). - USB: cdc-acm: downgrade message to debug (git-fixes). - USB: cdc-acm: fix TIOCGSERIAL implementation (git-fixes). - USB: cdc-acm: fix double free on probe failure (git-fixes). - USB: cdc-acm: fix unprivileged TIOCCSERIAL (git-fixes). - USB: cdc-acm: fix use-after-free after probe failure (git-fixes). - USB: cdc-acm: untangle a circular dependency between callback and softint (git-fixes). - USB: gadget: u_ether: Fix a configfs return code (git-fixes). - USB: gadget: udc: fix wrong pointer passed to IS_ERR() and PTR_ERR() (git-fixes). - USB: quirks: ignore remote wake-up on Fibocom L850-GL LTE modem (git-fixes). - USB: replace hardcode maximum usb string length by definition (git-fixes). - USB: serial: ark3116: fix TIOCGSERIAL implementation (git-fixes). - USB: serial: ch341: add new Product ID (git-fixes). - USB: serial: cp210x: add ID for Acuity Brands nLight Air Adapter (git-fixes). - USB: serial: cp210x: add some more GE USB IDs (git-fixes). - USB: serial: f81232: fix TIOCGSERIAL implementation (git-fixes). - USB: serial: f81534: fix TIOCGSERIAL implementation (git-fixes). - USB: serial: fix return value for unsupported ioctls (git-fixes). - USB: serial: io_edgeport: fix memory leak in edge_startup (git-fixes). - USB: serial: mos7720: fix TIOCGSERIAL implementation (git-fixes). - USB: serial: opticon: fix TIOCGSERIAL implementation (git-fixes). - USB: serial: pl2303: add support for PL2303HXN (bsc#1186320). - USB: serial: pl2303: fix line-speed handling on newer chips (bsc#1186320). - USB: serial: quatech2: fix TIOCGSERIAL implementation (git-fixes). - USB: serial: ssu100: fix TIOCGSERIAL implementation (git-fixes). - USB: serial: ti_usb_3410_5052: fix TIOCSSERIAL permission check (git-fixes). - USB: serial: usb_wwan: fix TIOCGSERIAL implementation (git-fixes). - USB: serial: usb_wwan: fix TIOCSSERIAL jiffies conversions (git-fixes). - USB: serial: usb_wwan: fix unprivileged TIOCCSERIAL (git-fixes). - USB: trancevibrator: fix control-request direction (git-fixes). - USB: usblp: fix a hang in poll() if disconnected (git-fixes). - Update config files. (bsc#1185010) - amd/amdgpu: Disable VCN DPG mode for Picasso (git-fixes). - amdgpu: avoid incorrect %hu format string (git-fixes). - apparmor: Fix aa_label refcnt leak in policy_update (git-fixes). - apparmor: check/put label on apparmor_sk_clone_security() (git-fixes). - appletalk: Fix skb allocation size in loopback case (git-fixes). - arm64/mm: Fix pfn_valid() for ZONE_DEVICE based memory (git-fixes). - arm64: Add missing ISB after invalidating TLB in __primary_switch (git-fixes). - arm64: avoid -Woverride-init warning (git-fixes). - arm64: kasan: fix page_alloc tagging with DEBUG_VIRTUAL (git-fixes). - arm64: kdump: update ppos when reading elfcorehdr (git-fixes). - arm64: kexec_file: fix memory leakage in create_dtb() when fdt_open_into() fails (git-fixes). - arm64: link with -z norelro for LLD or aarch64-elf (git-fixes). - arm64: link with -z norelro regardless of CONFIG_RELOCATABLE (git-fixes). - arm64: make STACKPROTECTOR_PER_TASK configurable (bsc#1181862). - arm64: ptrace: Fix seccomp of traced syscall -1 (NO_SYSCALL) (git-fixes). - arm64: ptrace: Use NO_SYSCALL instead of -1 in syscall_trace_enter() (git-fixes). - arm64: vdso32: make vdso32 install conditional (git-fixes). - arm: mm: use __pfn_to_section() to get mem_section (git-fixes). - ata: ahci: Disable SXS for Hisilicon Kunpeng920 (git-fixes). - ata: libahci_platform: fix IRQ check (git-fixes). - ath10k: Fix a use after free in ath10k_htc_send_bundle (git-fixes). - ath10k: Fix ath10k_wmi_tlv_op_pull_peer_stats_info() unlock without lock (git-fixes). - ath10k: fix wmi mgmt tx queue full due to race condition (git-fixes). - ath10k: hold RCU lock when calling ieee80211_find_sta_by_ifaddr() (git-fixes). - ath9k: Fix error check in ath9k_hw_read_revisions() for PCI devices (git-fixes). - ath9k: fix transmitting to stations in dynamic SMPS mode (git-fixes). - atl1c: fix error return code in atl1c_probe() (git-fixes). - atl1e: fix error return code in atl1e_probe() (git-fixes). - backlight: journada720: Fix Wmisleading-indentation warning (git-fixes). - batman-adv: initialize "struct batadv_tvlv_tt_vlan_data"->reserved field (git-fixes). - binfmt_misc: fix possible deadlock in bm_register_write (git-fixes). - binfmt_misc: fix possible deadlock in bm_register_write (git-fixes). - blk-iocost: ioc_pd_free() shouldn't assume irq disabled (git-fixes). - blk-mq: Swap two calls in blk_mq_exit_queue() (git-fixes). - blk-mq: plug request for shared sbitmap (jsc#SLE-15442 bsc#1180814 ltc#187461 git-fixes). - blk-mq: set default elevator as deadline in case of hctx shared tagset (jsc#SLE-15442 bsc#1180814 ltc#187461 git-fixes). - blkcg: fix memleak for iolatency (git-fixes). - block, bfq: set next_rq to waker_bfqq->next_rq in waker injection (bsc#1168838). - block/genhd: use atomic_t for disk_event->block (bsc#1185497). - block: Fix three kernel-doc warnings (git-fixes). - block: fix get_max_io_size() (git-fixes). - block: recalculate segment count for multi-segment discards correctly (bsc#1184724). - block: rsxx: fix error return code of rsxx_pci_probe() (git-fixes). - block: rsxx: select CONFIG_CRC32 (git-fixes). - bluetooth: eliminate the potential race condition when removing the HCI controller (git-fixes). - bnxt_en: Fix RX consumer index logic in the error path (git-fixes). - bnxt_en: Fix RX consumer index logic in the error path (git-fixes). - bnxt_en: fix ternary sign extension bug in bnxt_show_temp() (git-fixes). - bnxt_en: reliably allocate IRQ table on reset to avoid crash (jsc#SLE-8371 bsc#1153274). - bnxt_en: reverse order of TX disable and carrier off (git-fixes). - bpf, sockmap: Fix sk->prot unhash op reset (bsc#1155518). - bpf,x64: Pad NOPs to make images converge more easily (bsc#1178163). - bpf: Add sanity check for upper ptr_limit (bsc#1183686 bsc#1183775). - bpf: Avoid warning when re-casting __bpf_call_base into __bpf_call_base_args (bsc#1155518). - bpf: Declare __bpf_free_used_maps() unconditionally (bsc#1155518). - bpf: Do not do bpf_cgroup_storage_set() for kuprobe/tp programs (bsc#1155518). - bpf: Enforce that struct_ops programs be GPL-only (bsc#1177028). - bpf: Fix 32 bit src register truncation on div/mod (bsc#1184170). - bpf: Fix an unitialized value in bpf_iter (bsc#1177028). - bpf: Fix leakage of uninitialized bpf stack under speculation (bsc#1155518). - bpf: Fix masking negation logic upon negative dst register (bsc#1155518). - bpf: Fix propagation of 32 bit unsigned bounds from 64 bit bounds (bsc#1177028). - bpf: Fix verifier jsgt branch analysis on max bound (bsc#1155518). - bpf: Refcount task stack in bpf_get_task_stack (bsc#1177028). - bpf: Remove MTU check in __bpf_skb_max_len (bsc#1155518). - bpf: Simplify alu_limit masking for pointer arithmetic (bsc#1183686 bsc#1183775). - bpf: link: Refuse non-O_RDWR flags in BPF_OBJ_GET (bsc#1177028). - bpf_lru_list: Read double-checked variable once without lock (bsc#1155518). - brcmfmac: Add DMI nvram filename quirk for Predia Basic tablet (git-fixes). - brcmfmac: Add DMI nvram filename quirk for Voyo winpad A15 tablet (git-fixes). - brcmfmac: clear EAP/association status bits on linkdown events (git-fixes). - bsg: free the request before return error code (git-fixes). - btrfs: abort the transaction if we fail to inc ref in btrfs_copy_root (bsc#1184217). - btrfs: always pin deleted leaves when there are active tree mod log users (bsc#1184224). - btrfs: fix exhaustion of the system chunk array due to concurrent allocations (bsc#1183386). - btrfs: fix extent buffer leak on failure to copy root (bsc#1184218). - btrfs: fix qgroup data rsv leak caused by falloc failure (bsc#1185549). - btrfs: fix race between swap file activation and snapshot creation (bsc#1185587). - btrfs: fix race between swap file activation and snapshot creation (bsc#1185587). - btrfs: fix race between transaction aborts and fsyncs leading to use-after-free (bsc#1186441). - btrfs: fix race between transaction aborts and fsyncs leading to use-after-free (bsc#1186441). - btrfs: fix race between writes to swap files and scrub (bsc#1185586). - btrfs: fix race between writes to swap files and scrub (bsc#1185586). - btrfs: fix race when cloning extent buffer during rewind of an old root (bsc#1184193). - btrfs: fix race when picking most recent mod log operation for an old root (bsc#1186439). - btrfs: fix race when picking most recent mod log operation for an old root (bsc#1186439). - btrfs: fix stale data exposure after cloning a hole with NO_HOLES enabled (bsc#1184220). - btrfs: fix subvolume/snapshot deletion not triggered on mount (bsc#1184219). - btrfs: track qgroup released data in own variable in insert_prealloc_file_extent (bsc#1185549). - bus: fsl-mc: add the dpdbg device type (bsc#1185670). - bus: fsl-mc: list more commands as accepted through the ioctl (bsc#1185670). - bus: omap_l3_noc: mark l3 irqs as IRQF_NO_THREAD (git-fixes). - bus: qcom: Put child node before return (git-fixes). - bus: ti-sysc: Fix warning on unbind if reset is not deasserted (git-fixes). - can: c_can: move runtime PM enable/disable to c_can_platform (git-fixes). - can: c_can_pci: c_can_pci_remove(): fix use-after-free (git-fixes). - can: flexcan: assert FRZ bit in flexcan_chip_freeze() (git-fixes). - can: flexcan: enable RX FIFO after FRZ/HALT valid (git-fixes). - can: flexcan: flexcan_chip_freeze(): fix chip freeze for missing bitrate (git-fixes). - can: flexcan: invoke flexcan_chip_freeze() to enter freeze mode (git-fixes). - can: m_can: m_can_do_rx_poll(): fix extraneous msg loss warning (git-fixes). - can: peak_usb: Revert "can: peak_usb: add forgotten supported devices" (git-fixes). - can: peak_usb: add forgotten supported devices (git-fixes). - can: skb: can_skb_set_owner(): fix ref counting if socket was closed before setting skb ownership (git-fixes). - cdc-acm: fix BREAK rx code path adding necessary calls (git-fixes). - cdc-wdm: untangle a circular dependency between callback and softint (git-fixes). - cdrom: gdrom: deallocate struct gdrom_unit fields in remove_gdrom (git-fixes). - cdrom: gdrom: initialize global variable at init time (git-fixes). - ceph: do not clobber i_snap_caps on non-I_NEW inode (bsc#1186501). - ceph: do not clobber i_snap_caps on non-I_NEW inode (bsc#1186501). - ceph: fix inode leak on getattr error in __fh_to_dentry (bsc#1186501). - ceph: fix inode leak on getattr error in __fh_to_dentry (bsc#1186501). - ceph: fix up error handling with snapdirs (bsc#1186501). - ceph: fix up error handling with snapdirs (bsc#1186501). - ceph: only check pool permissions for regular files (bsc#1186501). - ceph: only check pool permissions for regular files (bsc#1186501). - cfg80211: remove WARN_ON() in cfg80211_sme_connect (git-fixes). - cfg80211: scan: drop entry from hidden_list on overflow (git-fixes). - ch_ktls: Fix kernel panic (jsc#SLE-15131). - ch_ktls: do not send snd_una update to TCB in middle (jsc#SLE-15131). - ch_ktls: fix device connection close (jsc#SLE-15131). - ch_ktls: fix enum-conversion warning (jsc#SLE-15129). - ch_ktls: tcb close causes tls connection failure (jsc#SLE-15131). - cifs: New optype for session operations (bsc#1181507). - cifs: Tracepoints and logs for tracing credit changes (bsc#1181507). - cifs: change noisy error message to FYI (bsc#1181507). - cifs: check pointer before freeing (bsc#1183534). - cifs: do not send close in compound create+close requests (bsc#1181507). - cifs: print MIDs in decimal notation (bsc#1181507). - cifs: return proper error code in statfs(2) (bsc#1181507). - cifs_debug: use %pd instead of messing with ->d_name (bsc#1181507). - clk: exynos7: Mark aclk_fsys1_200 as critical (git-fixes). - clk: fix invalid usage of list cursor in register (git-fixes). - clk: fix invalid usage of list cursor in unregister (git-fixes). - clk: mvebu: armada-37xx-periph: Fix switching CPU freq from 250 Mhz to 1 GHz (git-fixes). - clk: mvebu: armada-37xx-periph: Fix workaround for switching from L1 to L0 (git-fixes). - clk: mvebu: armada-37xx-periph: remove .set_parent method for CPU PM clock (git-fixes). - clk: qcom: a53-pll: Add missing MODULE_DEVICE_TABLE (git-fixes). - clk: socfpga: arria10: Fix memory leak of socfpga_clk on error return (git-fixes). - clk: socfpga: fix iomem pointer cast on 64-bit (git-fixes). - clk: uniphier: Fix potential infinite loop (git-fixes). - clk: zynqmp: move zynqmp_pll_set_mode out of round_rate callback (git-fixes). - completion: Drop init_completion define (git-fixes). - configfs: fix a use-after-free in __configfs_open_file (git-fixes). - coresight: etm4x: Fix issues on trcseqevr access (git-fixes). - coresight: etm4x: Fix save and restore of TRCVMIDCCTLR1 register (git-fixes). - coresight: remove broken __exit annotations (git-fixes). - coresight: tmc-etr: Fix barrier packet insertion for perf buffer (git-fixes). - cpufreq: Kconfig: fix documentation links (git-fixes). - cpufreq: armada-37xx: Fix determining base CPU frequency (git-fixes). - cpufreq: armada-37xx: Fix driver cleanup when registration failed (git-fixes). - cpufreq: armada-37xx: Fix setting TBG parent for load levels (git-fixes). - cpufreq: armada-37xx: Fix the AVS value for load L1 (git-fixes). - cpufreq: intel_pstate: Add Icelake servers support in no-HWP mode (bsc#1185758). - cpuidle/pseries: Fixup CEDE0 latency only for POWER10 onwards (bsc#1185550 ltc#192610). - crypto: api - check for ERR pointers in crypto_destroy_tfm() (git-fixes). - crypto: arm/curve25519 - Move '.fpu' after '.arch' (git-fixes). - crypto: chelsio - Read rxchannel-id from firmware (git-fixes). - crypto: mips/poly1305 - enable for all MIPS processors (git-fixes). - crypto: qat - ADF_STATUS_PF_RUNNING should be set after adf_dev_init (git-fixes). - crypto: qat - Fix a double free in adf_create_ring (git-fixes). - crypto: qat - do not release uninitialized resources (git-fixes). - crypto: qat - fix error path in adf_isr_resource_alloc() (git-fixes). - crypto: qat - fix unmap invalid dma address (git-fixes). - crypto: rng - fix crypto_rng_reset() refcounting when !CRYPTO_STATS (git-fixes). - crypto: stm32/cryp - Fix PM reference leak on stm32-cryp.c (git-fixes). - crypto: stm32/hash - Fix PM reference leak on stm32-hash.c (git-fixes). - crypto: tcrypt - avoid signed overflow in byte count (git-fixes). - cxgb4/chtls/cxgbit: Keeping the max ofld immediate data size same in cxgb4 and ulds (git-fixes). - cxgb4/chtls/cxgbit: Keeping the max ofld immediate data size same in cxgb4 and ulds (git-fixes). - cxgb4: Fix unintentional sign extension issues (git-fixes). - cxgb4: avoid collecting SGE_QBASE regs during traffic (git-fixes). - dm era: Fix bitset memory leaks (git-fixes). - dm era: Recover committed writeset after crash (git-fixes). - dm era: Reinitialize bitset cache before digesting a new writeset (git-fixes). - dm era: Update in-core bitset after committing the metadata (git-fixes). - dm era: Use correct value size in equality function of writeset tree (git-fixes). - dm era: Verify the data block size hasn't changed (git-fixes). - dm era: only resize metadata in preresume (git-fixes). - dm integrity: fix error reporting in bitmap mode after creation (git-fixes). - dm ioctl: fix error return code in target_message (git-fixes). - dm mpath: fix racey management of PG initialization (git-fixes). - dm mpath: switch paths in dm_blk_ioctl() code path (bsc#1167574, bsc#1175995, bsc#1184485). - dm raid: fix discard limits for raid1 (git-fixes). - dm rq: fix double free of blk_mq_tag_set in dev remove after table load fails (bsc#1185581). - dm writecache: fix the maximum number of arguments (git-fixes). - dm writecache: handle DAX to partitions on persistent memory correctly (git-fixes). - dm writecache: remove BUG() and fail gracefully instead (git-fixes). - dm zoned: select CONFIG_CRC32 (git-fixes). - dm: avoid filesystem lookup in dm_get_dev_t() (git-fixes). - dm: eliminate potential source of excessive kernel log noise (git-fixes). - dm: fix bug with RCU locking in dm_blk_report_zones (git-fixes). - dm: remove invalid sparse __acquires and __releases annotations (git-fixes). - dmaengine: Fix a double free in dma_async_device_register (git-fixes). - dmaengine: dw-edma: Fix crash on loading/unloading driver (git-fixes). - dmaengine: dw: Make it dependent to HAS_IOMEM (git-fixes). - dmaengine: idxd: Fix clobbering of SWERR overflow bit on writeback (git-fixes). - dmaengine: idxd: Fix potential null dereference on pointer status (git-fixes). - dmaengine: idxd: cleanup pci interrupt vector allocation management (git-fixes). - dmaengine: idxd: clear MSIX permission entry on shutdown (git-fixes). - dmaengine: idxd: fix cdev setup and free device lifetime issues (git-fixes). - dmaengine: idxd: fix delta_rec and crc size field for completion record (git-fixes). - dmaengine: idxd: fix dma device lifetime (git-fixes). - dmaengine: idxd: fix opcap sysfs attribute output (git-fixes). - dmaengine: idxd: fix wq cleanup of WQCFG registers (git-fixes). - dmaengine: idxd: fix wq size store permission state (git-fixes). - dmaengine: idxd: removal of pcim managed mmio mapping (git-fixes). - docs: kernel-parameters: Add gpio_mockup_named_lines (git-fixes). - docs: kernel-parameters: Move gpio-mockup for alphabetic order (git-fixes). - dpaa_eth: Remove unnecessary boolean expression in dpaa_get_headroom (git-fixes). - dpaa_eth: Use random MAC address when none is given (bsc#1184811). - dpaa_eth: copy timestamp fields to new skb in A-050385 workaround (git-fixes). - dpaa_eth: fix the RX headroom size alignment (git-fixes). - dpaa_eth: update the buffer layout for non-A050385 erratum scenarios (git-fixes). - drivers: hv: Fix whitespace errors (bsc#1185725). - drivers: net: xgene: Fix the order of the arguments of 'alloc_etherdev_mqs()' (git-fixes). - drivers: video: fbcon: fix NULL dereference in fbcon_cursor() (git-fixes). - drivers: video: fbcon: fix NULL dereference in fbcon_cursor() (git-fixes). - drm/amd/display/dc/dce/dce_aux: Remove duplicate line causing 'field overwritten' issue (git-fixes). - drm/amd/display: Check for DSC support instead of ASIC revision (git-fixes). - drm/amd/display: Correct algorithm for reversed gamma (git-fixes). - drm/amd/display: DCHUB underflow counter increasing in some scenarios (git-fixes). - drm/amd/display: Do not optimize bandwidth before disabling planes (git-fixes). - drm/amd/display: Fix UBSAN warning for not a valid value for type '_Bool' (git-fixes). - drm/amd/display: Fix UBSAN: shift-out-of-bounds warning (git-fixes). - drm/amd/display: Fix debugfs link_settings entry (git-fixes). - drm/amd/display: Fix nested FPU context in dcn21_validate_bandwidth() (git-fixes). - drm/amd/display: Fix off by one in hdmi_14_process_transaction() (git-fixes). - drm/amd/display: Fix two cursor duplication when using overlay (git-fixes). - drm/amd/display: Force vsync flip when reconfiguring MPCC (git-fixes). - drm/amd/display: Guard against NULL pointer deref when get_i2c_info fails (git-fixes). - drm/amd/display: Initialize attribute for hdcp_srm sysfs file (git-fixes). - drm/amd/display: Reject non-zero src_y and src_x for video planes (git-fixes). - drm/amd/display: Revert dram_clock_change_latency for DCN2.1 (git-fixes). - drm/amd/display: Try YCbCr420 color when YCbCr444 fails (git-fixes). - drm/amd/display: add handling for hdcp2 rx id list validation (git-fixes). - drm/amd/display: changing sr exit latency (git-fixes). - drm/amd/display: fix dml prefetch validation (git-fixes). - drm/amd/display: fixed divide by zero kernel crash during dsc enablement (git-fixes). - drm/amd/display: turn DPMS off on connector unplug (git-fixes). - drm/amd/pm: fix workload mismatch on vega10 (git-fixes). - drm/amd/powerplay: fix spelling mistake "smu_state_memroy_block" (bsc#1152489) - drm/amdgpu : Fix asic reset regression issue introduce by 8f211fe8ac7c4f (git-fixes). - drm/amdgpu/display/dm: add missing parameter documentation (git-fixes). - drm/amdgpu/display: buffer INTERRUPT_LOW_IRQ_CONTEXT interrupt work (git-fixes). - drm/amdgpu/display: remove redundant continue statement (git-fixes). - drm/amdgpu/display: restore AUX_DPHY_TX_CONTROL for DCN2.x (git-fixes). - drm/amdgpu/display: use GFP_ATOMIC in dcn21_validate_bandwidth_fp() (git-fixes). - drm/amdgpu/swsmu: add interrupt work function (git-fixes). - drm/amdgpu/swsmu: add interrupt work handler for smu11 parts (git-fixes). - drm/amdgpu: Add additional Sienna Cichlid PCI ID (git-fixes). - drm/amdgpu: Add check to prevent IH overflow (git-fixes). - drm/amdgpu: Add mem sync flag for IB allocated by SA (git-fixes). - drm/amdgpu: Fix GPU TLB update error when PAGE_SIZE > AMDGPU_PAGE_SIZE (git-fixes). - drm/amdgpu: Fix some unload driver issues (git-fixes). - drm/amdgpu: Init GFX10_ADDR_CONFIG for VCN v3 in DPG mode (git-fixes). - drm/amdgpu: check alignment on CPU page for bo map (git-fixes). - drm/amdgpu: disable 3DCGCG on picasso/raven1 to avoid compute hang (git-fixes). - drm/amdgpu: fb BO should be ttm_bo_type_device (git-fixes). - drm/amdgpu: fix NULL pointer dereference (git-fixes). - drm/amdgpu: fix concurrent VM flushes on Vega/Navi v2 (git-fixes). - drm/amdgpu: fix offset calculation in amdgpu_vm_bo_clear_mappings() (git-fixes). - drm/amdgpu: fix parameter error of RREG32_PCIE() in amdgpu_regs_pcie (git-fixes). - drm/amdgpu: mask the xgmi number of hops reported from psp to kfd (git-fixes). - drm/amdgpu: remove unused variable from struct amdgpu_bo (git-fixes). - drm/amdgpu: update gc golden setting for Navi12 (git-fixes). - drm/amdgpu: update sdma golden setting for Navi12 (git-fixes). - drm/amdkfd: Fix UBSAN shift-out-of-bounds warning (git-fixes). - drm/amdkfd: Fix cat debugfs hang_hws file causes system crash bug (git-fixes). - drm/amdkfd: Put ACPI table after using it (bsc#1152489) Backporting notes: * context changes - drm/amdkfd: dqm fence memory corruption (git-fixes). - drm/amdkfd: fix build error with AMD_IOMMU_V2=m (git-fixes). - drm/ast: AST2500 fixups (bsc#1174416). - drm/ast: AST2500 fixups (bsc#1174416). - drm/ast: Add 25MHz refclk support (bsc#1174416). - drm/ast: Add 25MHz refclk support (bsc#1174416). - drm/ast: Add support for 1152x864 mode (bsc#1174416). - drm/ast: Add support for 1152x864 mode (bsc#1174416). - drm/ast: Add support for AIP200 (bsc#1174416). - drm/ast: Add support for AIP200 (bsc#1174416). - drm/ast: Correct mode table for AST2500 precatch (bsc#1174416). - drm/ast: Correct mode table for AST2500 precatch (bsc#1174416). - drm/ast: Disable VGA decoding while driver is active (bsc#1174416). - drm/ast: Disable VGA decoding while driver is active (bsc#1174416). - drm/ast: Disable screen on register init (bsc#1174416). - drm/ast: Disable screen on register init (bsc#1174416). - drm/ast: Fix P2A config detection (bsc#1174416). - drm/ast: Fix P2A config detection (bsc#1174416). - drm/ast: Fix invalid usage of AST_MAX_HWC_WIDTH in cursor atomic_check (git-fixes). - drm/ast: Fix register access in non-P2A mode for DP501 (bsc#1174416). - drm/ast: Fix register access in non-P2A mode for DP501 (bsc#1174416). - drm/ast: Keep MISC fields when enabling VGA (bsc#1174416). - drm/ast: Keep MISC fields when enabling VGA (bsc#1174416). - drm/ast: drm/ast: Fix boot address for AST2500 (bsc#1174416). - drm/ast: drm/ast: Fix boot address for AST2500 (bsc#1174416). - drm/compat: Clear bounce structures (git-fixes). - drm/dp_mst: Revise broadcast msg lct & lcr (git-fixes). - drm/dp_mst: Set CLEAR_PAYLOAD_ID_TABLE as broadcast (git-fixes). - drm/hisilicon: Fix use-after-free (git-fixes). - drm/i915/display: fix compiler warning about array overrun (git-fixes). - drm/i915/gt: Clear CACHE_MODE prior to clearing residuals (git-fixes). - drm/i915/gt: Disable HiZ Raw Stall Optimization on broken gen7 (git-fixes). - drm/i915/gvt: Fix error code in intel_gvt_init_device() (git-fixes). - drm/i915/gvt: Set SNOOP for PAT3 on BXT/APL to workaround GPU BB hang (git-fixes). - drm/i915/overlay: Fix active retire callback alignment (git-fixes). - drm/i915/selftests: Fix some error codes (git-fixes). - drm/i915: Avoid div-by-zero on gen2 (git-fixes). - drm/i915: Fix ICL MG PHY vswing handling (git-fixes). - drm/i915: Fix crash in auto_retire (git-fixes). - drm/i915: Fix invalid access to ACPI _DSM objects (bsc#1184074). - drm/i915: Hold onto an explicit ref to i915_vma_work.pinned (git-fixes). - drm/i915: Read C0DRB3/C1DRB3 as 16 bits again (git-fixes). - drm/i915: Wedge the GPU if command parser setup fails (git-fixes). - drm/imx: imx-ldb: fix out of bounds array access warning (git-fixes). - drm/ingenic: Fix non-OSD mode (git-fixes). - drm/ingenic: Register devm action to cleanup encoders (git-fixes). - drm/komeda: Fix bit check to import to value of proper type (git-fixes). - drm/lima: fix reference leak in lima_pm_busy (git-fixes). - drm/mcde/panel: Inverse misunderstood flag (git-fixes). - drm/mediatek: Fix aal size config (bsc#1152489) Backporting notes: * replaced mtk_ddp_write() with writel() - drm/meson: fix shutdown crash when component not probed (git-fixes). - drm/msm/a5xx: Remove overwriting A5XX_PC_DBG_ECO_CNTL register (git-fixes). - drm/msm/adreno: a5xx_power: Do not apply A540 lm_setup to other GPUs (git-fixes). - drm/msm/gem: Add obj->lock wrappers (bsc#1152489) Backporting notes: * taken for 9b73bde39cf2 ("drm/msm: Fix use-after-free in msm_gem with carveout") * context changes - drm/msm/mdp5: Configure PP_SYNC_HEIGHT to double the vtotal (git-fixes). - drm/msm/mdp5: Do not multiply vclk line count by 100 (git-fixes). - drm/msm: Fix WARN_ON() splat in _free_object() (bsc#1152489) Backporting notes: * context changes - drm/msm: Fix a5xx/a6xx timestamps (git-fixes). - drm/msm: Fix races managing the OOB state for timestamp vs (bsc#1152489) Backporting notes: * context changes - drm/msm: Fix suspend/resume on i.MX5 (git-fixes). - drm/msm: Fix use-after-free in msm_gem with carveout (bsc#1152489) Backporting notes: * context changes - drm/msm: Ratelimit invalid-fence message (git-fixes). - drm/msm: Set drvdata to NULL when msm_drm_init() fails (git-fixes). - drm/msm: fix shutdown hook in case GPU components failed to bind (git-fixes). - drm/nouveau/kms/nv50-: Get rid of bogus nouveau_conn_mode_valid() (git-fixes). - drm/nouveau: bail out of nouveau_channel_new if channel init fails (bsc#1152489) - drm/omap: fix misleading indentation in pixinc() (git-fixes). - drm/panfrost: Clear MMU irqs before handling the fault (git-fixes). - drm/panfrost: Do not corrupt the queue mutex on open/close (bsc#1152472) Backporting notes: * context changes - drm/panfrost: Do not try to map pages that are already mapped (git-fixes). - drm/panfrost: Fix job timeout handling (bsc#1152472) Backporting notes: * context changes - drm/panfrost: Remove unused variables in panfrost_job_close() (bsc#1152472) - drm/probe-helper: Check epoch counter in output_poll_execute() (git-fixes). - drm/qxl: do not run release if qxl failed to init (git-fixes). - drm/radeon/dpm: Disable sclk switching on Oland when two 4K 60Hz monitors are connected (git-fixes). - drm/radeon: Avoid power table parsing memory leaks (git-fixes). - drm/radeon: Fix a missing check bug in radeon_dp_mst_detect() (git-fixes). - drm/radeon: Fix off-by-one power_state index heap overwrite (git-fixes). - drm/radeon: fix AGP dependency (git-fixes). - drm/radeon: fix copy of uninitialized variable back to userspace (git-fixes). - drm/shmem-helper: Check for purged buffers in fault handler (git-fixes). - drm/shmem-helper: Do not remove the offset in vm_area_struct pgoff (git-fixes). - drm/shmem-helpers: vunmap: Do not put pages for dma-buf (git-fixes). - drm/sun4i: tcon: fix inverted DCLK polarity (bsc#1152489) Backporting notes: * context changes - drm/tegra: Fix reference leak when pm_runtime_get_sync() fails (git-fixes). - drm/tegra: dc: Do not set PLL clock to 0Hz (git-fixes). - drm/tegra: dc: Restore coupling of display controllers (git-fixes). - drm/tegra: sor: Grab runtime PM reference across reset (git-fixes). - drm/tilcdc: send vblank event when disabling crtc (git-fixes). - drm/vc4: crtc: Reduce PV fifo threshold on hvs4 (git-fixes). - drm/vc4: hdmi: Restore cec physical address on reconnect (bsc#1152472) Backporting notes: * context changes * change vc4_hdmi to vc4->hdmi * removed references to encoder->hdmi_monitor - drm/vkms: fix misuse of WARN_ON (git-fixes). - drm: Added orientation quirk for OneGX1 Pro (git-fixes). - drm: meson_drv add shutdown function (git-fixes). - drm: rcar-du: Fix PM reference leak in rcar_cmm_enable() (git-fixes). - drm: rcar-du: Fix crash when using LVDS1 clock for CRTC (bsc#1152489) Backporting notes: * context changes - drm: rcar-du: Fix leak of CMM platform device reference (git-fixes). - drm: xlnx: zynqmp: fix a memset in zynqmp_dp_train() (git-fixes). - e1000e: Fix duplicate include guard (git-fixes). - e1000e: Fix error handling in e1000_set_d0_lplu_state_82571 (git-fixes). - e1000e: add rtnl_lock() to e1000_reset_task (git-fixes). - efi: use 32-bit alignment for efi_guid_t literals (git-fixes). - enetc: Fix reporting of h/w packet counters (git-fixes). - enetc: Let the hardware auto-advance the taprio base-time of 0 (git-fixes). - enetc: Workaround for MDIO register access issue (git-fixes). - epoll: check for events when removing a timed out thread from the wait queue (git-fixes). - ethernet/netronome/nfp: Fix a use after free in nfp_bpf_ctrl_msg_rx (git-fixes). - ethernet: alx: fix order of calls on resume (git-fixes). - ethernet:enic: Fix a use after free bug in enic_hard_start_xmit (git-fixes). - ethtool: fix incorrect datatype in set_eee ops (bsc#1176447). - ethtool: fix missing NLM_F_MULTI flag when dumping (bsc#1176447). - ethtool: pause: make sure we init driver stats (jsc#SLE-15075). - exec: Move would_dump into flush_old_exec (git-fixes). - ext4: do not try to set xattr into ea_inode if value is empty (bsc#1184730). - ext4: find old entry again if failed to rename whiteout (bsc#1184742). - ext4: fix potential error in ext4_do_update_inode (bsc#1184731). - ext4: fix potential htree index checksum corruption (bsc#1184728). - extcon: Add stubs for extcon_register_notifier_all() functions (git-fixes). - extcon: Fix error handling in extcon_dev_register (git-fixes). - extcon: arizona: Fix some issues when HPDET IRQ fires after the jack has been unplugged (git-fixes). - extcon: arizona: Fix various races on driver unbind (git-fixes). - fbdev: zero-fill colormap in fbcmap.c (git-fixes). - fbmem: add margin check to fb_check_caps() (git-fixes). - firmware/efi: Fix a use after bug in efi_mem_reserve_persistent (git-fixes). - firmware: arm_scpi: Prevent the ternary sign expansion bug (git-fixes). - firmware: qcom-scm: Fix QCOM_SCM configuration (git-fixes). - firmware: qcom_scm: Fix kernel-doc function names to match (git-fixes). - firmware: qcom_scm: Make __qcom_scm_is_call_available() return bool (git-fixes). - firmware: qcom_scm: Reduce locking section for __get_convention() (git-fixes). - firmware: qcom_scm: Workaround lack of "is available" call on SC7180 (git-fixes). - flow_dissector: fix byteorder of dissected ICMP ID (bsc#1154353). - fnic: use scsi_host_busy_iter() to traverse commands (bsc#1179851). - fotg210-udc: Complete OUT requests on short packets (git-fixes). - fotg210-udc: Do not DMA more than the buffer can take (git-fixes). - fotg210-udc: Fix DMA on EP0 for length > max packet size (git-fixes). - fotg210-udc: Fix EP0 IN requests bigger than two packets (git-fixes). - fotg210-udc: Mask GRP2 interrupts we do not handle (git-fixes). - fotg210-udc: Remove a dubious condition leading to fotg210_done (git-fixes). - fs/epoll: restore waking from ep_done_scan() (bsc#1183868). - fs/jfs: fix potential integer overflow on shift of a int (bsc#1184741). - fs: direct-io: fix missing sdio->boundary (bsc#1184736). - fsl/fman: check dereferencing null pointer (git-fixes). - fsl/fman: fix dereference null return value (git-fixes). - fsl/fman: fix eth hash table allocation (git-fixes). - fsl/fman: fix unreachable code (git-fixes). - fsl/fman: reuse set_mac_address() in dtsec init() (bsc#1184811). - fsl/fman: tolerate missing MAC address in device tree (bsc#1184811). - fsl/fman: use 32-bit unsigned integer (git-fixes). - ftrace/x86: Tell objtool to ignore nondeterministic ftrace stack layout (bsc#1177028). - ftrace: Fix modify_ftrace_direct (bsc#1177028). - ftrace: Handle commands when closing set_ftrace_filter file (git-fixes). - fuse: fix bad inode (bsc#1184211). - fuse: fix bad inode (bsc#1184211). - fuse: fix live lock in fuse_iget() (bsc#1184211). - fuse: fix live lock in fuse_iget() (bsc#1184211). - fuse: fix write deadlock (bsc#1185573). - fuse: verify write return (git-fixes). - futex: Change utime parameter to be 'const ... *' (git-fixes). - futex: Do not apply time namespace adjustment on FUTEX_LOCK_PI (bsc#1164648). - futex: Get rid of the val2 conditional dance (git-fixes). - futex: Make syscall entry points less convoluted (git-fixes). - gcc-plugins: drop support for GCC &lt;= 4.7 (bcs#1181862). - gcc-plugins: make it possible to disable CONFIG_GCC_PLUGINS again (bcs#1181862). - gcc-plugins: simplify GCC plugin-dev capability test (bsc#1181862). - geneve: do not modify the shared tunnel info when PMTU triggers an ICMP reply (bsc#1176447). - geneve: do not modify the shared tunnel info when PMTU triggers an ICMP reply (git-fixes). - genirq/irqdomain: Do not try to free an interrupt that has no (git-fixes) - genirq: Disable interrupts for force threaded handlers (git-fixes) - genirq: Reduce irqdebug cacheline bouncing (bsc#1185703 ltc#192641). - gianfar: Account for Tx PTP timestamp in the skb headroom (git-fixes). - gianfar: Fix TX timestamping with a stacked DSA driver (git-fixes). - gianfar: Handle error code at MAC address change (git-fixes). - gianfar: Replace skb_realloc_headroom with skb_cow_head for PTP (git-fixes). - gpio: omap: Save and restore sysconfig (git-fixes). - gpio: pca953x: Set IRQ type when handle Intel Galileo Gen 2 (git-fixes). - gpio: sysfs: Obey valid_mask (git-fixes). - gpio: xilinx: Correct kernel doc for xgpio_probe() (git-fixes). - gpio: zynq: fix reference leak in zynq_gpio functions (git-fixes). - gpiolib: Do not free if pin ranges are not defined (git-fixes). - gpiolib: acpi: Add missing IRQF_ONESHOT (git-fixes). - gpiolib: acpi: Add quirk to ignore EC wakeups on Dell Venue 10 Pro 5055 (git-fixes). - gpu/xen: Fix a use after free in xen_drm_drv_init (git-fixes). - hrtimer: Update softirq_expires_next correctly after (git-fixes) - hv_netvsc: Reset the RSC count if NVSP_STAT_FAIL in netvsc_receive() (git-fixes). - hwmon: (ina3221) Fix PM usage counter unbalance in ina3221_write_enable (git-fixes). - hwmon: (occ) Fix poll rate limiting (git-fixes). - i2c: Add I2C_AQ_NO_REP_START adapter quirk (git-fixes). - i2c: bail out early when RDWR parameters are wrong (git-fixes). - i2c: cadence: add IRQ check (git-fixes). - i2c: emev2: add IRQ check (git-fixes). - i2c: i801: Do not generate an interrupt on bus reset (git-fixes). - i2c: img-scb: fix reference leak when pm_runtime_get_sync fails (git-fixes). - i2c: imx-lpi2c: fix reference leak when pm_runtime_get_sync fails (git-fixes). - i2c: jz4780: add IRQ check (git-fixes). - i2c: mlxbf: add IRQ check (git-fixes). - i2c: omap: fix reference leak when pm_runtime_get_sync fails (git-fixes). - i2c: rcar: faster irq code to minimize HW race condition (git-fixes). - i2c: rcar: optimize cacheline to minimize HW race condition (git-fixes). - i2c: s3c2410: fix possible NULL pointer deref on read message after write (git-fixes). - i2c: sh7760: add IRQ check (git-fixes). - i2c: sh7760: fix IRQ error path (git-fixes). - i2c: sh_mobile: Use new clock calculation formulas for RZ/G2E (git-fixes). - i2c: sprd: fix reference leak when pm_runtime_get_sync fails (git-fixes). - i2c: tegra: Add missing pm_runtime_put() (bsc#1184386). - i2c: tegra: Check errors for both positive and negative values (bsc#1184386). - i2c: tegra: Clean up and improve comments (bsc#1184386). - i2c: tegra: Clean up printk messages (bsc#1184386). - i2c: tegra: Clean up probe function (bsc#1184386). - i2c: tegra: Clean up variable names (bsc#1184386). - i2c: tegra: Clean up variable types (bsc#1184386). - i2c: tegra: Clean up whitespaces, newlines and indentation (bsc#1184386). - i2c: tegra: Create i2c_writesl_vi() to use with VI I2C for filling TX FIFO (bsc#1184386). - i2c: tegra: Factor out error recovery from tegra_i2c_xfer_msg() (bsc#1184386). - i2c: tegra: Factor out hardware initialization into separate function (bsc#1184386). - i2c: tegra: Factor out packet header setup from tegra_i2c_xfer_msg() (bsc#1184386). - i2c: tegra: Factor out register polling into separate function (bsc#1184386). - i2c: tegra: Handle potential error of tegra_i2c_flush_fifos() (bsc#1184386). - i2c: tegra: Improve driver module description (bsc#1184386). - i2c: tegra: Improve formatting of variables (bsc#1184386). - i2c: tegra: Initialize div-clk rate unconditionally (bsc#1184386). - i2c: tegra: Make tegra_i2c_flush_fifos() usable in atomic transfer (bsc#1184386). - i2c: tegra: Mask interrupt in tegra_i2c_issue_bus_clear() (bsc#1184386). - i2c: tegra: Move out all device-tree parsing into tegra_i2c_parse_dt() (bsc#1184386). - i2c: tegra: Remove "dma" variable from tegra_i2c_xfer_msg() (bsc#1184386). - i2c: tegra: Remove error message used for devm_request_irq() failure (bsc#1184386). - i2c: tegra: Remove i2c_dev.clk_divisor_non_hs_mode member (bsc#1184386). - i2c: tegra: Remove likely/unlikely from the code (bsc#1184386). - i2c: tegra: Remove outdated barrier() (bsc#1184386). - i2c: tegra: Remove redundant check in tegra_i2c_issue_bus_clear() (bsc#1184386). - i2c: tegra: Rename wait/poll functions (bsc#1184386). - i2c: tegra: Reorder location of functions in the code (bsc#1184386). - i2c: tegra: Runtime PM always available on Tegra (bsc#1184386). - i2c: tegra: Use clk-bulk helpers (bsc#1184386). - i2c: tegra: Use devm_platform_get_and_ioremap_resource() (bsc#1184386). - i2c: tegra: Use platform_get_irq() (bsc#1184386). - i2c: tegra: Use reset_control_reset() (bsc#1184386). - i2c: tegra: Use threaded interrupt (bsc#1184386). - i2c: tegra: Wait for config load atomically while in ISR (bsc#1184386). - i40e: Add zero-initialization of AQ command structures (git-fixes). - i40e: Added Asym_Pause to supported link modes (git-fixes). - i40e: Fix PHY type identifiers for 2.5G and 5G adapters (git-fixes). - i40e: Fix add TC filter for IPv6 (git-fixes). - i40e: Fix addition of RX filters after enabling FW LLDP agent (git-fixes). - i40e: Fix display statistics for veb_tc (git-fixes). - i40e: Fix endianness conversions (git-fixes). - i40e: Fix flow for IPv6 next header (extension header) (git-fixes). - i40e: Fix kernel oops when i40e driver removes VF's (git-fixes). - i40e: Fix overwriting flow control settings during driver loading (git-fixes). - i40e: Fix parameters in aq_get_phy_register() (jsc#SLE-8025). - i40e: Fix sparse error: 'vsi->netdev' could be null (jsc#SLE-8025). - i40e: Fix sparse error: uninitialized symbol 'ring' (jsc#SLE-13701). - i40e: Fix sparse errors in i40e_txrx.c (git-fixes). - i40e: Fix sparse errors in i40e_txrx.c (git-fixes). - i40e: Fix sparse warning: missing error code 'err' (git-fixes). - i40e: Fix use-after-free in i40e_client_subtask() (git-fixes). - i40e: fix broken XDP support (git-fixes). - i40e: fix the panic when running bpf in xdpdrv mode (git-fixes). - i40e: fix the restart auto-negotiation after FEC modified (git-fixes). - i915/perf: Start hrtimer only if sampling the OA buffer (git-fixes). - iavf: Fix incorrect adapter get in iavf_resume (git-fixes). - iavf: use generic power management (git-fixes). - ibmvfc: Avoid move login if fast fail is enabled (bsc#1185938 ltc#192043). - ibmvfc: Handle move login failure (bsc#1185938 ltc#192043). - ibmvfc: Reinit target retries (bsc#1185938 ltc#192043). - ibmvnic: add comments for spinlock_t definitions (bsc#1183871 ltc#192139). - ibmvnic: avoid calling napi_disable() twice (bsc#1065729). - ibmvnic: avoid multiple line dereference (bsc#1183871 ltc#192139). - ibmvnic: clean up the remaining debugfs data structures (bsc#1065729). - ibmvnic: correctly use dev_consume/free_skb_irq (jsc#SLE-17268 jsc#SLE-17043 bsc#1179243 ltc#189290 git-fixes). - ibmvnic: fix block comments (bsc#1183871 ltc#192139). - ibmvnic: fix braces (bsc#1183871 ltc#192139). - ibmvnic: fix miscellaneous checks (bsc#1183871 ltc#192139). - ibmvnic: improve failover sysfs entry (bsc#1043990 ltc#155681 git-fixes). - ibmvnic: merge do_change_param_reset into do_reset (bsc#1183871 ltc#192139). - ibmvnic: prefer 'unsigned long' over 'unsigned long int' (bsc#1183871 ltc#192139). - ibmvnic: prefer strscpy over strlcpy (bsc#1183871 ltc#192139). - ibmvnic: print adapter state as a string (bsc#1152457 ltc#174432 git-fixes). - ibmvnic: print reset reason as a string (bsc#1152457 ltc#174432 git-fixes). - ibmvnic: queue reset work in system_long_wq (bsc#1152457 ltc#174432 git-fixes). - ibmvnic: remove default label from to_string switch (bsc#1152457 ltc#174432 git-fixes). - ibmvnic: remove duplicate napi_schedule call in do_reset function (bsc#1065729). - ibmvnic: remove duplicate napi_schedule call in open function (bsc#1065729). - ibmvnic: remove unnecessary rmb() inside ibmvnic_poll (bsc#1183871 ltc#192139). - ibmvnic: remove unused spinlock_t stats_lock definition (bsc#1183871 ltc#192139). - ibmvnic: rework to ensure SCRQ entry reads are properly ordered (bsc#1183871 ltc#192139). - ice: Account for port VLAN in VF max packet size calculation (git-fixes). - ice: Account for port VLAN in VF max packet size calculation (git-fixes). - ice: Cleanup fltr list in case of allocation issues (git-fixes). - ice: Continue probe on link/PHY errors (jsc#SLE-12878). - ice: Fix for dereference of NULL pointer (git-fixes). - ice: Increase control queue timeout (git-fixes). - ice: Use port number instead of PF ID for WoL (jsc#SLE-12878). - ice: fix memory allocation call (jsc#SLE-12878). - ice: fix memory leak if register_netdev_fails (git-fixes). - ice: fix memory leak in ice_vsi_setup (git-fixes). - ice: fix memory leak of aRFS after resuming from suspend (jsc#SLE-12878). - ice: prevent ice_open and ice_stop during reset (git-fixes). - ice: remove DCBNL_DEVRESET bit from PF state (jsc#SLE-7926). - ics932s401: fix broken handling of errors when word reading fails (git-fixes). - igb: Fix duplicate include guard (git-fixes). - igb: XDP extack message on error (jsc#SLE-13536). - igb: XDP xmit back fix error code (jsc#SLE-13536). - igb: avoid premature Rx buffer reuse (jsc#SLE-13536). - igb: avoid transmit queue timeout in xdp path (jsc#SLE-13536). - igb: check timestamp validity (git-fixes). - igb: skb add metasize for xdp (jsc#SLE-13536). - igb: take VLAN double header into account (jsc#SLE-13536). - igb: use xdp_do_flush (jsc#SLE-13536). - igc: Fix Pause Frame Advertising (git-fixes). - igc: Fix Supported Pause Frame Link Setting (git-fixes). - igc: Fix igc_ptp_rx_pktstamp() (bsc#1160634). - igc: Fix igc_ptp_rx_pktstamp() (bsc#1160634). - igc: reinit_locked() should be called with rtnl_lock (git-fixes). - igc: reinit_locked() should be called with rtnl_lock (git-fixes). - iio: adc: ad7124: Fix missbalanced regulator enable / disable on error (git-fixes). - iio: adc: ad7124: Fix potential overflow due to non sequential channel numbers (git-fixes). - iio: adc: ad7768-1: Fix too small buffer passed to iio_push_to_buffers_with_timestamp() (git-fixes). - iio: adc: ad7793: Add missing error code in ad7793_setup() (git-fixes). - iio: adc: ad7949: fix wrong ADC result due to incorrect bit mask (git-fixes). - iio: adis16400: Fix an error code in adis16400_initial_setup() (git-fixes). - iio: gyro: fxas21002c: balance runtime power in error path (git-fixes). - iio: gyro: mpu3050: Fix error handling in mpu3050_trigger_handler (git-fixes). - iio: gyro: mpu3050: Fix reported temperature value (git-fixes). - iio: hid-sensor-humidity: Fix alignment issue of timestamp channel (git-fixes). - iio: hid-sensor-prox: Fix scale not correct issue (git-fixes). - iio: hid-sensor-temperature: Fix issues of timestamp channel (git-fixes). - iio: proximity: pulsedlight: Fix rumtime PM imbalance on error (git-fixes). - iio: tsl2583: Fix division by a zero lux_val (git-fixes). - iio:accel:adis16201: Fix wrong axis assignment that prevents loading (git-fixes). - iio:adc:qcom-spmi-vadc: add default scale to LR_MUX2_BAT_ID channel (git-fixes). - ima: Free IMA measurement buffer after kexec syscall (git-fixes). - include/linux/sched/mm.h: use rcu_dereference in in_vfork() (git-fixes). - intel_th: Consistency and off-by-one fix (git-fixes). - intel_th: pci: Add Alder Lake-M support (git-fixes). - intel_th: pci: Add Rocket Lake CPU support (git-fixes). - interconnect: core: fix error return code of icc_link_destroy() (git-fixes). - iommu/amd: Add support for map/unmap_resource (jsc#ECO-3482). - iommu/amd: Fix sleeping in atomic in increase_address_space() (bsc#1183277). - iommu/amd: Fix sleeping in atomic in increase_address_space() (bsc#1183310). - iommu/intel: Fix memleak in intel_irq_remapping_alloc (bsc#1183278). - iommu/intel: Fix memleak in intel_irq_remapping_alloc (bsc#1183312). - iommu/qcom: add missing put_device() call in qcom_iommu_of_xlate() (bsc#1183313). - iommu/qcom: add missing put_device() call in qcom_iommu_of_xlate() (bsc#1183637). - iommu/vt-d: Add get_domain_info() helper (bsc#1183279). - iommu/vt-d: Avoid panic if iommu init fails in tboot system (bsc#1183280). - iommu/vt-d: Avoid panic if iommu init fails in tboot system (bsc#1183315). - iommu/vt-d: Correctly check addr alignment in qi_flush_dev_iotlb_pasid() (bsc#1183281). - iommu/vt-d: Correctly check addr alignment in qi_flush_dev_iotlb_pasid() (bsc#1183316). - iommu/vt-d: Do not use flush-queue when caching-mode is on (bsc#1183282). - iommu/vt-d: Do not use flush-queue when caching-mode is on (bsc#1183317). - iommu/vt-d: Fix general protection fault in aux_detach_device() (bsc#1183283). - iommu/vt-d: Fix general protection fault in aux_detach_device() (bsc#1183318). - iommu/vt-d: Fix ineffective devTLB invalidation for subdevices (bsc#1183284). - iommu/vt-d: Fix ineffective devTLB invalidation for subdevices (bsc#1183319). - iommu/vt-d: Fix status code for Allocate/Free PASID command (bsc#1183320). - iommu/vt-d: Fix unaligned addresses for intel_flush_svm_range_dev() (bsc#1183285). - iommu/vt-d: Fix unaligned addresses for intel_flush_svm_range_dev() (bsc#1183321). - iommu/vt-d: Move intel_iommu info from struct intel_svm to struct intel_svm_dev (bsc#1183286). - iommu/vt-d: Move intel_iommu info from struct intel_svm to struct intel_svm_dev (bsc#1183322). - iommu/vt-d: Use device numa domain if RHSA is missing (bsc#1184585). - iommu: Check dev->iommu in dev_iommu_priv_get() before dereferencing it (bsc#1183311). - iommu: Switch gather->end to the inclusive end (bsc#1183314). - ionic: linearize tso skb with too many frags (bsc#1167773). - ionic: linearize tso skb with too many frags (bsc#1167773). - iopoll: introduce read_poll_timeout macro (git-fixes). - ipc/mqueue, msg, sem: Avoid relying on a stack reference past its expiry (bsc#1185988). - ipmi/watchdog: Stop watchdog timer when the current action is 'none' (bsc#1184855). - ipw2x00: potential buffer overflow in libipw_wx_set_encodeext() (git-fixes). - irqchip/ls-extirq: Add LS1043A, LS1088A external interrupt support (bsc#1184264). - irqchip/ls-extirq: Add LS1043A, LS1088A external interrupt support (bsc#1185233). - irqchip/ls-extirq: add IRQCHIP_SKIP_SET_WAKE to the irqchip flags (bsc#1184264). - irqchip/ls-extirq: add IRQCHIP_SKIP_SET_WAKE to the irqchip flags (bsc#1185233). - irqchip: Add support for Layerscape external interrupt lines (bsc#1185233). - isofs: release buffer head before return (bsc#1182613). - iwlwifi: add support for Qu with AX201 device (git-fixes). - iwlwifi: pcie: make cfg vs. trans_cfg more robust (git-fixes). - ixgbe: fail to create xfrm offload of IPsec tunnel mode SA (git-fixes). - ixgbe: fix unbalanced device enable/disable in suspend/resume (jsc#SLE-13706). - jffs2: fix use after free in jffs2_sum_write_data() (bsc#1184740). - kABI: Fix kABI caused by fixes for bsc#1174426 (bsc#1174426). - kABI: cover up change in struct kvm_arch (bsc#1184969). - kABI: powerpc/pmem: Include pmem prototypes (bsc#1113295 git-fixes). - kABI: powerpc/pseries: Add shutdown() to vio_driver and vio_bus (bsc#1184209 ltc#190917). - kABI: repair after "nVMX: Properly handle userspace interrupt window request" - kbuild: Fail if gold linker is detected (bcs#1181862). - kbuild: add dummy toolchains to enable all cc-option etc. in Kconfig (bcs#1181862). - kbuild: change *FLAGS_&lt;basetarget>.o to take the path relative to $(obj) (bcs#1181862). - kbuild: dummy-tools, fix inverted tests for gcc (bcs#1181862). - kbuild: dummy-tools, support MPROFILE_KERNEL checks for ppc (bsc#1181862). - kbuild: improve cc-option to clean up all temporary files (bsc#1178330). - kbuild: include scripts/Makefile.* only when relevant CONFIG is enabled (bcs#1181862). - kbuild: simplify GCC_PLUGINS enablement in dummy-tools/gcc (bcs#1181862). - kbuild: stop filtering out $(GCC_PLUGINS_CFLAGS) from cc-option base (bcs#1181862). - kbuild: use -S instead of -E for precise cc-option test in Kconfig (bsc#1178330). - kconfig: introduce m32-flag and m64-flag (bcs#1181862). - kernel-docs.spec.in: Build using an utf-8 locale. Sphinx cannot handle UTF-8 input in non-UTF-8 locale. - kernel/smp: make csdlock timeout depend on boot parameter (bsc#1180846). - kvm: svm: Update svm_xsaves_supported (jsc#SLE-13573). - kvm: x86: Enumerate support for CLZERO instruction (jsc#SLE-13573). - leds: lp5523: check return value of lp5xx_read and jump to cleanup code (git-fixes). - lib/syscall: fix syscall registers retrieval on 32-bit platforms (git-fixes). - libbpf: Add explicit padding to bpf_xdp_set_link_opts (bsc#1177028). - libbpf: Add explicit padding to btf_dump_emit_type_decl_opts (bsc#1177028). - libbpf: Clear map_info before each bpf_obj_get_info_by_fd (bsc#1155518). - libbpf: Fix BTF dump of pointer-to-array-of-struct (bsc#1155518). - libbpf: Fix INSTALL flag order (bsc#1155518). - libbpf: Fix bail out from 'ringbuf_process_ring()' on error (bsc#1177028). - libbpf: Fix error path in bpf_object__elf_init() (bsc#1177028). - libbpf: Fix signed overflow in ringbuf_process_ring (bsc#1177028). - libbpf: Initialize the bpf_seq_printf parameters array field by field (bsc#1177028). - libbpf: Only create rx and tx XDP rings when necessary (bsc#1155518). - libbpf: Use SOCK_CLOEXEC when opening the netlink socket (bsc#1155518). - libnvdimm/label: Return -ENXIO for no slot in __blk_label_update (bsc#1185269). - libnvdimm/namespace: Fix reaping of invalidated block-window-namespace labels (bsc#1185269). - libnvdimm/region: Fix nvdimm_has_flush() to handle ND_REGION_ASYNC (bsc#1184969 git-fixes). - libnvdimm/security: ensure sysfs poll thread woke up and fetch updated attr (git-fixes). - liquidio: Fix unintented sign extension of a left shift of a u16 (git-fixes). - locking/mutex: Fix non debug version of mutex_lock_io_nested() (git-fixes). - locking/qrwlock: Fix ordering in queued_write_lock_slowpath() (bsc#1185041). - lpfc: Decouple port_template and vport_template (bsc#185032). - mISDN: fix crash in fritzpci (git-fixes). - mac80211: Allow HE operation to be longer than expected (git-fixes). - mac80211: bail out if cipher schemes are invalid (git-fixes). - mac80211: choose first enabled channel for monitor (git-fixes). - mac80211: clear sta->fast_rx when STA removed from 4-addr VLAN (git-fixes). - mac80211: clear the beacon's CRC after channel switch (git-fixes). - mac80211: fix TXQ AC confusion (git-fixes). - mac80211: fix double free in ibss_leave (git-fixes). - mac80211: fix rate mask reset (git-fixes). - macvlan: macvlan_count_rx() needs to be aware of preemption (git-fixes). - md-cluster: fix use-after-free issue when removing rdev (bsc#1184082). - md/raid1: properly indicate failure when ending a failed write request (bsc#1185680). - md: do not flush workqueue unconditionally in md_open (bsc#1184081). - md: factor out a mddev_find_locked helper from mddev_find (bsc#1184081). - md: md_open returns -EBUSY when entering racing area (bsc#1184081). - md: split mddev_find (bsc#1184081). - mdio: fix mdio-thunder.c dependency & build error (git-fixes). - media: adv7604: fix possible use-after-free in adv76xx_remove() (git-fixes). - media: cros-ec-cec: do not bail on device_init_wakeup failure (git-fixes). - media: cx23885: add more quirks for reset DMA on some AMD IOMMU (git-fixes). - media: drivers: media: pci: sta2x11: fix Kconfig dependency on GPIOLIB (git-fixes). - media: dvb-usb: fix memory leak in dvb_usb_adapter_init (git-fixes). - media: dvbdev: Fix memory leak in dvb_media_device_free() (git-fixes). - media: em28xx: fix memory leak (git-fixes). - media: gspca/sq905.c: fix uninitialized variable (git-fixes). - media: i2c: adv7511-v4l2: fix possible use-after-free in adv7511_remove() (git-fixes). - media: i2c: adv7842: fix possible use-after-free in adv7842_remove() (git-fixes). - media: i2c: tda1997: Fix possible use-after-free in tda1997x_remove() (git-fixes). - media: imx: capture: Return -EPIPE from __capture_legacy_try_fmt() (git-fixes). - media: ite-cir: check for receive overflow (git-fixes). - media: m88rs6000t: avoid potential out-of-bounds reads on arrays (git-fixes). - media: mantis: remove orphan mantis_core.c (git-fixes). - media: mceusb: sanity check for prescaler value (git-fixes). - media: media/saa7164: fix saa7164_encoder_register() memory leak bugs (git-fixes). - media: omap4iss: return error code when omap4iss_get() failed (git-fixes). - media: platform: sti: Fix runtime PM imbalance in regs_show (git-fixes). - media: platform: sunxi: sun6i-csi: fix error return code of sun6i_video_start_streaming() (git-fixes). - media: rc: compile rc-cec.c into rc-core (git-fixes). - media: saa7134: use sg_dma_len when building pgtable (git-fixes). - media: saa7146: use sg_dma_len when building pgtable (git-fixes). - media: staging/intel-ipu3: Fix memory leak in imu_fmt (git-fixes). - media: staging/intel-ipu3: Fix race condition during set_fmt (git-fixes). - media: staging/intel-ipu3: Fix set_fmt error handling (git-fixes). - media: tc358743: fix possible use-after-free in tc358743_remove() (git-fixes). - media: usbtv: Fix deadlock on suspend (git-fixes). - media: uvcvideo: Allow entities with no pads (git-fixes). - media: v4l2-ctrls.c: fix race condition in hdl->requests list (git-fixes). - media: v4l2-ctrls.c: fix shift-out-of-bounds in std_validate (git-fixes). - media: v4l: vsp1: Fix bru null pointer access (git-fixes). - media: v4l: vsp1: Fix uif null pointer access (git-fixes). - media: vicodec: add missing v4l2_ctrl_request_hdl_put() (git-fixes). - memory: gpmc: fix out of bounds read and dereference on gpmc_cs[] (git-fixes). - memory: mtk-smi: Fix PM usage counter unbalance in mtk_smi ops (bsc#1183325). - memory: pl353: fix mask of ECC page_size config register (git-fixes). - mfd: arizona: Fix rumtime PM imbalance on error (git-fixes). - mfd: intel_pmt: Fix nuisance messages and handling of disabled capabilities (git-fixes). - mfd: lpc_sch: Partially revert "Add support for Intel Quark X1000" (git-fixes). - mfd: stm32-timers: Avoid clearing auto reload register (git-fixes). - misc/pvpanic: Export module FDT device table (git-fixes). - misc/uss720: fix memory leak in uss720_probe (git-fixes). - misc: eeprom_93xx46: Add quirk to support Microchip 93LC46B eeprom (git-fixes). - misc: fastrpc: restrict user apps from sending kernel RPC messages (git-fixes). - misc: lis3lv02d: Fix false-positive WARN on various HP models (git-fixes). - misc: vmw_vmci: explicitly initialize vmci_datagram payload (git-fixes). - misc: vmw_vmci: explicitly initialize vmci_notify_bm_set_msg struct (git-fixes). - mlxsw: spectrum_mr: Update egress RIF list before route's action (git-fixes). - mm, numa: fix bad pmd by atomically check for pmd_trans_huge when marking page tables prot_numa (bsc#1168777). - mm/rmap: fix potential pte_unmap on an not mapped pte (git-fixes). - mm: hugetlbfs: fix cannot migrate the fallocated HugeTLB page (git-fixes). - mm: memcontrol: fix cpuhotplug statistics flushing (bsc#1185606). - mmc: block: Update ext_csd.cache_ctrl if it was written (git-fixes). - mmc: core: Correct descriptions in mmc_of_parse() (git-fixes). - mmc: core: Do a power cycle when the CMD11 fails (git-fixes). - mmc: core: Fix partition switch time for eMMC (git-fixes). - mmc: core: Set read only for SD cards with permanent write protect bit (git-fixes). - mmc: cqhci: Add cqhci_deactivate() (git-fixes). - mmc: cqhci: Fix random crash when remove mmc module/card (git-fixes). - mmc: mmc_spi: Drop unused NO_IRQ definition (git-fixes). - mmc: mxs-mmc: Fix a resource leak in an error handling path in 'mxs_mmc_probe()' (git-fixes). - mmc: sdhci-iproc: Cap min clock frequency on BCM2711 (bsc#1186009) - mmc: sdhci-iproc: Set SDHCI_QUIRK_CAP_CLOCK_BASE_BROKEN on BCM2711 (bsc#1186009) - mmc: sdhci-of-arasan: Add missed checks for devm_clk_register() (git-fixes). - mmc: sdhci-of-dwcmshc: fix rpmb access (git-fixes). - mmc: sdhci-of-dwcmshc: implement specific set_uhs_signaling (git-fixes). - mmc: sdhci-of-dwcmshc: set SDHCI_QUIRK2_PRESET_VALUE_BROKEN (git-fixes). - mmc: sdhci-of-esdhc: make sure delay chain locked for HS400 (git-fixes). - mmc: sdhci-of-esdhc: set timeout to max before tuning (git-fixes). - mmc: sdhci-pci-gli: increase 1.8V regulator wait (git-fixes). - mmc: sdhci-pci: Add PCI IDs for Intel LKF (git-fixes). - mmc: sdhci-pci: Fix SDHCI_RESET_ALL for CQHCI for Intel GLK-based controllers (git-fixes). - mmc: sdhci-pci: Fix initialization of some SD cards for Intel BYT-based controllers (git-fixes). - mmc: sdhci: Check for reset prior to DMA address unmap (git-fixes). - mmc: sdhci: Use Auto CMD Auto Select only when v4_mode is true (git-fixes). - mmc: uniphier-sd: Fix a resource leak in the remove function (git-fixes). - mmc: uniphier-sd: Fix an error handling path in uniphier_sd_probe() (git-fixes). - mount: fix mounting of detached mounts onto targets that reside on shared mounts (git-fixes). - mt7601u: fix always true expression (git-fixes). - mt76: dma: do not report truncated frames to mac80211 (git-fixes). - mt76: mt7615: fix entering driver-own state on mt7663 (git-fixes). - mt76: mt7615: support loading EEPROM for MT7613BE (git-fixes). - mt76: mt76x0: disable GTK offloading (git-fixes). - mt76: mt7915: fix aggr len debugfs node (git-fixes). - mt76: mt7915: fix txpower init for TSSI off chips (git-fixes). - mtd: Handle possible -EPROBE_DEFER from parse_mtd_partitions() (git-fixes). - mtd: rawnand: atmel: Update ecc_stats.corrected counter (git-fixes). - mtd: rawnand: brcmnand: fix OOB R/W with Hamming ECC (git-fixes). - mtd: rawnand: fsmc: Fix error code in fsmc_nand_probe() (git-fixes). - mtd: rawnand: gpmi: Fix a double free in gpmi_nand_init (git-fixes). - mtd: rawnand: qcom: Return actual error code instead of -ENODEV (git-fixes). - mtd: require write permissions for locking and badblock ioctls (git-fixes). - mtd: spi-nor: Rename "n25q512a" to "mt25qu512a (n25q512a)" (bsc#1167260). - mtd: spi-nor: Split mt25qu512a (n25q512a) entry into two (bsc#1167260). - mtd: spinand: core: add missing MODULE_DEVICE_TABLE() (git-fixes). - mwifiex: pcie: skip cancel_work_sync() on reset failure path (git-fixes). - nbd: fix a block_device refcount leak in nbd_release (git-fixes). - net, xdp: Update pkt_type if generic XDP changes unicast MAC (git-fixes). - net/mlx4_core: Add missed mlx4_free_cmd_mailbox() (git-fixes). - net/mlx4_en: update moderation when config reset (git-fixes). - net/mlx5: Add back multicast stats for uplink representor (jsc#SLE-15172). - net/mlx5: Delete extra dump stack that gives nothing (git-fixes). - net/mlx5: Do not request more than supported EQs (git-fixes). - net/mlx5: Fix PPLM register mapping (jsc#SLE-8464). - net/mlx5: Fix bit-wise and with zero (jsc#SLE-15172). - net/mlx5: Fix health error state handling (bsc#1186467). - net/mlx5e: Allow to match on MPLS parameters only for MPLS over UDP (jsc#SLE-15172). - net/mlx5e: Do not match on Geneve options in case option masks are all zero (git-fixes). - net/mlx5e: E-switch, Fix rate calculation division (jsc#SLE-8464). - net/mlx5e: Fix error path for ethtool set-priv-flag (git-fixes). - net/mlx5e: Fix ethtool indication of connector type (git-fixes). - net/mlx5e: Fix setting of RS FEC mode (jsc#SLE-15172). - net/mlx5e: Offload tuple rewrite for non-CT flows (jsc#SLE-15172). - net/mlx5e: RX, Mind the MPWQE gaps when calculating offsets (jsc#SLE-15172). - net/mlx5e: fix ingress_ifindex check in mlx5e_flower_parse_meta (jsc#SLE-8464). - net/qlcnic: Fix a use after free in qlcnic_83xx_get_minidump_template (git-fixes). - net/sched: act_ct: fix wild memory access when clearing fragments (bsc#1176447). - net: arc_emac: Fix memleak in arc_mdio_probe (git-fixes). - net: atheros: switch from 'pci_' to 'dma_' API (git-fixes). - net: atlantic: fix out of range usage of active_vlans array (git-fixes). - net: atlantic: fix potential error handling (git-fixes). - net: atlantic: fix use after free kasan warn (git-fixes). - net: b44: fix error return code in b44_init_one() (git-fixes). - net: bonding: fix error return code of bond_neigh_init() (bsc#1154353). - net: cdc-phonet: fix data-interface release on probe failure (git-fixes). - net: cls_api: Fix uninitialised struct field bo->unlocked_driver_cb (bsc#1176447). - net: dsa: felix: implement port flushing on .phylink_mac_link_down (git-fixes). - net: dsa: rtl8366: Fix VLAN semantics (git-fixes). - net: dsa: rtl8366: Fix VLAN set-up (git-fixes). - net: dsa: rtl8366rb: Support all 4096 VLANs (git-fixes). - net: enetc: allow hardware timestamping on TX queues with tc-etf enabled (git-fixes). - net: enetc: do not disable VLAN filtering in IFF_PROMISC mode (git-fixes). - net: enetc: fix link error again (git-fixes). - net: enetc: remove bogus write to SIRXIDR from enetc_setup_rxbdr (git-fixes). - net: enetc: take the MDIO lock only once per NAPI poll cycle (git-fixes). - net: enic: Cure the enic api locking trainwreck (git-fixes). - net: ethernet: aquantia: Fix wrong return value (git-fixes). - net: ethernet: cavium: octeon_mgmt: use phy_start and phy_stop (git-fixes). - net: ethernet: ibm: ibmvnic: Fix some kernel-doc misdemeanours (bsc#1183871 ltc#192139). - net: ethernet: ti: cpsw: fix clean up of vlan mc entries for host port (git-fixes). - net: ethernet: ti: cpsw: fix error return code in cpsw_probe() (git-fixes). - net: fec: Fix PHY init after phy_reset_after_clk_enable() (git-fixes). - net: fec: Fix phy_device lookup for phy_reset_after_clk_enable() (git-fixes). - net: fec: Fix reference count leak in fec series ops (git-fixes). - net: gemini: Fix another missing clk_disable_unprepare() in probe (git-fixes). - net: gemini: Fix missing free_netdev() in error path of gemini_ethernet_port_probe() (git-fixes). - net: geneve: check skb is large enough for IPv4/IPv6 header (git-fixes). - net: geneve: modify IP header check in geneve6_xmit_skb and geneve_xmit_skb (git-fixes). - net: gianfar: Add of_node_put() before goto statement (git-fixes). - net: hdlc: In hdlc_rcv, check to make sure dev is an HDLC device (git-fixes). - net: hdlc_raw_eth: Clear the IFF_TX_SKB_SHARING flag after calling ether_setup (git-fixes). - net: hns3: Fix for geneve tx checksum bug (git-fixes). - net: hns3: Remove the left over redundant check & assignment (bsc#1154353). - net: hns3: Remove un-necessary 'else-if' in the hclge_reset_event() (git-fixes). - net: hns3: add check for HNS3_NIC_STATE_INITED in hns3_reset_notify_up_enet() (git-fixes). - net: hns3: clear VF down state bit before request link status (git-fixes). - net: hns3: clear unnecessary reset request in hclge_reset_rebuild (git-fixes). - net: hns3: disable phy loopback setting in hclge_mac_start_phy (git-fixes). - net: hns3: fix bug when calculating the TCAM table info (git-fixes). - net: hns3: fix for vxlan gpe tx checksum bug (git-fixes). - net: hns3: fix incorrect configuration for igu_egu_hw_err (git-fixes). - net: hns3: fix query vlan mask value error for flow director (git-fixes). - net: hns3: initialize the message content in hclge_get_link_mode() (git-fixes). - net: hns3: use netif_tx_disable to stop the transmit queue (git-fixes). - net: korina: cast KSEG0 address to pointer in kfree (git-fixes). - net: korina: fix kfree of rx/tx descriptor array (git-fixes). - net: lantiq: Wait for the GPHY firmware to be ready (git-fixes). - net: ll_temac: Add more error handling of dma_map_single() calls (git-fixes). - net: ll_temac: Fix RX buffer descriptor handling on GFP_ATOMIC pressure (git-fixes). - net: ll_temac: Fix race condition causing TX hang (git-fixes). - net: ll_temac: Handle DMA halt condition caused by buffer underrun (git-fixes). - net: mvneta: fix double free of txq->buf (git-fixes). - net: mvneta: make tx buffer array agnostic (git-fixes). - net: pasemi: fix error return code in pasemi_mac_open() (git-fixes). - net: phy: broadcom: Only advertise EEE for supported modes (git-fixes). - net: phy: intel-xway: enable integrated led functions (git-fixes). - net: phy: marvell: fix m88e1011_set_downshift (git-fixes). - net: phy: marvell: fix m88e1111_set_downshift (git-fixes). - net: qcom/emac: add missed clk_disable_unprepare in error path of emac_clks_phase1_init (git-fixes). - net: qualcomm: rmnet: Fix incorrect receive packet handling during cleanup (git-fixes). - net: sched: disable TCQ_F_NOLOCK for pfifo_fast (bsc#1183405) - net: smc911x: Adjust indentation in smc911x_phy_configure (git-fixes). - net: spider_net: Fix the size used in a 'dma_free_coherent()' call (git-fixes). - net: stmmac: Fix incorrect location to set real_num_rx|tx_queues (git-fixes). - net: stmmac: Use rtnl_lock/unlock on netif_set_real_num_rx_queues() call (git-fixes). - net: stmmac: fix missing IFF_MULTICAST check in dwmac4_set_filter (git-fixes). - net: stmmac: removed enabling eee in EEE set callback (git-fixes). - net: stmmac: use netif_tx_start|stop_all_queues() function (git-fixes). - net: stmmac: xgmac: fix missing IFF_MULTICAST checki in dwxgmac2_set_filter (git-fixes). - net: thunderx: Fix unintentional sign extension issue (git-fixes). - net: tulip: Adjust indentation in {dmfe, uli526x}_init_module (git-fixes). - net: usb: ax88179_178a: fix missing stop entry in driver_info (git-fixes). - net: usb: fix memory leak in smsc75xx_bind (git-fixes). - net: usb: qmi_wwan: allow qmimux add/del with master up (git-fixes). - net: usb: qmi_wwan: support ZTE P685M modem (git-fixes). - net: wan/lmc: unregister device when no matching device is found (git-fixes). - net:nfc:digital: Fix a double free in digital_tg_recv_dep_req (git-fixes). - netdevice: Add missing IFF_PHONY_HEADROOM self-definition (git-fixes). - netdevsim: init u64 stats for 32bit hardware (git-fixes). - netfilter: conntrack: Make global sysctls readonly in non-init netns (bsc#1176447). - netfilter: conntrack: add new sysctl to disable RST check (bsc#1183947 bsc#1185950). - netfilter: conntrack: avoid misleading 'invalid' in log message (bsc#1183947 bsc#1185950). - netfilter: conntrack: improve RST handling when tuple is re-used (bsc#1183947 bsc#1185950). - netfilter: flowtable: Make sure GC works periodically in idle system (bsc#1176447). - netfilter: flowtable: fix NAT IPv6 offload mangling (bsc#1176447). - netfilter: nftables: allow to update flowtable flags (bsc#1176447). - netfilter: nftables: report EOPNOTSUPP on unsupported flowtable flags (bsc#1176447). - netsec: restore phy power state after controller reset (bsc#1183757). - nfc: pn533: prevent potential memory corruption (git-fixes). - nfp: devlink: initialize the devlink port attribute "lanes" (bsc#1176447). - nfp: flower: add ipv6 bit to pre_tunnel control message (bsc#1176447). - nfp: flower: fix pre_tun mask id allocation (bsc#1154353). - nfp: flower: ignore duplicate merge hints from FW (git-fixes). - node: fix device cleanups in error handling code (git-fixes). - null_blk: fix passing of REQ_FUA flag in null_handle_rq (git-fixes). - nvme-core: add cancel tagset helpers (bsc#1183976). - nvme-fabrics: decode host pathing error for connect (bsc#1179827). - nvme-fabrics: fix kato initialization (bsc#1182591). - nvme-fabrics: only reserve a single tag (bsc#1182077). - nvme-fabrics: reject I/O to offline device (bsc#1181161). - nvme-fc: check sgl supported by target (bsc#1179827). - nvme-fc: clear q_live at beginning of association teardown (bsc#1186479). - nvme-fc: fix racing controller reset and create association (bsc#1183048). - nvme-fc: return NVME_SC_HOST_ABORTED_CMD when a command has been aborted (bsc#1180197). - nvme-fc: return NVME_SC_HOST_ABORTED_CMD when a command has been aborted (bsc#1184259). - nvme-fc: set NVME_REQ_CANCELLED in nvme_fc_terminate_exchange() (bsc#1180197). - nvme-fc: set NVME_REQ_CANCELLED in nvme_fc_terminate_exchange() (bsc#1184259). - nvme-fc: short-circuit reconnect retries (bsc#1179827). - nvme-hwmon: Return error code when registration fails (bsc#1177326). - nvme-hwmon: Return error code when registration fails (bsc#1177326). - nvme-multipath: fix double initialization of ANA state (bsc#1178612, bsc#1184259). - nvme-multipath: reset bdev to ns head when failover (bsc#178378 bsc#1182999). - nvme-pci: Remove tag from process cq (git-fixes). - nvme-pci: Remove two-pass completions (git-fixes). - nvme-pci: Simplify nvme_poll_irqdisable (git-fixes). - nvme-pci: align io queue count with allocted nvme_queue in (git-fixes). - nvme-pci: avoid race between nvme_reap_pending_cqes() and nvme_poll() (git-fixes). - nvme-pci: dma read memory barrier for completions (git-fixes). - nvme-pci: fix "slimmer CQ head update" (git-fixes). - nvme-pci: make sure write/poll_queues less or equal then cpu (git-fixes). - nvme-pci: remove last_sq_tail (git-fixes). - nvme-pci: remove volatile cqes (git-fixes). - nvme-pci: slimmer CQ head update (git-fixes). - nvme-pci: use simple suspend when a HMB is enabled (git-fixes). - nvme-tcp: Fix possible race of io_work and direct send (git-fixes). - nvme-tcp: Fix warning with CONFIG_DEBUG_PREEMPT (git-fixes). - nvme-tcp: add clean action for failed reconnection (bsc#1183976). - nvme-tcp: fix kconfig dependency warning when !CRYPTO (git-fixes). - nvme-tcp: fix misuse of __smp_processor_id with preemption (git-fixes). - nvme-tcp: fix possible hang waiting for icresp response (bsc#1179519). - nvme-tcp: fix possible hang when failing to set io queues (bsc#1181161). - nvme-tcp: use cancel tagset helper for tear down (bsc#1183976). - nvme: Fix NULL dereference for pci nvme controllers (bsc#1182378). - nvme: add 'kato' sysfs attribute (bsc#1179825). - nvme: add NVME_REQ_CANCELLED flag in nvme_cancel_request() (bsc#1180197). - nvme: add NVME_REQ_CANCELLED flag in nvme_cancel_request() (bsc#1184259). - nvme: allocate the keep alive request using BLK_MQ_REQ_NOWAIT (bsc#1182077). - nvme: call nvme_identify_ns as the first thing in nvme_alloc_ns_block (bsc#1180197). - nvme: clean up the check for too large logic block sizes (bsc#1180197). - nvme: define constants for identification values (git-fixes). - nvme: do not intialize hwmon for discovery controllers (bsc#1184259). - nvme: do not intialize hwmon for discovery controllers (git-fixes). - nvme: document nvme controller states (git-fixes). - nvme: explicitly update mpath disk capacity on revalidation (git-fixes). - nvme: expose reconnect_delay and ctrl_loss_tmo via sysfs (bsc#1182378). - nvme: factor out a nvme_configure_metadata helper (bsc#1180197). - nvme: fix controller instance leak (git-fixes). - nvme: fix deadlock in disconnect during scan_work and/or ana_work (git-fixes). - nvme: fix initialization of the zone bitmaps (bsc#1180197). - nvme: fix possible deadlock when I/O is blocked (git-fixes). - nvme: freeze the queue over ->lba_shift updates (bsc#1180197). - nvme: lift the check for an unallocated namespace into nvme_identify_ns (bsc#1180197). - nvme: merge nvme_keep_alive into nvme_keep_alive_work (bsc#1182077). - nvme: move nvme_validate_ns (bsc#1180197). - nvme: opencode revalidate_disk in nvme_validate_ns (bsc#1180197). - nvme: query namespace identifiers before adding the namespace (bsc#1180197). - nvme: refactor nvme_validate_ns (bsc#1180197). - nvme: remove nvme_identify_ns_list (bsc#1180197). - nvme: remove nvme_update_formats (bsc#1180197). - nvme: remove superfluous else in nvme_ctrl_loss_tmo_store (bsc#1182378). - nvme: remove the 0 lba_shift check in nvme_update_ns_info (bsc#1180197). - nvme: remove the disk argument to nvme_update_zone_info (bsc#1180197). - nvme: rename __nvme_revalidate_disk (bsc#1180197). - nvme: rename _nvme_revalidate_disk (bsc#1180197). - nvme: rename nvme_validate_ns to nvme_validate_or_alloc_ns (bsc#1180197). - nvme: retrigger ANA log update if group descriptor isn't found (git-fixes) - nvme: return an error if nvme_set_queue_count() fails (bsc#1180197). - nvme: revalidate zone bitmaps in nvme_update_ns_info (bsc#1180197). - nvme: sanitize KATO setting (bsc#1179825). - nvme: set the queue limits in nvme_update_ns_info (bsc#1180197). - nvme: simplify error logic in nvme_validate_ns() (bsc#1180197). - nvme: simplify error logic in nvme_validate_ns() (bsc#1184259). - nvme: update the known admin effects (bsc#1180197). - nvmet-rdma: Fix list_del corruption on queue establishment failure (bsc#1183501). - nvmet: fix a memory leak (git-fixes). - nvmet: seset ns->file when open fails (bsc#1183873). - nvmet: use new ana_log_size instead the old one (bsc#1184259). - nxp-i2c: restore includes for kABI (bsc#1185589). - nxp-nci: add NXP1002 id (bsc#1185589). - ocfs2: fix a use after free on error (bsc#1184738). - ovl: fix dentry leak in ovl_get_redirect (bsc#1184176). - ovl: fix out of date comment and unreachable code (bsc#1184176). - ovl: fix regression with re-formatted lower squashfs (bsc#1184176). - ovl: fix unneeded call to ovl_change_flags() (bsc#1184176). - ovl: fix value of i_ino for lower hardlink corner case (bsc#1184176). - ovl: initialize error in ovl_copy_xattr (bsc#1184176). - ovl: relax WARN_ON() when decoding lower directory file handle (bsc#1184176). - partitions/ibm: fix non-DASD devices (bsc#1185857 LTC#192526). - pata_arasan_cf: fix IRQ check (git-fixes). - pata_ipx4xx_cf: fix IRQ check (git-fixes). - perf/amd/uncore: Fix sysfs type mismatch (bsc#1178134). - phy: marvell: ARMADA375_USBCLUSTER_PHY should not default to y, unconditionally (git-fixes). - phy: phy-twl4030-usb: Fix possible use-after-free in twl4030_usb_remove() (git-fixes). - pinctrl: Ingenic: Add missing pins to the JZ4770 MAC MII group (git-fixes). - pinctrl: core: Fix kernel doc string for pin_get_name() (git-fixes). - pinctrl: ingenic: Improve unreachable code generation (git-fixes). - pinctrl: lewisburg: Update number of pins in community (git-fixes). - pinctrl: qcom: spmi-gpio: fix warning about irq chip reusage (git-fixes). - pinctrl: rockchip: fix restore error in resume (git-fixes). - pinctrl: samsung: use 'int' for register masks in Exynos (git-fixes). - platform/mellanox: mlxbf-tmfifo: Fix a memory barrier issue (git-fixes). - platform/x86: acer-wmi: Add ACER_CAP_KBD_DOCK quirk for the Aspire Switch 10E SW3-016 (git-fixes). - platform/x86: acer-wmi: Add ACER_CAP_SET_FUNCTION_MODE capability flag (git-fixes). - platform/x86: acer-wmi: Add new force_caps module parameter (git-fixes). - platform/x86: acer-wmi: Add support for SW_TABLET_MODE on Switch devices (git-fixes). - platform/x86: acer-wmi: Cleanup ACER_CAP_FOO defines (git-fixes). - platform/x86: acer-wmi: Cleanup accelerometer device handling (git-fixes). - platform/x86: intel-hid: Support Lenovo ThinkPad X1 Tablet Gen 2 (git-fixes). - platform/x86: intel-vbtn: Stop reporting SW_DOCK events (git-fixes). - platform/x86: intel_int0002_vgpio: Only call enable_irq_wake() when using s2idle (git-fixes). - platform/x86: intel_pmc_core: Do not use global pmcdev in quirks (git-fixes). - platform/x86: intel_pmt_crashlog: Fix incorrect macros (git-fixes). - platform/x86: pmc_atom: Match all Beckhoff Automation baytrail boards with critclk_systems DMI table (git-fixes). - platform/x86: thinkpad_acpi: Allow the FnLock LED to change state (git-fixes). - platform/x86: thinkpad_acpi: Correct thermal sensor allocation (git-fixes). - posix-timers: Preserve return value in clock_adjtime32() (git-fixes) - post.sh: Return an error when module update fails (bsc#1047233 bsc#1184388). - power: supply: Use IRQF_ONESHOT (git-fixes). - power: supply: generic-adc-battery: fix possible use-after-free in gab_remove() (git-fixes). - power: supply: s3c_adc_battery: fix possible use-after-free in s3c_adc_bat_remove() (git-fixes). - powerepc/book3s64/hash: Align start/end address correctly with bolt mapping (bsc#1184957). - powerpc/64s/exception: Clean up a missed SRR specifier (jsc#SLE-9246 git-fixes). - powerpc/64s: Fix crashes when toggling entry flush barrier (bsc#1177666 git-fixes). - powerpc/64s: Fix crashes when toggling stf barrier (bsc#1087082 git-fixes). - powerpc/64s: Fix instruction encoding for lis in ppc_function_entry() (bsc#1065729). - powerpc/64s: Fix pte update for kernel memory on radix (bsc#1055117 git-fixes). - powerpc/asm-offsets: GPR14 is not needed either (bsc#1065729). - powerpc/book3s64/radix: Remove WARN_ON in destroy_context() (bsc#1183692 ltc#191963). - powerpc/eeh: Fix EEH handling for hugepages in ioremap space (bsc#1156395). - powerpc/fadump: Mark fadump_calculate_reserve_size as __init (bsc#1065729). - powerpc/kexec_file: Use current CPU info while setting up FDT (bsc#1184615 ltc#189835). - powerpc/kuap: Restore AMR after replaying soft interrupts (bsc#1156395). - powerpc/mm: Add cond_resched() while removing hpte mappings (bsc#1183289 ltc#191637). - powerpc/papr_scm: Fix build error due to wrong printf specifier (bsc#1184969). - powerpc/papr_scm: Implement support for H_SCM_FLUSH hcall (bsc#1184969). - powerpc/perf: Fix PMU constraint check for EBB events (bsc#1065729). - powerpc/perf: Fix sampled instruction type for larx/stcx (jsc#SLE-13513). - powerpc/perf: Fix the threshold event selection for memory events in power10 (jsc#SLE-13513). - powerpc/pmem: Include pmem prototypes (bsc#1113295 git-fixes). - powerpc/prom: Mark identical_pvr_fixup as __init (bsc#1065729). - powerpc/pseries/mobility: handle premature return from H_JOIN (bsc#1181674 ltc#189159 git-fixes bsc#1183662 ltc#191922). - powerpc/pseries/mobility: use struct for shared state (bsc#1181674 ltc#189159 git-fixes bsc#1183662 ltc#191922). - powerpc/pseries/ras: Remove unused variable 'status' (bsc#1065729). - powerpc/pseries: Add shutdown() to vio_driver and vio_bus (bsc#1184209 ltc#190917). - powerpc/pseries: Do not trace hcall tracing wrapper (bsc#1185110 ltc#192091). - powerpc/pseries: Fix hcall tracing recursion in pv queued spinlocks (bsc#1185110 ltc#192091). - powerpc/pseries: use notrace hcall variant for H_CEDE idle (bsc#1185110 ltc#192091). - powerpc/pseries: warn if recursing into the hcall tracing code (bsc#1185110 ltc#192091). - powerpc/smp: Reintroduce cpu_core_mask (jsc#SLE-13615 bsc#1180100 ltc#190257 git-fixes). - powerpc/sstep: Check instruction validity against ISA version before emulation (bsc#1156395). - powerpc/sstep: Check instruction validity against ISA version before emulation (bsc#1156395). - powerpc/sstep: Fix darn emulation (bsc#1156395). - powerpc/sstep: Fix incorrect return from analyze_instr() (bsc#1156395). - powerpc/sstep: Fix load-store and update emulation (bsc#1156395). - powerpc/time: Enable sched clock for irqtime (bsc#1156395). - powerpc/uaccess: Avoid might_fault() when user access is enabled (bsc#1156395). - powerpc/uaccess: Perform barrier_nospec() in KUAP allowance helpers (bsc#1156395). - powerpc/uaccess: Simplify unsafe_put_user() implementation (bsc#1156395). - powerpc/xive: Drop check on irq_data in xive_core_debug_show() (bsc#1177437 ltc#188522 jsc#SLE-13294 git-fixes). - powerpc/xmon: Fix build failure for 8xx (jsc#SLE-12936 git-fixes). - powerpc: Fix inverted SET_FULL_REGS bitop (jsc#SLE-9246 git-fixes). - powerpc: Fix missing declaration ofable_kernel_vsx() (git-fixes). - proc: fix lookup in /proc/net subdirectories after setns(2) (git-fixes). - qlcnic: fix error return code in qlcnic_83xx_restart_hw() (git-fixes). - qtnfmac: Fix possible buffer overflow in qtnf_event_handle_external_auth (git-fixes). - qxl: Fix uninitialised struct field head.surface_id (git-fixes). - r8169: do not advertise pause in jumbo mode (git-fixes). - r8169: fix DMA being used after buffer free if WoL is enabled (git-fixes). - r8169: tweak max read request size for newer chips also in jumbo mtu mode (git-fixes). - regmap: set debugfs_name to NULL after it is freed (git-fixes). - regulator: Avoid a double 'of_node_get' in 'regulator_of_get_init_node()' (git-fixes). - regulator: bd9571mwv: Fix AVS and DVFS voltage range (git-fixes). - reintroduce cqhci_suspend for kABI (git-fixes). - reiserfs: update reiserfs_xattrs_initialized() condition (bsc#1184737). - rsi: Fix TX EAPOL packet handling against iwlwifi AP (git-fixes). - rsi: Move card interrupt handling to RX thread (git-fixes). - rsi: Use resume_noirq for SDIO (git-fixes). - rsxx: remove extraneous 'const' qualifier (git-fixes). - rtc: ds1307: Fix wday settings for rx8130 (git-fixes). - rtc: fsl-ftm-alarm: add MODULE_TABLE() (bsc#1185454). - rtc: fsl-ftm-alarm: avoid struct rtc_time conversions (bsc#1185454). - rtc: fsl-ftm-alarm: enable acpi support (bsc#1185454). - rtc: fsl-ftm-alarm: fix freeze(s2idle) failed to wake (bsc#1185454). - rtc: fsl-ftm-alarm: report alarm to core (bsc#1185454). - rtc: fsl-ftm-alarm: switch to ktime_get_real_seconds (bsc#1185454). - rtc: fsl-ftm-alarm: switch to rtc_time64_to_tm/rtc_tm_to_time64 (bsc#1185454). - rtc: fsl-ftm-alarm: update acpi device id (bsc#1185454). - rtc: pcf2127: add alarm support (bsc#1185233). - rtc: pcf2127: add pca2129 device id (bsc#1185233). - rtc: pcf2127: add tamper detection support (bsc#1185233). - rtc: pcf2127: add watchdog feature support (bsc#1185233). - rtc: pcf2127: bugfix: watchdog build dependency (bsc#1185233). - rtc: pcf2127: cleanup register and bit defines (bsc#1185233). - rtc: pcf2127: convert to devm_rtc_allocate_device (bsc#1185233). - rtc: pcf2127: fix a bug when not specify interrupts property (bsc#1185233). - rtc: pcf2127: fix alarm handling (bsc#1185233). - rtc: pcf2127: fix pcf2127_nvmem_read/write() returns (bsc#1185233). - rtc: pcf2127: handle boot-enabled watchdog feature (bsc#1185233). - rtc: pcf2127: handle timestamp interrupts (bsc#1185495). - rtc: pcf2127: let the core handle rtc range (bsc#1185233). - rtc: pcf2127: move watchdog initialisation to a separate function (bsc#1185233). - rtc: pcf2127: only use watchdog when explicitly available (bsc#1185233). - rtc: pcf2127: properly set flag WD_CD for rtc chips(pcf2129, pca2129) (bsc#1185233). - rtc: pcf2127: remove unnecessary #ifdef (bsc#1185233). - rtc: pcf2127: set regmap max_register (bsc#1185233). - rtc: pcf2127: watchdog: handle nowayout feature (bsc#1185233). - rtlwifi: 8821ae: upgrade PHY and RF parameters (git-fixes). - rtw88: Fix an error code in rtw_debugfs_set_rsvd_page() (git-fixes). - rtw88: Fix array overrun in rtw_get_tx_power_params() (git-fixes). - rtw88: coex: 8821c: correct antenna switch function (git-fixes). - s390/cio: return -EFAULT if copy_to_user() fails (git-fixes). - s390/cio: return -EFAULT if copy_to_user() fails (git-fixes). - s390/crypto: return -EFAULT if copy_to_user() fails (git-fixes). - s390/dasd: fix hanging DASD driver unbind (bsc#1183932 LTC#192153). - s390/dasd: fix hanging IO request during DASD driver unbind (git-fixes). - s390/entry: save the caller of psw_idle (bsc#1185677). - s390/ipl: support NVMe IPL kernel parameters (bsc#1185980 LTC#192679). - s390/kdump: fix out-of-memory with PCI (bsc#1182257 LTC#191375). - s390/pci: fix leak of PCI device structure (git-fixes). - s390/qeth: fix memory leak after failed TX Buffer allocation (git-fixes). - s390/qeth: fix notification for pending buffers during teardown (git-fixes). - s390/qeth: improve completion of pending TX buffers (git-fixes). - s390/qeth: schedule TX NAPI on QAOB completion (git-fixes). - s390/vtime: fix increased steal time accounting (bsc#1183859). - s390/zcrypt: return EIO when msg retry limit reached (git-fixes). - samples, bpf: Add missing munmap in xdpsock (bsc#1155518). - samples/bpf: Fix possible hang in xdpsock with multiple threads (bsc#1155518). - sata_mv: add IRQ checks (git-fixes). - sched/eas: Do not update misfit status if the task is pinned (git-fixes) - sched/fair: Avoid stale CPU util_est value for schedutil in (git-fixes) - sched/fair: Fix shift-out-of-bounds in load_balance() (git fixes (sched)). - sched/fair: Fix unfairness caused by missing load decay (git-fixes) - scripts/git_sort/git_sort.py: add bpf git repo - scsi: aacraid: Improve compat_ioctl handlers (bsc#1186352). - scsi: block: Fix a race in the runtime power management code (git-fixes). - scsi: core: Only return started requests from scsi_host_find_tag() (bsc#1179851). - scsi: core: Run queue in case of I/O resource contention failure (bsc#1186416). - scsi: core: add scsi_host_busy_iter() (bsc#1179851). - scsi: fnic: Kill 'exclude_id' argument to fnic_cleanup_io() (bsc#1179851). - scsi: fnic: Remove bogus ratelimit messages (bsc#1183249). - scsi: libfc: Avoid invoking response handler twice if ep is already completed (bsc#1186573). - scsi: lpfc: Add a option to enable interlocked ABTS before job completion (bsc#1186451). - scsi: lpfc: Add ndlp kref accounting for resume RPI path (bsc#1186451). - scsi: lpfc: Change wording of invalid pci reset log message (bsc#1182574). - scsi: lpfc: Copyright updates for 12.8.0.9 patches (bsc#1185472). - scsi: lpfc: Correct function header comments related to ndlp reference counting (bsc#1182574). - scsi: lpfc: Eliminate use of LPFC_DRIVER_NAME in lpfc_attr.c (bsc#1185472). - scsi: lpfc: Fix "Unexpected timeout" error in direct attach topology (bsc#1186451). - scsi: lpfc: Fix ADISC handling that never frees nodes (bsc#1182574). - scsi: lpfc: Fix DMA virtual address ptr assignment in bsg (bsc#1185365). - scsi: lpfc: Fix FLOGI failure due to accessing a freed node (bsc#1182574). - scsi: lpfc: Fix NMI crash during rmmod due to circular hbalock dependency (bsc#1185472). - scsi: lpfc: Fix Node recovery when driver is handling simultaneous PLOGIs (bsc#1186451). - scsi: lpfc: Fix PLOGI ACC to be transmit after REG_LOGIN (bsc#1182574). - scsi: lpfc: Fix a bunch of kernel-doc issues (bsc#1185472). - scsi: lpfc: Fix a bunch of kernel-doc misdemeanours (bsc#1185472). - scsi: lpfc: Fix a bunch of misnamed functions (bsc#1185472). - scsi: lpfc: Fix a few incorrectly named functions (bsc#1185472). - scsi: lpfc: Fix a typo (bsc#1185472). - scsi: lpfc: Fix bad memory access during VPD DUMP mailbox command (bsc#1186451). - scsi: lpfc: Fix crash caused by switch reboot (bsc#1182574). - scsi: lpfc: Fix crash when a REG_RPI mailbox fails triggering a LOGO response (bsc#1185472). - scsi: lpfc: Fix crash when lpfc_sli4_hba_setup() fails to initialize the SGLs (bsc#1186451). - scsi: lpfc: Fix dropped FLOGI during pt2pt discovery recovery (bsc#1182574). - scsi: lpfc: Fix error handling for mailboxes completed in MBX_POLL mode (bsc#1185472). - scsi: lpfc: Fix formatting and misspelling issues (bsc#1185472). - scsi: lpfc: Fix gcc -Wstringop-overread warning (bsc#1185472). - scsi: lpfc: Fix illegal memory access on Abort IOCBs (bsc#1183203). - scsi: lpfc: Fix incorrect dbde assignment when building target abts wqe (bsc#1182574). - scsi: lpfc: Fix incorrect naming of __lpfc_update_fcf_record() (bsc#1185472). - scsi: lpfc: Fix incorrectly documented function lpfc_debugfs_commonxripools_data() (bsc#1185472). - scsi: lpfc: Fix kernel-doc formatting issue (bsc#1185472). - scsi: lpfc: Fix lack of device removal on port swaps with PRLIs (bsc#1185472). - scsi: lpfc: Fix lpfc_els_retry() possible null pointer dereference (bsc#1182574). - scsi: lpfc: Fix lpfc_hdw_queue attribute being ignored (bsc#1185472). - scsi: lpfc: Fix missing FDMI registrations after Mgmt Svc login (bsc#1185472). - scsi: lpfc: Fix node handling for Fabric Controller and Domain Controller (bsc#1186451). - scsi: lpfc: Fix nodeinfo debugfs output (bsc#1182574). - scsi: lpfc: Fix non-optimized ERSP handling (bsc#1186451). - scsi: lpfc: Fix null pointer dereference in lpfc_prep_els_iocb() (bsc#1182574). - scsi: lpfc: Fix pt2pt connection does not recover after LOGO (bsc#1182574). - scsi: lpfc: Fix pt2pt state transition causing rmmod hang (bsc#1182574). - scsi: lpfc: Fix reference counting errors in lpfc_cmpl_els_rsp() (bsc#1185472). - scsi: lpfc: Fix reftag generation sizing errors (bsc#1182574). - scsi: lpfc: Fix rmmod crash due to bad ring pointers to abort_iotag (bsc#1185472). - scsi: lpfc: Fix silent memory allocation failure in lpfc_sli4_bsg_link_diag_test() (bsc#1185472). - scsi: lpfc: Fix some error codes in debugfs (bsc#1185472). - scsi: lpfc: Fix stale node accesses on stale RRQ request (bsc#1182574). - scsi: lpfc: Fix status returned in lpfc_els_retry() error exit path (bsc#1182574). - scsi: lpfc: Fix unnecessary null check in lpfc_release_scsi_buf (bsc#1182574). - scsi: lpfc: Fix unreleased RPIs when NPIV ports are created (bsc#1186451). - scsi: lpfc: Fix use after free in lpfc_els_free_iocb (bsc#1182574). - scsi: lpfc: Fix use-after-free on unused nodes after port swap (bsc#1185472). - scsi: lpfc: Fix various trivial errors in comments and log messages (bsc#1185472). - scsi: lpfc: Fix vport indices in lpfc_find_vport_by_vpid() (bsc#1182574). - scsi: lpfc: Ignore GID-FT response that may be received after a link flip (bsc#1186451). - scsi: lpfc: Reduce LOG_TRACE_EVENT logging for vports (bsc#1182574). - scsi: lpfc: Remove unsupported mbox PORT_CAPABILITIES logic (bsc#1185472). - scsi: lpfc: Reregister FPIN types if ELS_RDF is received from fabric controller (bsc#1186451). - scsi: lpfc: Standardize discovery object logging format (bsc#1185472). - scsi: lpfc: Update copyrights for 12.8.0.7 and 12.8.0.8 changes (bsc#1182574). - scsi: lpfc: Update lpfc version to 12.8.0.10 (bsc#1186451). - scsi: lpfc: Update lpfc version to 12.8.0.8 (bsc#1182574). - scsi: lpfc: Update lpfc version to 12.8.0.9 (bsc#1185472). - scsi: mpt3sas: Only one vSES is present even when IOC has multi vSES (bsc#1185954). - scsi: pm80xx: Do not sleep in atomic context (bsc#1186353). - scsi: pm80xx: Fix chip initialization failure (bsc#1186354). - scsi: pm80xx: Fix potential infinite loop (bsc#1186354). - scsi: pm80xx: Increase timeout for pm80xx mpi_uninit_check() (bsc#1186355). - scsi: qla2xxx: Add H:C:T info in the log message for fc ports (bsc#1185491). - scsi: qla2xxx: Add error counters to debugfs node (bsc#1185491). - scsi: qla2xxx: Always check the return value of qla24xx_get_isp_stats() (bsc#1185491). - scsi: qla2xxx: Assign boolean values to a bool variable (bsc#1185491). - scsi: qla2xxx: Check kzalloc() return value (bsc#1185491). - scsi: qla2xxx: Consolidate zio threshold setting for both FCP & NVMe (bsc#1185491). - scsi: qla2xxx: Constify struct qla_tgt_func_tmpl (bsc#1185491). - scsi: qla2xxx: Do logout even if fabric scan retries got exhausted (bsc#1185491). - scsi: qla2xxx: Enable NVMe CONF (BIT_7) when enabling SLER (bsc#1185491). - scsi: qla2xxx: Fix IOPS drop seen in some adapters (bsc#1185491). - scsi: qla2xxx: Fix RISC RESET completion polling (bsc#1185491). - scsi: qla2xxx: Fix a couple of misdocumented functions (bsc#1185491). - scsi: qla2xxx: Fix a couple of misnamed functions (bsc#1185491). - scsi: qla2xxx: Fix broken #endif placement (bsc#1185491). - scsi: qla2xxx: Fix crash in PCIe error handling (bsc#1185491). - scsi: qla2xxx: Fix crash in qla2xxx_mqueuecommand() (bsc#1185491). - scsi: qla2xxx: Fix endianness annotations (bsc#1185491). - scsi: qla2xxx: Fix incorrectly named function qla8044_check_temp() (bsc#1185491). - scsi: qla2xxx: Fix mailbox Ch erroneous error (bsc#1185491). - scsi: qla2xxx: Fix mailbox recovery during PCIe error (bsc#1185491). - scsi: qla2xxx: Fix some incorrect formatting/spelling issues (bsc#1185491). - scsi: qla2xxx: Fix some memory corruption (bsc#1185491). - scsi: qla2xxx: Fix stuck session (bsc#1185491). - scsi: qla2xxx: Fix use after free in bsg (bsc#1185491). - scsi: qla2xxx: Implementation to get and manage host, target stats and initiator port (bsc#1185491). - scsi: qla2xxx: Move some messages from debug to normal log level (bsc#1185491). - scsi: qla2xxx: Remove redundant NULL check (bsc#1185491). - scsi: qla2xxx: Remove unnecessary NULL check (bsc#1185491). - scsi: qla2xxx: Remove unneeded if-null-free check (bsc#1185491). - scsi: qla2xxx: Replace __qla2x00_marker()'s missing underscores (bsc#1185491). - scsi: qla2xxx: Reserve extra IRQ vectors (bsc#1184436). - scsi: qla2xxx: Reuse existing error handling path (bsc#1185491). - scsi: qla2xxx: Simplify if statement (bsc#1185491). - scsi: qla2xxx: Simplify qla8044_minidump_process_control() (bsc#1185491). - scsi: qla2xxx: Simplify the calculation of variables (bsc#1185491). - scsi: qla2xxx: Suppress Coverity complaints about dseg_r* (bsc#1185491). - scsi: qla2xxx: Update default AER debug mask (bsc#1185491). - scsi: qla2xxx: Update version to 10.02.00.105-k (bsc#1185491). - scsi: qla2xxx: Update version to 10.02.00.106-k (bsc#1185491). - scsi: qla2xxx: Use dma_pool_zalloc() (bsc#1185491). - scsi: qla2xxx: Wait for ABTS response on I/O timeouts for NVMe (bsc#1185491). - scsi: qla2xxx: fc_remote_port_chkready() returns a SCSI result value (bsc#1185491). - scsi: smartpqi: Correct driver removal with HBA disks (bsc#1178089). - scsi: smartpqi: Correct driver removal with HBA disks (bsc#1178089). - scsi: smartpqi: Correct pqi_sas_smp_handler busy condition (bsc#1178089). - scsi: smartpqi: Correct pqi_sas_smp_handler busy condition (bsc#1178089). - scsi: smartpqi: Update version to 1.2.16-012 (bsc#1178089). - scsi: smartpqi: Update version to 1.2.16-012 (bsc#1178089). - scsi: target: pscsi: Avoid OOM in pscsi_map_sg() (bsc#1183843). - scsi: target: pscsi: Clean up after failure in pscsi_map_sg() (bsc#1183843). - scsi: target: tcmu: Fix use-after-free of se_cmd->priv (bsc#1186356). - scsi: target: tcmu: Fix warning: 'page' may be used uninitialized (bsc#1186357). - sctp: delay auto_asconf init until binding the first addr (&lt;cover.1620748346.git.mkubecek@suse.cz>). - security: keys: trusted: fix TPM2 authorizations (git-fixes). - selftests/bpf: Fix BPF_CORE_READ_BITFIELD() macro (bsc#1177028). - selftests/bpf: Fix the ASSERT_ERR_PTR macro (bsc#1177028). - selftests/bpf: Mask bpf_csum_diff() return value to 16 bits in test_verifier (bsc#1155518). - selftests/bpf: No need to drop the packet when there is no geneve opt (bsc#1155518). - selftests/bpf: Re-generate vmlinux.h and BPF skeletons if bpftool changed (bsc#1177028). - selftests/bpf: Set gopt opt_class to 0 if get tunnel opt failed (bsc#1155518). - selftests/powerpc: Add pkey helpers for rights (bsc#1184934 ltc#191460). - selftests/powerpc: Add test for execute-disabled pkeys (bsc#1184934 ltc#191460). - selftests/powerpc: Add test for pkey siginfo verification (bsc#1184934 ltc#191460). - selftests/powerpc: Add wrapper for gettid (bsc#1184934 ltc#191460). - selftests/powerpc: Fix L1D flushing tests for Power10 (bsc#1184934 ltc#191460). - selftests/powerpc: Fix exit status of pkey tests (bsc#1184934 ltc#191460). - selftests/powerpc: Fix pkey syscall redefinitions (bsc#1184934 ltc#191460). - selftests/powerpc: Move pkey helpers to headers (bsc#1184934 ltc#191460). - selftests/powerpc: refactor entry and rfi_flush tests (bsc#1184934 ltc#191460). - selftests: mlxsw: Remove a redundant if statement in tc_flower_scale test (bsc#1176774). - selinux: Fix error return code in sel_ib_pkey_sid_slow() (git-fixes). - selinux: fix error initialization in inode_doinit_with_dentry() (git-fixes). - selinux: fix inode_doinit_with_dentry() LABEL_INVALID error handling (git-fixes). - serial: core: fix suspicious security_locked_down() call (git-fixes). - serial: core: return early on unsupported ioctls (git-fixes). - serial: sh-sci: Fix off-by-one error in FIFO threshold register setting (git-fixes). - serial: stm32: fix incorrect characters on console (git-fixes). - serial: stm32: fix tx_empty condition (git-fixes). - serial: tegra: Fix a mask operation that is always true (git-fixes). - smb3: Fix out-of-bounds bug in SMB2_negotiate() (bsc#1183540). - smb3: add dynamic trace point to trace when credits obtained (bsc#1181507). - smb3: fix crediting for compounding when only one request in flight (bsc#1181507). - smc: disallow TCP_ULP in smc_setsockopt() (git-fixes). - soc/fsl: qbman: fix conflicting alignment attributes (git-fixes). - soc: aspeed: fix a ternary sign expansion bug (git-fixes). - soc: fsl: qe: replace qe_io{read,write}* wrappers by generic io{read,write}* (git-fixes). - soc: qcom: mdt_loader: Detect truncated read of segments (git-fixes). - soc: qcom: mdt_loader: Validate that p_filesz &lt; p_memsz (git-fixes). - software node: Fix node registration (git-fixes). - soundwire: bus: Fix device found flag correctly (git-fixes). - soundwire: stream: fix memory leak in stream config error path (git-fixes). - spi: Introduce dspi_slave_abort() function for NXP's dspi SPI driver (bsc#1167260). - spi: ath79: always call chipselect function (git-fixes). - spi: ath79: remove spi-master setup and cleanup assignment (git-fixes). - spi: cadence: set cqspi to the driver_data field of struct device (git-fixes). - spi: dln2: Fix reference leak to master (git-fixes). - spi: fsl-dspi: fix NULL pointer dereference (bsc#1167260). - spi: fsl-dspi: fix use-after-free in remove path (bsc#1167260). - spi: fsl-dspi: fix wrong pointer in suspend/resume (bsc#1167260). - spi: fsl-lpspi: Fix PM reference leak in lpspi_prepare_xfer_hardware() (git-fixes). - spi: omap-100k: Fix reference leak to master (git-fixes). - spi: qup: fix PM reference leak in spi_qup_remove() (git-fixes). - spi: spi-fsl-dspi: Accelerate transfers using larger word size if possible (bsc#1167260). - spi: spi-fsl-dspi: Add comments around dspi_pop_tx and dspi_push_rx functions (bsc#1167260). - spi: spi-fsl-dspi: Add support for LS1028A (bsc#1167260). - spi: spi-fsl-dspi: Adding shutdown hook (bsc#1167260). - spi: spi-fsl-dspi: Always use the TCFQ devices in poll mode (bsc#1167260). - spi: spi-fsl-dspi: Avoid NULL pointer in dspi_slave_abort for non-DMA mode (bsc#1167260). - spi: spi-fsl-dspi: Avoid reading more data than written in EOQ mode (bsc#1167260). - spi: spi-fsl-dspi: Change usage pattern of SPI_MCR_* and SPI_CTAR_* macros (bsc#1167260). - spi: spi-fsl-dspi: Convert TCFQ users to XSPI FIFO mode (bsc#1167260). - spi: spi-fsl-dspi: Convert the instantiations that support it to DMA (bsc#1167260). - spi: spi-fsl-dspi: Demistify magic value in SPI_SR_CLEAR (bsc#1167260). - spi: spi-fsl-dspi: Do not access reserved fields in SPI_MCR (bsc#1167260). - spi: spi-fsl-dspi: Do not mask off undefined bits (bsc#1167260). - spi: spi-fsl-dspi: Exit the ISR with IRQ_NONE when it's not ours (bsc#1167260). - spi: spi-fsl-dspi: Fix 16-bit word order in 32-bit XSPI mode (bsc#1167260). - spi: spi-fsl-dspi: Fix a resource leak in an error handling path (git-fixes). - spi: spi-fsl-dspi: Fix bits-per-word acceleration in DMA mode (bsc#1167260). - spi: spi-fsl-dspi: Fix code alignment (bsc#1167260). - spi: spi-fsl-dspi: Fix external abort on interrupt in resume or exit paths (bsc#1167260). - spi: spi-fsl-dspi: Fix interrupt-less DMA mode taking an XSPI code path (bsc#1167260). - spi: spi-fsl-dspi: Fix little endian access to PUSHR CMD and TXDATA (bsc#1167260). - spi: spi-fsl-dspi: Fix lockup if device is removed during SPI transfer (bsc#1167260). - spi: spi-fsl-dspi: Fix lockup if device is shutdown during SPI transfer (bsc#1167260). - spi: spi-fsl-dspi: Fix race condition in TCFQ/EOQ interrupt (bsc#1167260). - spi: spi-fsl-dspi: Fix typos (bsc#1167260). - spi: spi-fsl-dspi: Free DMA memory with matching function (bsc#1167260). - spi: spi-fsl-dspi: Implement .max_message_size method for EOQ mode (bsc#1167260). - spi: spi-fsl-dspi: Initialize completion before possible interrupt (bsc#1167260). - spi: spi-fsl-dspi: LS2080A and LX2160A support XSPI mode (bsc#1167260). - spi: spi-fsl-dspi: Make bus-num property optional (bsc#1167260). - spi: spi-fsl-dspi: Move dspi_interrupt above dspi_transfer_one_message (bsc#1167260). - spi: spi-fsl-dspi: Move invariant configs out of dspi_transfer_one_message (bsc#1167260). - spi: spi-fsl-dspi: Optimize dspi_setup_accel for lowest interrupt count (bsc#1167260). - spi: spi-fsl-dspi: Parameterize the FIFO size and DMA buffer size (bsc#1167260). - spi: spi-fsl-dspi: Protect against races on dspi->words_in_flight (bsc#1167260). - spi: spi-fsl-dspi: Reduce indentation in dspi_release_dma() (bsc#1167260). - spi: spi-fsl-dspi: Reduce indentation level in dspi_interrupt (bsc#1167260). - spi: spi-fsl-dspi: Remove impossible to reach error check (bsc#1167260). - spi: spi-fsl-dspi: Remove pointless assignment of master->transfer to NULL (bsc#1167260). - spi: spi-fsl-dspi: Remove unused chip->void_write_data (bsc#1167260). - spi: spi-fsl-dspi: Remove unused defines and includes (bsc#1167260). - spi: spi-fsl-dspi: Remove unused initialization of 'ret' in dspi_probe (bsc#1167260). - spi: spi-fsl-dspi: Rename fifo_{read,write} and {tx,cmd}_fifo_write (bsc#1167260). - spi: spi-fsl-dspi: Replace interruptible wait queue with a simple completion (bsc#1167260). - spi: spi-fsl-dspi: Replace legacy spi_master names with spi_controller (bsc#1167260). - spi: spi-fsl-dspi: Simplify bytes_per_word gymnastics (bsc#1167260). - spi: spi-fsl-dspi: Take software timestamp in dspi_fifo_write (bsc#1167260). - spi: spi-fsl-dspi: Use BIT() and GENMASK() macros (bsc#1167260). - spi: spi-fsl-dspi: Use EOQ for last word in buffer even for XSPI mode (bsc#1167260). - spi: spi-fsl-dspi: Use dma_request_chan() instead dma_request_slave_channel() (bsc#1167260). - spi: spi-fsl-dspi: Use poll mode in case the platform IRQ is missing (bsc#1167260). - spi: spi-fsl-dspi: Use reverse Christmas tree declaration order (bsc#1167260). - spi: spi-fsl-dspi: Use specific compatible strings for all SoC instantiations (bsc#1167260). - spi: spi-fsl-dspi: delete EOQ transfer mode (bsc#1167260). - spi: spi-fsl-dspi: fix DMA mapping (bsc#1167260). - spi: spi-fsl-dspi: fix native data copy (bsc#1167260). - spi: spi-fsl-dspi: remove git-fixes Remove git-fixes. Prepare to update the driver. References: bsc#1167260 - spi: spi-fsl-dspi: set ColdFire to DMA mode (bsc#1167260). - spi: spi-fsl-dspi: use XSPI mode instead of DMA for DPAA2 SoCs (bsc#1167260). - spi: spi-ti-qspi: Free DMA resources (git-fixes). - spi: stm32: make spurious and overrun interrupts visible (git-fixes). - squashfs: fix inode lookup sanity checks (bsc#1183750). - squashfs: fix xattr id and id lookup sanity checks (bsc#1183750). - staging: bcm2835-audio: Replace unsafe strcpy() with strscpy() (git-fixes). - staging: comedi: addi_apci_1032: Fix endian problem for COS sample (git-fixes). - staging: comedi: addi_apci_1500: Fix endian problem for command sample (git-fixes). - staging: comedi: adv_pci1710: Fix endian problem for AI command data (git-fixes). - staging: comedi: cb_pcidas64: fix request_irq() warn (git-fixes). - staging: comedi: cb_pcidas: fix request_irq() warn (git-fixes). - staging: comedi: das6402: Fix endian problem for AI command data (git-fixes). - staging: comedi: das800: Fix endian problem for AI command data (git-fixes). - staging: comedi: dmm32at: Fix endian problem for AI command data (git-fixes). - staging: comedi: me4000: Fix endian problem for AI command data (git-fixes). - staging: comedi: pcl711: Fix endian problem for AI command data (git-fixes). - staging: comedi: pcl818: Fix endian problem for AI command data (git-fixes). - staging: emxx_udc: fix loop in _nbu2ss_nuke() (git-fixes). - staging: fwserial: Fix error handling in fwserial_create (git-fixes). - staging: fwserial: fix TIOCGSERIAL implementation (git-fixes). - staging: fwserial: fix TIOCSSERIAL implementation (git-fixes). - staging: fwserial: fix TIOCSSERIAL jiffies conversions (git-fixes). - staging: fwserial: fix TIOCSSERIAL permission check (git-fixes). - staging: iio: cdc: ad7746: avoid overwrite of num_channels (git-fixes). - staging: ks7010: prevent buffer overflow in ks_wlan_set_scan() (git-fixes). - staging: most: sound: add sanity check for function argument (git-fixes). - staging: rtl8188eu: fix potential memory corruption in rtw_check_beacon_data() (git-fixes). - staging: rtl8188eu: prevent ->ssid overflow in rtw_wx_set_scan() (git-fixes). - staging: rtl8192e: Change state information from u16 to u8 (git-fixes). - staging: rtl8192e: Fix incorrect source in memcpy() (git-fixes). - staging: rtl8192e: Fix possible buffer overflow in _rtl92e_wx_set_scan (git-fixes). - staging: rtl8192u: Fix potential infinite loop (git-fixes). - staging: rtl8192u: fix ->ssid overflow in r8192_wx_set_scan() (git-fixes). - staging: rtl8712: Fix possible buffer overflow in r8712_sitesurvey_cmd (git-fixes). - staging: rtl8712: unterminated string leads to read overflow (git-fixes). - stop_machine: mark helpers __always_inline (git-fixes). - supported.conf: - supported.conf: add bsc1185010 dependency - supported.conf: mark usb_otg_fsm as supported (bsc#1185010) - tcp: fix to update snd_wl1 in bulk receiver fast path (&lt;cover.1620748346.git.mkubecek@suse.cz>). - tee: optee: remove need_resched() before cond_resched() (git-fixes). - tee: optee: replace might_sleep with cond_resched (git-fixes). - thermal/core: Add NULL pointer check before using cooling device stats (git-fixes). - thermal/drivers/cpufreq_cooling: Update cpufreq_state only if state has changed (git-fixes). - thermal/drivers/ti-soc-thermal/bandgap Remove unused variable 'val' (git-fixes). - thermal: thermal_of: Fix error return code of thermal_of_populate_bind_params() (git-fixes). - thunderbolt: Fix a leak in tb_retimer_add() (git-fixes). - thunderbolt: Fix a leak in tb_retimer_add() (git-fixes). - thunderbolt: Fix off by one in tb_port_find_retimer() (git-fixes). - thunderbolt: Fix off by one in tb_port_find_retimer() (git-fixes). - thunderbolt: Initialize HopID IDAs in tb_switch_alloc() (git-fixes). - thunderbolt: dma_port: Fix NVM read buffer bounds and offset issue (git-fixes). - tools/resolve_btfids: Fix build error with older host toolchains (bsc#1177028). - tpm: acpi: Check eventlog signature before using it (git-fixes). - tracing: Map all PIDs to command lines (git-fixes). - tty: amiserial: fix TIOCSSERIAL permission check (git-fixes). - tty: fix memory leak in vc_deallocate (git-fixes). - tty: moxa: fix TIOCSSERIAL jiffies conversions (git-fixes). - tty: moxa: fix TIOCSSERIAL permission check (git-fixes). - tty: serial: lpuart: fix lpuart32_write usage (git-fixes). - tty: serial: ucc_uart: replace qe_io{read,write}* wrappers by generic io{read,write}* (git-fixes). - udlfb: Fix memory leak in dlfb_usb_probe (git-fixes). - uio: uio_hv_generic: use devm_kzalloc() for private data alloc (git-fixes). - uio_hv_generic: Fix a memory leak in error handling paths (git-fixes). - uio_hv_generic: Fix another memory leak in error handling paths (git-fixes). - uio_hv_generic: add missed sysfs_remove_bin_file (git-fixes). - usb-storage: Add quirk to defeat Kindle's automatic unload (git-fixes). - usb: Remove dev_err() usage after platform_get_irq() (git-fixes). - usb: core: hub: Fix PM reference leak in usb_port_resume() (git-fixes). - usb: core: hub: fix race condition about TRSMRCY of resume (git-fixes). - usb: dwc2: Fix HPRT0.PrtSusp bit setting for HiKey 960 board (git-fixes). - usb: dwc2: Fix gadget DMA unmap direction (git-fixes). - usb: dwc2: Fix hibernation between host and device modes (git-fixes). - usb: dwc2: Fix host mode hibernation exit with remote wakeup flow (git-fixes). - usb: dwc2: Fix session request interrupt handler (git-fixes). - usb: dwc2: Prevent core suspend when port connection flag is 0 (git-fixes). - usb: dwc3: Switch to use device_property_count_u32() (git-fixes). - usb: dwc3: Update soft-reset wait polling rate (git-fixes). - usb: dwc3: gadget: Enable suspend events (git-fixes). - usb: dwc3: gadget: Fix START_TRANSFER link state check (git-fixes). - usb: dwc3: gadget: Return success always for kick transfer in ep queue (git-fixes). - usb: dwc3: keystone: use devm_platform_ioremap_resource() to simplify code (git-fixes). - usb: dwc3: meson-g12a: use devm_platform_ioremap_resource() to simplify code (git-fixes). - usb: dwc3: omap: improve extcon initialization (git-fixes). - usb: dwc3: pci: Enable usb2-gadget-lpm-disable for Intel Merrifield (git-fixes). - usb: dwc3: qcom: Add missing DWC3 OF node refcount decrement (git-fixes). - usb: dwc3: qcom: Honor wakeup enabled/disabled state (git-fixes). - usb: fotg210-hcd: Fix an error message (git-fixes). - usb: gadget/function/f_fs string table fix for multiple languages (git-fixes). - usb: gadget: Fix double free of device descriptor pointers (git-fixes). - usb: gadget: aspeed: fix dma map failure (git-fixes). - usb: gadget: configfs: Fix KASAN use-after-free (git-fixes). - usb: gadget: dummy_hcd: fix gpf in gadget_setup (git-fixes). - usb: gadget: f_uac1: stop playback on function disable (git-fixes). - usb: gadget: f_uac1: validate input parameters (git-fixes). - usb: gadget: f_uac2: always increase endpoint max_packet_size by one audio slot (git-fixes). - usb: gadget: f_uac2: validate input parameters (git-fixes). - usb: gadget: pch_udc: Check for DMA mapping error (git-fixes). - usb: gadget: pch_udc: Check if driver is present before calling ->setup() (git-fixes). - usb: gadget: pch_udc: Move pch_udc_init() to satisfy kernel doc (git-fixes). - usb: gadget: pch_udc: Replace cpu_to_le32() by lower_32_bits() (git-fixes). - usb: gadget: pch_udc: Revert d3cb25a12138 completely (git-fixes). - usb: gadget: r8a66597: Add missing null check on return from platform_get_resource (git-fixes). - usb: gadget: udc: amd5536udc_pci fix null-ptr-dereference (git-fixes). - usb: gadget: udc: renesas_usb3: Fix a race in usb3_start_pipen() (git-fixes). - usb: gadget: uvc: add bInterval checking for HS mode (git-fixes). - usb: musb: Fix suspend with devices connected for a64 (git-fixes). - usb: musb: fix PM reference leak in musb_irq_work() (git-fixes). - usb: pci-quirks: disable D3cold on xhci suspend for s2idle on AMD Renoire (bsc#1185840). - usb: renesas_usbhs: Clear PIPECFG for re-enabling pipe with other EPNUM (git-fixes). - usb: roles: Call try_module_get() from usb_role_switch_find_by_fwnode() (git-fixes). - usb: roles: Call try_module_get() from usb_role_switch_find_by_fwnode() (git-fixes). - usb: sl811-hcd: improve misleading indentation (git-fixes). - usb: typec: Remove vdo[3] part of tps6598x_rx_identity_reg struct (git-fixes). - usb: typec: tcpci: Check ROLE_CONTROL while interpreting CC_STATUS (git-fixes). - usb: typec: tcpm: Address incorrect values of tcpm psy for fixed supply (git-fixes). - usb: typec: tcpm: Honour pSnkStdby requirement during negotiation (git-fixes). - usb: typec: tcpm: Invoke power_supply_changed for tcpm-source-psy- (git-fixes). - usb: typec: tcpm: Invoke power_supply_changed for tcpm-source-psy- (git-fixes). - usb: typec: tps6598x: Fix return value check in tps6598x_probe() (git-fixes). - usb: typec: tps6598x: Fix return value check in tps6598x_probe() (git-fixes). - usb: typec: ucsi: Put fwnode in any case during ->probe() (git-fixes). - usb: webcam: Invalid size of Processing Unit Descriptor (git-fixes). - usb: xhci-mtk: fix broken streams issue on 0.96 xHCI (git-fixes). - usb: xhci-mtk: improve bandwidth scheduling with TT (git-fixes). - usb: xhci-mtk: remove or operator for setting schedule parameters (git-fixes). - usb: xhci: Fix ASMedia ASM1042A and ASM3242 DMA addressing (git-fixes). - usb: xhci: Fix port minor revision (git-fixes). - usb: xhci: Increase timeout for HC halt (git-fixes). - usb: xhci: do not perform Soft Retry for some xHCI hosts (git-fixes). - usbip: Fix incorrect double assignment to udc->ud.tcp_rx (git-fixes). - usbip: fix stub_dev to check for stream socket (git-fixes). - usbip: fix stub_dev usbip_sockfd_store() races leading to gpf (git-fixes). - usbip: fix vhci_hcd attach_store() races leading to gpf (git-fixes). - usbip: fix vhci_hcd to check for stream socket (git-fixes). - usbip: fix vudc to check for stream socket (git-fixes). - usbip: fix vudc usbip_sockfd_store races leading to gpf (git-fixes). - usbip: tools: fix build error for multiple definition (git-fixes). - usbip: vhci_hcd fix shift out-of-bounds in vhci_hub_control() (git-fixes). - use __netdev_notify_peers in ibmvnic (bsc#1183871 ltc#192139). - veth: Store queue_mapping independently of XDP prog presence (git-fixes). - vfio-pci/zdev: fix possible segmentation fault issue (git-fixes). - vfio/iommu_type1: Populate full dirty when detach non-pinned group (bsc#1183326). - vfio/mdev: Do not allow a mdev_type to have a NULL parent pointer (git-fixes). - vfio/mdev: Make to_mdev_device() into a static inline (git-fixes). - vfio/pci: Add missing range check in vfio_pci_mmap (git-fixes). - vfio/pci: Move VGA and VF initialization to functions (git-fixes). - vfio/pci: Re-order vfio_pci_probe() (git-fixes). - vgacon: Record video mode changes with VT_RESIZEX (git-fixes). - video: fbdev: acornfb: remove free_unused_pages() (bsc#1152489) - video: hyperv_fb: Add ratelimit on error message (bsc#1185725). - video: hyperv_fb: Fix a double free in hvfb_probe (git-fixes). - virt_wifi: Return micros for BSS TSF values (git-fixes). - virtiofs: fix memory leak in virtio_fs_probe() (bsc#1185558). - vrf: fix a comment about loopback device (git-fixes). - vt/consolemap: do font sum unsigned (git-fixes). - vxlan: do not modify the shared tunnel info when PMTU triggers an ICMP reply (bsc#1176447). - vxlan: move debug check after netdev unregister (git-fixes). - watchdog/softlockup: Remove obsolete check of last reported task (bsc#1185982). - watchdog/softlockup: report the overall time of softlockups (bsc#1185982). - watchdog: explicitly update timestamp when reporting softlockup (bsc#1185982). - watchdog: rename __touch_watchdog() to a better descriptive name (bsc#1185982). - whitespace cleanup - wl3501_cs: Fix out-of-bounds warnings in wl3501_mgmt_join (git-fixes). - wl3501_cs: Fix out-of-bounds warnings in wl3501_send_pkt (git-fixes). - wlcore: Fix command execute failure 19 for wl12xx (git-fixes). - workqueue: Minor follow-ups to the rescuer destruction change (bsc#1185911). - workqueue: Move the position of debug_work_activate() in __queue_work() (bsc#1184893). - workqueue: more destroy_workqueue() fixes (bsc#1185911). - x86,swiotlb: Adjust SWIOTLB bounce buffer size for SEV guests (bsc#1186219). - x86/cpu: Initialize MSR_TSC_AUX if RDTSCP *or* RDPID is supported (bsc#1152489). - x86/crash: Fix crash_setup_memmap_entries() out-of-bounds access (bsc#1152489). - x86/fsgsbase/64: Fix NULL deref in 86_fsgsbase_read_task (bsc#1152489). - x86/insn: Add some Intel instructions to the opcode map (bsc#1184760). - x86/insn: Add some more Intel instructions to the opcode map (bsc#1184760). - x86/ioapic: Ignore IRQ2 again (bsc#1152489). - x86/mem_encrypt: Correct physical address calculation in __set_clr_pte_enc() (bsc#1152489). - x86/microcode: Check for offline CPUs before requesting new microcode (bsc#1152489). - x86/mm: Fix NX bit clearing issue in kernel_map_pages_in_pgd (bsc#1152489). - x86/platform/uv: Set section block size for hubless architectures (bsc#1152489). - x86/reboot: Force all cpus to exit VMX root if VMX is supported (bsc#1152489). - x86/sev-es: Invalidate the GHCB after completing VMGEXIT (bsc#1178134). - x86/sev-es: Move sev_es_put_ghcb() in prep for follow on patch (bsc#1178134). - x86: Introduce TS_COMPAT_RESTART to fix get_nr_restart_syscall() (bsc#1152489). - xen/events: avoid handling the same event on two cpus at the same time (git-fixes). - xen/events: do not unmask an event channel when an eoi is pending (git-fixes). - xen/events: reset affinity of 2-level event when tearing it down (git-fixes). - xen/evtchn: Change irq_info lock to raw_spinlock_t (git-fixes). - xfrm: Provide private skb extensions for segmented and hw offloaded ESP packets (bsc#1176447). - xfs: group quota should return EDQUOT when prj quota enabled (bsc#1180980). - xhci: Do not use GFP_KERNEL in (potentially) atomic context (git-fixes). - xhci: Fix repeated xhci wake after suspend due to uncleared internal wake state (git-fixes). - xhci: Improve detection of device initiated wake signal (git-fixes). - xhci: check control context is valid before dereferencing it (git-fixes). - xhci: fix potential array out of bounds with several interrupters (git-fixes). - xsk: Respect device's headroom and tailroom on generic xmit path (git-fixes). - xsk: Respect device's headroom and tailroom on generic xmit path (git-fixes). cluster-md-kmp-azure-5.3.18-38.3.1.x86_64.rpm True dlm-kmp-azure-5.3.18-38.3.1.x86_64.rpm True gfs2-kmp-azure-5.3.18-38.3.1.x86_64.rpm True kernel-azure-5.3.18-38.3.1.nosrc.rpm True kernel-azure-5.3.18-38.3.1.x86_64.rpm True kernel-azure-devel-5.3.18-38.3.1.x86_64.rpm True kernel-azure-extra-5.3.18-38.3.1.x86_64.rpm True kernel-azure-livepatch-devel-5.3.18-38.3.1.x86_64.rpm True kernel-azure-optional-5.3.18-38.3.1.x86_64.rpm True kernel-devel-azure-5.3.18-38.3.1.noarch.rpm True kernel-source-azure-5.3.18-38.3.1.noarch.rpm True kernel-source-azure-5.3.18-38.3.1.src.rpm True kernel-syms-azure-5.3.18-38.3.1.src.rpm True kernel-syms-azure-5.3.18-38.3.1.x86_64.rpm True kselftests-kmp-azure-5.3.18-38.3.1.x86_64.rpm True ocfs2-kmp-azure-5.3.18-38.3.1.x86_64.rpm True reiserfs-kmp-azure-5.3.18-38.3.1.x86_64.rpm True openSUSE-SLE-15.3-2021-2140 Recommended update for prometheus-ha_cluster_exporter moderate SUSE Updates openSUSE-SLE 15.3 This update for prometheus-ha_cluster_exporter fixes the following issues: Update from version 1.2.2 to version 1.2.3: - Compress GitHub artifacts after having built them. - Fix cloned resource collection and track stopped resources even when they are cloned. `Pacemaker Clone Resources` appear multiple times in `crm_mon`; since the main discriminator field is the node, and that's missing when a resource is stopped, the cloned and stopped entries will appear multiple times in the `crm_mon` output, with the exact same fields and values: this is a problem for the `Prometheus SDK`, which doesn't expect duplicate metrics over the course of a single collection cycle. - Remove the `make download` target, which was required when using old Go versions. prometheus-ha_cluster_exporter-1.2.3+git.1622185790.d319147-3.15.1.src.rpm prometheus-ha_cluster_exporter-1.2.3+git.1622185790.d319147-3.15.1.x86_64.rpm prometheus-ha_cluster_exporter-1.2.3+git.1622185790.d319147-3.15.1.s390x.rpm prometheus-ha_cluster_exporter-1.2.3+git.1622185790.d319147-3.15.1.ppc64le.rpm prometheus-ha_cluster_exporter-1.2.3+git.1622185790.d319147-3.15.1.aarch64.rpm openSUSE-SLE-15.3-2021-2003 Security update for MozillaThunderbird important SUSE Updates openSUSE-SLE 15.3 This update for MozillaThunderbird fixes the following issues: Mozilla Thunderbird 78.11 (bsc#1186696) Security issues fixed: - CVE-2021-29964: Out of bounds-read when parsing a `WM_COPYDATA` message - CVE-2021-29967: Memory safety bugs fixed in Thunderbird 78.11 General improvements: - OpenPGP could not be disabled for an account if a key was previously configured - Recipients were unable to decrypt some messages when the sender had changed the message encryption from OpenPGP to S/MIME - Contacts moved between CardDAV address books were not synced to the new server - CardDAV compatibility fixes for Google Contacts - Folder pane had no clear indication of focus on macOS MozillaThunderbird-78.11.0-8.30.1.src.rpm MozillaThunderbird-78.11.0-8.30.1.x86_64.rpm MozillaThunderbird-translations-common-78.11.0-8.30.1.x86_64.rpm MozillaThunderbird-translations-other-78.11.0-8.30.1.x86_64.rpm MozillaThunderbird-78.11.0-8.30.1.s390x.rpm MozillaThunderbird-translations-common-78.11.0-8.30.1.s390x.rpm MozillaThunderbird-translations-other-78.11.0-8.30.1.s390x.rpm MozillaThunderbird-78.11.0-8.30.1.ppc64le.rpm MozillaThunderbird-translations-common-78.11.0-8.30.1.ppc64le.rpm MozillaThunderbird-translations-other-78.11.0-8.30.1.ppc64le.rpm MozillaThunderbird-78.11.0-8.30.1.aarch64.rpm MozillaThunderbird-translations-common-78.11.0-8.30.1.aarch64.rpm MozillaThunderbird-translations-other-78.11.0-8.30.1.aarch64.rpm openSUSE-SLE-15.3-2021-2178 Recommended update for systemd-presets-common-SUSE moderate SUSE Updates openSUSE-SLE 15.3 This update for systemd-presets-common-SUSE fixes the following issues: When installing the systemd-presets-common-SUSE package for the first time in a new system, it might happen that some services are installed before systemd so the %systemd_pre/post macros would not work. This is handled by enabling all preset services in this package's %posttrans section but it wasn't enabling user services, just system services. Now it enables also the user services installed before this package (bsc#1186561) systemd-presets-common-SUSE-15-8.9.1.noarch.rpm systemd-presets-common-SUSE-15-8.9.1.src.rpm openSUSE-SLE-15.3-2021-2265 Recommended update for mariadb-connector-c moderate SUSE Updates openSUSE-SLE 15.3 This update for mariadb-connector-c fixes the following issues: Update to release 3.1.13 [bsc#1185870], [bsc#1185872], [bsc#1185868] - CONC-537: Only read from MYSQL_HOME if MARIADB_HOME was not set - CONC-548: Symbol conflict with libsodium - CONC-490: Handshake error when CLIENT_CONNECT_WITH_DB flag was set without specifying database - CONC-543: Hash functions conflict with GnuTLS - CONC-539: Added cipher suites ECDHE-RSA-AES128-SHA256 (0xC027) and ECDHE-RSA-AES256-SHA384 (0xC028) to the cipher map which maps cipher suite names to the corresponding algorithm ids (Windows Schannel) - CONC-535: Disabled checksum ignored in events (replication/ binlog API) libmariadb-devel-3.1.13-3.30.1.x86_64.rpm libmariadb3-3.1.13-3.30.1.x86_64.rpm libmariadb3-32bit-3.1.13-3.30.1.x86_64.rpm libmariadb_plugins-3.1.13-3.30.1.x86_64.rpm libmariadbprivate-3.1.13-3.30.1.x86_64.rpm mariadb-connector-c-3.1.13-3.30.1.src.rpm libmariadb-devel-3.1.13-3.30.1.s390x.rpm libmariadb3-3.1.13-3.30.1.s390x.rpm libmariadb_plugins-3.1.13-3.30.1.s390x.rpm libmariadbprivate-3.1.13-3.30.1.s390x.rpm libmariadb-devel-3.1.13-3.30.1.ppc64le.rpm libmariadb3-3.1.13-3.30.1.ppc64le.rpm libmariadb_plugins-3.1.13-3.30.1.ppc64le.rpm libmariadbprivate-3.1.13-3.30.1.ppc64le.rpm libmariadb-devel-3.1.13-3.30.1.aarch64.rpm libmariadb3-3.1.13-3.30.1.aarch64.rpm libmariadb_plugins-3.1.13-3.30.1.aarch64.rpm libmariadbprivate-3.1.13-3.30.1.aarch64.rpm openSUSE-SLE-15.3-2021-2210 Recommended update for lvm2 moderate SUSE Updates openSUSE-SLE 15.3 This update for lvm2 fixes the following issues: - Link test as position independent executable and update packages with non-PIE binaries. (bsc#1184124) device-mapper-1.02.163-8.33.1.x86_64.rpm device-mapper-devel-1.02.163-8.33.1.x86_64.rpm device-mapper-devel-32bit-1.02.163-8.33.1.x86_64.rpm libdevmapper-event1_03-1.02.163-8.33.1.x86_64.rpm libdevmapper-event1_03-32bit-1.02.163-8.33.1.x86_64.rpm libdevmapper1_03-1.02.163-8.33.1.x86_64.rpm libdevmapper1_03-32bit-1.02.163-8.33.1.x86_64.rpm liblvm2cmd2_03-2.03.05-8.33.1.x86_64.rpm lvm2-2.03.05-8.33.1.src.rpm lvm2-2.03.05-8.33.1.x86_64.rpm lvm2-devel-2.03.05-8.33.1.x86_64.rpm lvm2-device-mapper-2.03.05-8.33.1.src.rpm lvm2-testsuite-2.03.05-8.33.1.x86_64.rpm device-mapper-1.02.163-8.33.1.s390x.rpm device-mapper-devel-1.02.163-8.33.1.s390x.rpm libdevmapper-event1_03-1.02.163-8.33.1.s390x.rpm libdevmapper1_03-1.02.163-8.33.1.s390x.rpm liblvm2cmd2_03-2.03.05-8.33.1.s390x.rpm lvm2-2.03.05-8.33.1.s390x.rpm lvm2-devel-2.03.05-8.33.1.s390x.rpm lvm2-testsuite-2.03.05-8.33.1.s390x.rpm device-mapper-1.02.163-8.33.1.ppc64le.rpm device-mapper-devel-1.02.163-8.33.1.ppc64le.rpm libdevmapper-event1_03-1.02.163-8.33.1.ppc64le.rpm libdevmapper1_03-1.02.163-8.33.1.ppc64le.rpm liblvm2cmd2_03-2.03.05-8.33.1.ppc64le.rpm lvm2-2.03.05-8.33.1.ppc64le.rpm lvm2-devel-2.03.05-8.33.1.ppc64le.rpm lvm2-testsuite-2.03.05-8.33.1.ppc64le.rpm device-mapper-1.02.163-8.33.1.aarch64.rpm device-mapper-devel-1.02.163-8.33.1.aarch64.rpm libdevmapper-event1_03-1.02.163-8.33.1.aarch64.rpm libdevmapper1_03-1.02.163-8.33.1.aarch64.rpm liblvm2cmd2_03-2.03.05-8.33.1.aarch64.rpm lvm2-2.03.05-8.33.1.aarch64.rpm lvm2-devel-2.03.05-8.33.1.aarch64.rpm lvm2-testsuite-2.03.05-8.33.1.aarch64.rpm openSUSE-SLE-15.3-2021-2351 Recommended update for mgetty low SUSE Updates openSUSE-SLE 15.3 This update for mgetty fixes the following issues: - Link /usr/bin/newslock as PIE. (bsc#1184124) g3utils-1.1.37-3.11.2.x86_64.rpm mgetty-1.1.37-3.11.2.src.rpm mgetty-1.1.37-3.11.2.x86_64.rpm sendfax-1.1.37-3.11.2.x86_64.rpm g3utils-1.1.37-3.11.2.s390x.rpm mgetty-1.1.37-3.11.2.s390x.rpm sendfax-1.1.37-3.11.2.s390x.rpm g3utils-1.1.37-3.11.2.ppc64le.rpm mgetty-1.1.37-3.11.2.ppc64le.rpm sendfax-1.1.37-3.11.2.ppc64le.rpm g3utils-1.1.37-3.11.2.aarch64.rpm mgetty-1.1.37-3.11.2.aarch64.rpm sendfax-1.1.37-3.11.2.aarch64.rpm openSUSE-SLE-15.3-2021-2418 Recommended update for mstflint low SUSE Updates openSUSE-SLE 15.3 This update for mstflint fixes the following issues: - Link as position independent executables. (bsc#1184124) mstflint-4.15.0-3.3.1.src.rpm mstflint-4.15.0-3.3.1.x86_64.rpm mstflint-4.15.0-3.3.1.s390x.rpm mstflint-4.15.0-3.3.1.ppc64le.rpm mstflint-4.15.0-3.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-2277 Recommended update for strongswan moderate SUSE Updates openSUSE-SLE 15.3 This update for strongswan fixes the following issues: - Add config to run ipsec on namespaces. (bsc#1183670) strongswan-5.8.2-11.17.3.src.rpm strongswan-5.8.2-11.17.3.x86_64.rpm strongswan-doc-5.8.2-11.17.3.noarch.rpm strongswan-hmac-5.8.2-11.17.3.x86_64.rpm strongswan-ipsec-5.8.2-11.17.3.x86_64.rpm strongswan-libs0-5.8.2-11.17.3.x86_64.rpm strongswan-mysql-5.8.2-11.17.3.x86_64.rpm strongswan-nm-5.8.2-11.17.3.x86_64.rpm strongswan-sqlite-5.8.2-11.17.3.x86_64.rpm strongswan-5.8.2-11.17.3.s390x.rpm strongswan-hmac-5.8.2-11.17.3.s390x.rpm strongswan-ipsec-5.8.2-11.17.3.s390x.rpm strongswan-libs0-5.8.2-11.17.3.s390x.rpm strongswan-mysql-5.8.2-11.17.3.s390x.rpm strongswan-nm-5.8.2-11.17.3.s390x.rpm strongswan-sqlite-5.8.2-11.17.3.s390x.rpm strongswan-5.8.2-11.17.3.ppc64le.rpm strongswan-hmac-5.8.2-11.17.3.ppc64le.rpm strongswan-ipsec-5.8.2-11.17.3.ppc64le.rpm strongswan-libs0-5.8.2-11.17.3.ppc64le.rpm strongswan-mysql-5.8.2-11.17.3.ppc64le.rpm strongswan-nm-5.8.2-11.17.3.ppc64le.rpm strongswan-sqlite-5.8.2-11.17.3.ppc64le.rpm strongswan-5.8.2-11.17.3.aarch64.rpm strongswan-hmac-5.8.2-11.17.3.aarch64.rpm strongswan-ipsec-5.8.2-11.17.3.aarch64.rpm strongswan-libs0-5.8.2-11.17.3.aarch64.rpm strongswan-mysql-5.8.2-11.17.3.aarch64.rpm strongswan-nm-5.8.2-11.17.3.aarch64.rpm strongswan-sqlite-5.8.2-11.17.3.aarch64.rpm openSUSE-SLE-15.3-2021-2223 Recommended update for chrony moderate SUSE Updates openSUSE-SLE 15.3 This update for chrony fixes the following issues: - Fixed an issue when chrony aborts in FIPS mode due to MD5. (bsc#1173760) chrony-3.2-9.24.2.src.rpm chrony-3.2-9.24.2.x86_64.rpm chrony-pool-empty-3.2-9.24.2.noarch.rpm chrony-pool-openSUSE-3.2-9.24.2.noarch.rpm chrony-pool-suse-3.2-9.24.2.noarch.rpm chrony-3.2-9.24.2.s390x.rpm chrony-3.2-9.24.2.ppc64le.rpm chrony-3.2-9.24.2.aarch64.rpm openSUSE-SLE-15.3-2021-2260 Recommended update for pipewire moderate SUSE Updates openSUSE-SLE 15.3 This update for pipewire fixes the following issues: - Introduce a workaround for systems where %systemd_user_post didn't enable the user services correctly due to different reasons. (bsc#1184852, bsc#1183012, bsc#1186561) - Disable gstreamer device provider by now because the timestamp bug makes cheese video record abnormally longer than it should be. (rh#1884260) - Replace all tab characters to space. gstreamer-plugin-pipewire-0.3.24-4.3.1.x86_64.rpm libpipewire-0_3-0-0.3.24-4.3.1.x86_64.rpm libpipewire-0_3-0-32bit-0.3.24-4.3.1.x86_64.rpm pipewire-0.3.24-4.3.1.src.rpm pipewire-0.3.24-4.3.1.x86_64.rpm pipewire-alsa-0.3.24-4.3.1.x86_64.rpm pipewire-devel-0.3.24-4.3.1.x86_64.rpm pipewire-doc-0.3.24-4.3.1.x86_64.rpm pipewire-lang-0.3.24-4.3.1.noarch.rpm pipewire-libjack-0_3-0.3.24-4.3.1.x86_64.rpm pipewire-libjack-0_3-32bit-0.3.24-4.3.1.x86_64.rpm pipewire-modules-0.3.24-4.3.1.x86_64.rpm pipewire-modules-32bit-0.3.24-4.3.1.x86_64.rpm pipewire-pulseaudio-0.3.24-4.3.1.x86_64.rpm pipewire-spa-plugins-0_2-0.3.24-4.3.1.x86_64.rpm pipewire-spa-plugins-0_2-32bit-0.3.24-4.3.1.x86_64.rpm pipewire-spa-tools-0.3.24-4.3.1.x86_64.rpm pipewire-tools-0.3.24-4.3.1.x86_64.rpm gstreamer-plugin-pipewire-0.3.24-4.3.1.s390x.rpm libpipewire-0_3-0-0.3.24-4.3.1.s390x.rpm pipewire-0.3.24-4.3.1.s390x.rpm pipewire-alsa-0.3.24-4.3.1.s390x.rpm pipewire-devel-0.3.24-4.3.1.s390x.rpm pipewire-doc-0.3.24-4.3.1.s390x.rpm pipewire-libjack-0_3-0.3.24-4.3.1.s390x.rpm pipewire-modules-0.3.24-4.3.1.s390x.rpm pipewire-pulseaudio-0.3.24-4.3.1.s390x.rpm pipewire-spa-plugins-0_2-0.3.24-4.3.1.s390x.rpm pipewire-spa-tools-0.3.24-4.3.1.s390x.rpm pipewire-tools-0.3.24-4.3.1.s390x.rpm gstreamer-plugin-pipewire-0.3.24-4.3.1.ppc64le.rpm libpipewire-0_3-0-0.3.24-4.3.1.ppc64le.rpm pipewire-0.3.24-4.3.1.ppc64le.rpm pipewire-alsa-0.3.24-4.3.1.ppc64le.rpm pipewire-devel-0.3.24-4.3.1.ppc64le.rpm pipewire-doc-0.3.24-4.3.1.ppc64le.rpm pipewire-libjack-0_3-0.3.24-4.3.1.ppc64le.rpm pipewire-modules-0.3.24-4.3.1.ppc64le.rpm pipewire-pulseaudio-0.3.24-4.3.1.ppc64le.rpm pipewire-spa-plugins-0_2-0.3.24-4.3.1.ppc64le.rpm pipewire-spa-tools-0.3.24-4.3.1.ppc64le.rpm pipewire-tools-0.3.24-4.3.1.ppc64le.rpm gstreamer-plugin-pipewire-0.3.24-4.3.1.aarch64.rpm libpipewire-0_3-0-0.3.24-4.3.1.aarch64.rpm pipewire-0.3.24-4.3.1.aarch64.rpm pipewire-alsa-0.3.24-4.3.1.aarch64.rpm pipewire-devel-0.3.24-4.3.1.aarch64.rpm pipewire-doc-0.3.24-4.3.1.aarch64.rpm pipewire-libjack-0_3-0.3.24-4.3.1.aarch64.rpm pipewire-modules-0.3.24-4.3.1.aarch64.rpm pipewire-pulseaudio-0.3.24-4.3.1.aarch64.rpm pipewire-spa-plugins-0_2-0.3.24-4.3.1.aarch64.rpm pipewire-spa-tools-0.3.24-4.3.1.aarch64.rpm pipewire-tools-0.3.24-4.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-2203 Recommended update for postfix moderate SUSE Updates openSUSE-SLE 15.3 This update for postfix fixes the following issues: - Remove incorrect requirements from the postfix service configuration. (bsc#1186669) postfix-3.5.9-5.3.3.src.rpm postfix-3.5.9-5.3.3.x86_64.rpm postfix-bdb-3.5.9-5.3.3.src.rpm postfix-bdb-3.5.9-5.3.3.x86_64.rpm postfix-bdb-lmdb-3.5.9-5.3.3.x86_64.rpm postfix-devel-3.5.9-5.3.3.x86_64.rpm postfix-doc-3.5.9-5.3.3.noarch.rpm postfix-ldap-3.5.9-5.3.3.x86_64.rpm postfix-mysql-3.5.9-5.3.3.x86_64.rpm postfix-postgresql-3.5.9-5.3.3.x86_64.rpm postfix-3.5.9-5.3.3.s390x.rpm postfix-bdb-3.5.9-5.3.3.s390x.rpm postfix-bdb-lmdb-3.5.9-5.3.3.s390x.rpm postfix-devel-3.5.9-5.3.3.s390x.rpm postfix-ldap-3.5.9-5.3.3.s390x.rpm postfix-mysql-3.5.9-5.3.3.s390x.rpm postfix-postgresql-3.5.9-5.3.3.s390x.rpm postfix-3.5.9-5.3.3.ppc64le.rpm postfix-bdb-3.5.9-5.3.3.ppc64le.rpm postfix-bdb-lmdb-3.5.9-5.3.3.ppc64le.rpm postfix-devel-3.5.9-5.3.3.ppc64le.rpm postfix-ldap-3.5.9-5.3.3.ppc64le.rpm postfix-mysql-3.5.9-5.3.3.ppc64le.rpm postfix-postgresql-3.5.9-5.3.3.ppc64le.rpm postfix-3.5.9-5.3.3.aarch64.rpm postfix-bdb-3.5.9-5.3.3.aarch64.rpm postfix-bdb-lmdb-3.5.9-5.3.3.aarch64.rpm postfix-devel-3.5.9-5.3.3.aarch64.rpm postfix-ldap-3.5.9-5.3.3.aarch64.rpm postfix-mysql-3.5.9-5.3.3.aarch64.rpm postfix-postgresql-3.5.9-5.3.3.aarch64.rpm openSUSE-SLE-15.3-2021-2276 Recommended update for libgnomekbd moderate SUSE Updates openSUSE-SLE 15.3 This update for libgnomekbd fixes the following issues: - Add fix to avoid crashing 'libgnomekbd' when working with ibus. (bsc#1160963) - Set the common keyboard layout indicator as "default" to avoid misleading information. (bsc#1034390) libgnomekbd-3.26.0-3.3.1.src.rpm libgnomekbd-3.26.0-3.3.1.x86_64.rpm libgnomekbd-3.26.0-3.3.1.s390x.rpm libgnomekbd-3.26.0-3.3.1.ppc64le.rpm libgnomekbd-3.26.0-3.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-2231 Recommended update for yast2 moderate SUSE Updates openSUSE-SLE 15.3 This update for yast2 fixes the following issues: - Ignore 'sysctl' configuration files that do not have the '.conf', extension except kernel files. (bsc#1187018) yast2-4.3.63-3.8.1.src.rpm yast2-4.3.63-3.8.1.x86_64.rpm yast2-logs-4.3.63-3.8.1.x86_64.rpm yast2-4.3.63-3.8.1.s390x.rpm yast2-logs-4.3.63-3.8.1.s390x.rpm yast2-4.3.63-3.8.1.ppc64le.rpm yast2-logs-4.3.63-3.8.1.ppc64le.rpm yast2-4.3.63-3.8.1.aarch64.rpm yast2-logs-4.3.63-3.8.1.aarch64.rpm openSUSE-SLE-15.3-2021-2207 Recommended update for yast2-ftp-server moderate SUSE Updates openSUSE-SLE 15.3 This update for yast2-ftp-server fixes the following issues: - Fix the label of the certificate input field (bsc#1183786) yast2-ftp-server-4.3.3-3.3.1.noarch.rpm yast2-ftp-server-4.3.3-3.3.1.src.rpm openSUSE-SLE-15.3-2021-2476 Recommended update for yast2-proxy moderate SUSE Updates openSUSE-SLE 15.3 This update for yast2-proxy fixes the following issues: - Added 'to_target' variable which will determine whether the configuration should be written to the target system at the end of the installation or not (bsc#1185016) - Replace novell urls by SUSE ones (bsc#1100366) This update for yast2-installation fixes the following issues: - Start the "memsample" tool in a subshell to avoid "Terminated" message displayed at the end. (bsc#1184491) - Better evaluate the old and new repositories during upgrade, do not preselect new repositories for removal if they accidentally use the same repository as already present in the system. (bsc#1185822) - Export also the 'https_proxy' environment variable when a proxy config is given through 'linuxrc'. (bsc#1185016) yast2-installation-4.3.40-3.4.1.noarch.rpm yast2-installation-4.3.40-3.4.1.src.rpm yast2-proxy-4.3.3-3.3.1.noarch.rpm yast2-proxy-4.3.3-3.3.1.src.rpm openSUSE-SLE-15.3-2021-2148 Recommended update for csync2 moderate SUSE Updates openSUSE-SLE 15.3 This update for csync2 fixes the following issues: - Removal of csync2 package throws error for non-existent service template. (bsc#1187080) csync2-2.0+git.1600444747.83b3644-3.3.1.src.rpm csync2-2.0+git.1600444747.83b3644-3.3.1.x86_64.rpm csync2-2.0+git.1600444747.83b3644-3.3.1.s390x.rpm csync2-2.0+git.1600444747.83b3644-3.3.1.ppc64le.rpm csync2-2.0+git.1600444747.83b3644-3.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-2228 Recommended update for postgresql moderate SUSE Updates openSUSE-SLE 15.3 This update for postgresql fixes the following issues: - Re-enable build of the 'llvmjit' subpackage on SLE. (bsc#1183118) postgresql-13-10.3.3.noarch.rpm postgresql-13-10.3.3.src.rpm postgresql-contrib-13-10.3.3.noarch.rpm postgresql-devel-13-10.3.3.noarch.rpm postgresql-docs-13-10.3.3.noarch.rpm postgresql-plperl-13-10.3.3.noarch.rpm postgresql-plpython-13-10.3.3.noarch.rpm postgresql-pltcl-13-10.3.3.noarch.rpm postgresql-server-13-10.3.3.noarch.rpm postgresql-server-devel-13-10.3.3.noarch.rpm postgresql-test-13-10.3.3.noarch.rpm openSUSE-SLE-15.3-2021-2179 Recommended update for thin-provisioning-tools moderate SUSE Updates openSUSE-SLE 15.3 This update for thin-provisioning-tools fixes the following issues: - Link as position-independent executable (bsc#1184124) thin-provisioning-tools-0.7.5-3.3.1.src.rpm thin-provisioning-tools-0.7.5-3.3.1.x86_64.rpm thin-provisioning-tools-0.7.5-3.3.1.s390x.rpm thin-provisioning-tools-0.7.5-3.3.1.ppc64le.rpm thin-provisioning-tools-0.7.5-3.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-2127 Security update for apache2 important SUSE Updates openSUSE-SLE 15.3 This update for apache2 fixes the following issues: - fixed CVE-2021-30641 [bsc#1187174]: MergeSlashes regression - fixed CVE-2021-31618 [bsc#1186924]: NULL pointer dereference on specially crafted HTTP/2 request - fixed CVE-2020-13950 [bsc#1187040]: mod_proxy NULL pointer dereference - fixed CVE-2020-35452 [bsc#1186922]: Single zero byte stack overflow in mod_auth_digest - fixed CVE-2021-26690 [bsc#1186923]: mod_session NULL pointer dereference in parser - fixed CVE-2021-26691 [bsc#1187017]: Heap overflow in mod_session apache2-2.4.43-3.22.1.src.rpm apache2-2.4.43-3.22.1.x86_64.rpm apache2-devel-2.4.43-3.22.1.x86_64.rpm apache2-doc-2.4.43-3.22.1.noarch.rpm apache2-event-2.4.43-3.22.1.x86_64.rpm apache2-example-pages-2.4.43-3.22.1.x86_64.rpm apache2-prefork-2.4.43-3.22.1.x86_64.rpm apache2-utils-2.4.43-3.22.1.x86_64.rpm apache2-worker-2.4.43-3.22.1.x86_64.rpm apache2-2.4.43-3.22.1.s390x.rpm apache2-devel-2.4.43-3.22.1.s390x.rpm apache2-event-2.4.43-3.22.1.s390x.rpm apache2-example-pages-2.4.43-3.22.1.s390x.rpm apache2-prefork-2.4.43-3.22.1.s390x.rpm apache2-utils-2.4.43-3.22.1.s390x.rpm apache2-worker-2.4.43-3.22.1.s390x.rpm apache2-2.4.43-3.22.1.ppc64le.rpm apache2-devel-2.4.43-3.22.1.ppc64le.rpm apache2-event-2.4.43-3.22.1.ppc64le.rpm apache2-example-pages-2.4.43-3.22.1.ppc64le.rpm apache2-prefork-2.4.43-3.22.1.ppc64le.rpm apache2-utils-2.4.43-3.22.1.ppc64le.rpm apache2-worker-2.4.43-3.22.1.ppc64le.rpm apache2-2.4.43-3.22.1.aarch64.rpm apache2-devel-2.4.43-3.22.1.aarch64.rpm apache2-event-2.4.43-3.22.1.aarch64.rpm apache2-example-pages-2.4.43-3.22.1.aarch64.rpm apache2-prefork-2.4.43-3.22.1.aarch64.rpm apache2-utils-2.4.43-3.22.1.aarch64.rpm apache2-worker-2.4.43-3.22.1.aarch64.rpm openSUSE-SLE-15.3-2021-2316 Recommended update for systemd moderate SUSE Updates openSUSE-SLE 15.3 This update for systemd fixes the following issues: - Restore framebuffer devices as possible master of seat. Until simpledrm driver is released, this change is prematured as some graphical chips don't have DRM driver and fallback to framebuffer. (bsc#1187154) - Fixed an issue when '/var/lock/subsys' dropped when the creation of 'filesystem' package took the initialization of the generic paths over. (bsc#1187292) - 'udev' requires systemd in its %post (bsc#1185958) nspawn: turn on higher optimization level in seccomp nspawn: return ENOSYS by default, EPERM for "known" calls (bsc#1186411) shared/seccomp-util: added functionality to make list of filtred syscalls hared/syscall-list: filter out some obviously platform-specific syscalls shared/seccomp: reduce scope of indexing variables generate-syscall-list: require python3 shared: add @known syscall list meson: add syscall-names-update target shared/seccomp: use _cleanup_ in one more place home: fix homed.conf install location - We need to make sure that the creation of the symlinks is done after updating udev DB so if worker A is preempted by worker B before A updates the DB but after it creates the symlinks, worker B won't manage to overwrite the freshly created symlinks (by A) because A has still yet not registered the symlinks in the DB. (bsc#1185828) - Expect 644 permissions for /usr/lib/udev/compat-symlink-generation (bsc#1185807) libsystemd0-246.13-7.5.1.x86_64.rpm libsystemd0-32bit-246.13-7.5.1.x86_64.rpm libudev-devel-246.13-7.5.1.x86_64.rpm libudev-devel-32bit-246.13-7.5.1.x86_64.rpm libudev1-246.13-7.5.1.x86_64.rpm libudev1-32bit-246.13-7.5.1.x86_64.rpm nss-myhostname-246.13-7.5.1.x86_64.rpm nss-myhostname-32bit-246.13-7.5.1.x86_64.rpm nss-mymachines-246.13-7.5.1.x86_64.rpm nss-mymachines-32bit-246.13-7.5.1.x86_64.rpm nss-resolve-246.13-7.5.1.x86_64.rpm nss-systemd-246.13-7.5.1.x86_64.rpm systemd-246.13-7.5.1.src.rpm systemd-246.13-7.5.1.x86_64.rpm systemd-32bit-246.13-7.5.1.x86_64.rpm systemd-container-246.13-7.5.1.x86_64.rpm systemd-coredump-246.13-7.5.1.x86_64.rpm systemd-devel-246.13-7.5.1.x86_64.rpm systemd-doc-246.13-7.5.1.x86_64.rpm systemd-journal-remote-246.13-7.5.1.x86_64.rpm systemd-lang-246.13-7.5.1.noarch.rpm systemd-logger-246.13-7.5.1.x86_64.rpm systemd-network-246.13-7.5.1.x86_64.rpm systemd-sysvinit-246.13-7.5.1.x86_64.rpm udev-246.13-7.5.1.x86_64.rpm libsystemd0-246.13-7.5.1.s390x.rpm libsystemd0-mini-246.13-7.5.1.s390x.rpm libudev-devel-246.13-7.5.1.s390x.rpm libudev-mini-devel-246.13-7.5.1.s390x.rpm libudev-mini1-246.13-7.5.1.s390x.rpm libudev1-246.13-7.5.1.s390x.rpm nss-myhostname-246.13-7.5.1.s390x.rpm nss-mymachines-246.13-7.5.1.s390x.rpm nss-resolve-246.13-7.5.1.s390x.rpm nss-systemd-246.13-7.5.1.s390x.rpm systemd-246.13-7.5.1.s390x.rpm systemd-container-246.13-7.5.1.s390x.rpm systemd-coredump-246.13-7.5.1.s390x.rpm systemd-devel-246.13-7.5.1.s390x.rpm systemd-doc-246.13-7.5.1.s390x.rpm systemd-journal-remote-246.13-7.5.1.s390x.rpm systemd-logger-246.13-7.5.1.s390x.rpm systemd-mini-246.13-7.5.1.s390x.rpm systemd-mini-container-246.13-7.5.1.s390x.rpm systemd-mini-devel-246.13-7.5.1.s390x.rpm systemd-mini-sysvinit-246.13-7.5.1.s390x.rpm systemd-network-246.13-7.5.1.s390x.rpm systemd-sysvinit-246.13-7.5.1.s390x.rpm udev-246.13-7.5.1.s390x.rpm udev-mini-246.13-7.5.1.s390x.rpm libsystemd0-246.13-7.5.1.ppc64le.rpm libsystemd0-mini-246.13-7.5.1.ppc64le.rpm libudev-devel-246.13-7.5.1.ppc64le.rpm libudev-mini-devel-246.13-7.5.1.ppc64le.rpm libudev-mini1-246.13-7.5.1.ppc64le.rpm libudev1-246.13-7.5.1.ppc64le.rpm nss-myhostname-246.13-7.5.1.ppc64le.rpm nss-mymachines-246.13-7.5.1.ppc64le.rpm nss-resolve-246.13-7.5.1.ppc64le.rpm nss-systemd-246.13-7.5.1.ppc64le.rpm systemd-246.13-7.5.1.ppc64le.rpm systemd-container-246.13-7.5.1.ppc64le.rpm systemd-coredump-246.13-7.5.1.ppc64le.rpm systemd-devel-246.13-7.5.1.ppc64le.rpm systemd-doc-246.13-7.5.1.ppc64le.rpm systemd-journal-remote-246.13-7.5.1.ppc64le.rpm systemd-logger-246.13-7.5.1.ppc64le.rpm systemd-mini-246.13-7.5.1.ppc64le.rpm systemd-mini-container-246.13-7.5.1.ppc64le.rpm systemd-mini-devel-246.13-7.5.1.ppc64le.rpm systemd-mini-sysvinit-246.13-7.5.1.ppc64le.rpm systemd-network-246.13-7.5.1.ppc64le.rpm systemd-sysvinit-246.13-7.5.1.ppc64le.rpm udev-246.13-7.5.1.ppc64le.rpm udev-mini-246.13-7.5.1.ppc64le.rpm libsystemd0-246.13-7.5.1.aarch64.rpm libsystemd0-mini-246.13-7.5.1.aarch64.rpm libudev-devel-246.13-7.5.1.aarch64.rpm libudev-mini-devel-246.13-7.5.1.aarch64.rpm libudev-mini1-246.13-7.5.1.aarch64.rpm libudev1-246.13-7.5.1.aarch64.rpm nss-myhostname-246.13-7.5.1.aarch64.rpm nss-mymachines-246.13-7.5.1.aarch64.rpm nss-resolve-246.13-7.5.1.aarch64.rpm nss-systemd-246.13-7.5.1.aarch64.rpm systemd-246.13-7.5.1.aarch64.rpm systemd-container-246.13-7.5.1.aarch64.rpm systemd-coredump-246.13-7.5.1.aarch64.rpm systemd-devel-246.13-7.5.1.aarch64.rpm systemd-doc-246.13-7.5.1.aarch64.rpm systemd-journal-remote-246.13-7.5.1.aarch64.rpm systemd-logger-246.13-7.5.1.aarch64.rpm systemd-mini-246.13-7.5.1.aarch64.rpm systemd-mini-container-246.13-7.5.1.aarch64.rpm systemd-mini-devel-246.13-7.5.1.aarch64.rpm systemd-mini-sysvinit-246.13-7.5.1.aarch64.rpm systemd-network-246.13-7.5.1.aarch64.rpm systemd-sysvinit-246.13-7.5.1.aarch64.rpm udev-246.13-7.5.1.aarch64.rpm udev-mini-246.13-7.5.1.aarch64.rpm openSUSE-SLE-15.3-2021-2005 Security update for jetty-minimal important SUSE Updates openSUSE-SLE 15.3 This update for jetty-minimal fixes the following issues: Update to version 9.4.42.v20210604 - Fix: bsc#1187117, CVE-2021-28169 - possible for requests to the ConcatServlet with a doubly encoded path to access protected resources within the WEB-INF directory - Fix: bsc#1184367, CVE-2021-28165 - jetty server high CPU when client send data length > 17408 - Fix: bsc#1184368, CVE-2021-28164 - Normalize ambiguous URIs - Fix: bsc#1184366, CVE-2021-28163 - Exclude webapps directory from deployment scan jetty-annotations-9.4.42-3.9.1.noarch.rpm jetty-client-9.4.42-3.9.1.noarch.rpm jetty-continuation-9.4.42-3.9.1.noarch.rpm jetty-http-9.4.42-3.9.1.noarch.rpm jetty-io-9.4.42-3.9.1.noarch.rpm jetty-jaas-9.4.42-3.9.1.noarch.rpm jetty-javax-websocket-client-impl-9.4.42-3.9.1.noarch.rpm jetty-javax-websocket-server-impl-9.4.42-3.9.1.noarch.rpm jetty-jmx-9.4.42-3.9.1.noarch.rpm jetty-jndi-9.4.42-3.9.1.noarch.rpm jetty-jsp-9.4.42-3.9.1.noarch.rpm jetty-minimal-9.4.42-3.9.1.src.rpm jetty-minimal-javadoc-9.4.42-3.9.1.noarch.rpm jetty-openid-9.4.42-3.9.1.noarch.rpm jetty-plus-9.4.42-3.9.1.noarch.rpm jetty-proxy-9.4.42-3.9.1.noarch.rpm jetty-security-9.4.42-3.9.1.noarch.rpm jetty-server-9.4.42-3.9.1.noarch.rpm jetty-servlet-9.4.42-3.9.1.noarch.rpm jetty-util-9.4.42-3.9.1.noarch.rpm jetty-util-ajax-9.4.42-3.9.1.noarch.rpm jetty-webapp-9.4.42-3.9.1.noarch.rpm jetty-websocket-9.4.42-3.9.1.src.rpm jetty-websocket-api-9.4.42-3.9.1.noarch.rpm jetty-websocket-client-9.4.42-3.9.1.noarch.rpm jetty-websocket-common-9.4.42-3.9.1.noarch.rpm jetty-websocket-javadoc-9.4.42-3.9.1.noarch.rpm jetty-websocket-server-9.4.42-3.9.1.noarch.rpm jetty-websocket-servlet-9.4.42-3.9.1.noarch.rpm jetty-xml-9.4.42-3.9.1.noarch.rpm openSUSE-SLE-15.3-2021-2011 Security update for xterm important SUSE Updates openSUSE-SLE 15.3 This update for xterm fixes the following issues: - CVE-2021-27135: Fixed buffer-overflow when clicking on selected utf8 text. (bsc#1182091) xterm-330-11.3.1.src.rpm xterm-330-11.3.1.x86_64.rpm xterm-bin-330-11.3.1.x86_64.rpm xterm-330-11.3.1.s390x.rpm xterm-bin-330-11.3.1.s390x.rpm xterm-330-11.3.1.ppc64le.rpm xterm-bin-330-11.3.1.ppc64le.rpm xterm-330-11.3.1.aarch64.rpm xterm-bin-330-11.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-2196 Security update for lua53 moderate SUSE Updates openSUSE-SLE 15.3 This update for lua53 fixes the following issues: Update to version 5.3.6: - CVE-2020-24371: lgc.c mishandles the interaction between barriers and the sweep phase, leading to a memory access violation involving collectgarbage (bsc#1175449) - CVE-2020-24370: ldebug.c allows a negation overflow and segmentation fault in getlocal and setlocal (bsc#1175448) - Long brackets with a huge number of '=' overflow some internal buffer arithmetic. liblua5_3-5-32bit-5.3.6-3.6.1.x86_64.rpm liblua5_3-5-5.3.6-3.6.1.x86_64.rpm lua53-5.3.6-3.6.1.src.rpm lua53-5.3.6-3.6.1.x86_64.rpm lua53-devel-5.3.6-3.6.1.x86_64.rpm lua53-doc-5.3.6-3.6.1.noarch.rpm liblua5_3-5-5.3.6-3.6.1.s390x.rpm lua53-5.3.6-3.6.1.s390x.rpm lua53-devel-5.3.6-3.6.1.s390x.rpm liblua5_3-5-5.3.6-3.6.1.ppc64le.rpm lua53-5.3.6-3.6.1.ppc64le.rpm lua53-devel-5.3.6-3.6.1.ppc64le.rpm liblua5_3-5-5.3.6-3.6.1.aarch64.rpm lua53-5.3.6-3.6.1.aarch64.rpm lua53-devel-5.3.6-3.6.1.aarch64.rpm openSUSE-SLE-15.3-2021-2291 Security update for bluez moderate SUSE Updates openSUSE-SLE 15.3 This update for bluez fixes the following issues: - CVE-2021-0129,CVE-2020-26558: Check bluetooth security flags (bsc#1186463). bluez-5.55-3.3.1.src.rpm bluez-5.55-3.3.1.x86_64.rpm bluez-auto-enable-devices-5.55-3.3.1.noarch.rpm bluez-cups-5.55-3.3.1.x86_64.rpm bluez-deprecated-5.55-3.3.1.x86_64.rpm bluez-devel-32bit-5.55-3.3.1.x86_64.rpm bluez-devel-5.55-3.3.1.x86_64.rpm bluez-test-5.55-3.3.1.x86_64.rpm libbluetooth3-32bit-5.55-3.3.1.x86_64.rpm libbluetooth3-5.55-3.3.1.x86_64.rpm bluez-5.55-3.3.1.s390x.rpm bluez-cups-5.55-3.3.1.s390x.rpm bluez-deprecated-5.55-3.3.1.s390x.rpm bluez-devel-5.55-3.3.1.s390x.rpm bluez-test-5.55-3.3.1.s390x.rpm libbluetooth3-5.55-3.3.1.s390x.rpm bluez-5.55-3.3.1.ppc64le.rpm bluez-cups-5.55-3.3.1.ppc64le.rpm bluez-deprecated-5.55-3.3.1.ppc64le.rpm bluez-devel-5.55-3.3.1.ppc64le.rpm bluez-test-5.55-3.3.1.ppc64le.rpm libbluetooth3-5.55-3.3.1.ppc64le.rpm bluez-5.55-3.3.1.aarch64.rpm bluez-cups-5.55-3.3.1.aarch64.rpm bluez-deprecated-5.55-3.3.1.aarch64.rpm bluez-devel-5.55-3.3.1.aarch64.rpm bluez-test-5.55-3.3.1.aarch64.rpm libbluetooth3-5.55-3.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-2012 Security update for python-urllib3 important SUSE Updates openSUSE-SLE 15.3 This update for python-urllib3 fixes the following issues: - CVE-2021-33503: Fixed a denial of service when the URL contained many @ characters in the authority component (bsc#1187045) python-urllib3-1.25.10-4.3.1.src.rpm python3-urllib3-1.25.10-4.3.1.noarch.rpm openSUSE-SLE-15.3-2021-2143 Security update for libnettle important SUSE Updates openSUSE-SLE 15.3 This update for libnettle fixes the following issues: - CVE-2021-3580: Fixed a remote denial of service in the RSA decryption via manipulated ciphertext (bsc#1187060). libhogweed4-3.4.1-4.18.1.x86_64.rpm libhogweed4-32bit-3.4.1-4.18.1.x86_64.rpm libnettle-3.4.1-4.18.1.src.rpm libnettle-devel-3.4.1-4.18.1.x86_64.rpm libnettle-devel-32bit-3.4.1-4.18.1.x86_64.rpm libnettle6-3.4.1-4.18.1.x86_64.rpm libnettle6-32bit-3.4.1-4.18.1.x86_64.rpm nettle-3.4.1-4.18.1.x86_64.rpm libhogweed4-3.4.1-4.18.1.s390x.rpm libnettle-devel-3.4.1-4.18.1.s390x.rpm libnettle6-3.4.1-4.18.1.s390x.rpm nettle-3.4.1-4.18.1.s390x.rpm libhogweed4-3.4.1-4.18.1.ppc64le.rpm libnettle-devel-3.4.1-4.18.1.ppc64le.rpm libnettle6-3.4.1-4.18.1.ppc64le.rpm nettle-3.4.1-4.18.1.ppc64le.rpm libhogweed4-3.4.1-4.18.1.aarch64.rpm libnettle-devel-3.4.1-4.18.1.aarch64.rpm libnettle6-3.4.1-4.18.1.aarch64.rpm nettle-3.4.1-4.18.1.aarch64.rpm openSUSE-SLE-15.3-2021-2001 Recommended update for python-pycryptodome moderate SUSE Updates openSUSE-SLE 15.3 This update for python-pycryptodome fixes the following issue: - python-pycryptodome had a lower release number in 15 sp2 and sp3 than in 15 sp1, which could lead to migration issues. (bsc#1186642) python-pycryptodome-3.9.0-6.1.src.rpm python2-pycryptodome-3.9.0-6.1.x86_64.rpm python3-pycryptodome-3.9.0-6.1.x86_64.rpm python2-pycryptodome-3.9.0-6.1.s390x.rpm python3-pycryptodome-3.9.0-6.1.s390x.rpm python2-pycryptodome-3.9.0-6.1.ppc64le.rpm python3-pycryptodome-3.9.0-6.1.ppc64le.rpm python2-pycryptodome-3.9.0-6.1.aarch64.rpm python3-pycryptodome-3.9.0-6.1.aarch64.rpm openSUSE-SLE-15.3-2021-2079 Recommended update for build moderate SUSE Updates openSUSE-SLE 15.3 This update for build fixes the following issue: - build had a lower release number in 15 sp2 and sp3 than in 15 sp1, which could lead to migration issues. (bsc#1186642) build-20210120-6.1.noarch.rpm build-20210120-6.1.src.rpm build-initvm-x86_64-20210120-6.1.noarch.rpm build-mkbaselibs-20210120-6.1.noarch.rpm build-mkdrpms-20210120-6.1.noarch.rpm build-initvm-s390x-20210120-6.1.noarch.rpm build-initvm-powerpc64le-20210120-6.1.noarch.rpm build-initvm-aarch64-20210120-6.1.noarch.rpm openSUSE-SLE-15.3-2021-2008 Security update for python-rsa important SUSE Updates openSUSE-SLE 15.3 This update for python-rsa fixes the following issues: - CVE-2020-13757: Proper handling of leading '\0' bytes during decryption of ciphertext (bsc#1172389) python-rsa-3.4.2-3.4.1.src.rpm python2-rsa-3.4.2-3.4.1.noarch.rpm python3-rsa-3.4.2-3.4.1.noarch.rpm openSUSE-SLE-15.3-2021-2093 Recommended update for ceph moderate SUSE Updates openSUSE-SLE 15.3 This update for ceph fixes the following issues: - updated ceph to upstream version 15.2.13: * mgr/dashboard: allow getting fresh inventory data from the orchestrator (bsc#1174526) The whole upstream changelog can be found here: https://ceph.io/releases/v15-2-13-octopus-released/ ceph-15.2.13.79+g51835b62d61-3.28.1.src.rpm ceph-15.2.13.79+g51835b62d61-3.28.1.x86_64.rpm ceph-base-15.2.13.79+g51835b62d61-3.28.1.x86_64.rpm ceph-common-15.2.13.79+g51835b62d61-3.28.1.x86_64.rpm ceph-fuse-15.2.13.79+g51835b62d61-3.28.1.x86_64.rpm ceph-grafana-dashboards-15.2.13.79+g51835b62d61-3.28.1.noarch.rpm ceph-immutable-object-cache-15.2.13.79+g51835b62d61-3.28.1.x86_64.rpm ceph-mds-15.2.13.79+g51835b62d61-3.28.1.x86_64.rpm ceph-mgr-15.2.13.79+g51835b62d61-3.28.1.x86_64.rpm ceph-mgr-cephadm-15.2.13.79+g51835b62d61-3.28.1.noarch.rpm ceph-mgr-dashboard-15.2.13.79+g51835b62d61-3.28.1.noarch.rpm ceph-mgr-diskprediction-cloud-15.2.13.79+g51835b62d61-3.28.1.noarch.rpm ceph-mgr-diskprediction-local-15.2.13.79+g51835b62d61-3.28.1.noarch.rpm ceph-mgr-k8sevents-15.2.13.79+g51835b62d61-3.28.1.noarch.rpm ceph-mgr-modules-core-15.2.13.79+g51835b62d61-3.28.1.noarch.rpm ceph-mgr-rook-15.2.13.79+g51835b62d61-3.28.1.noarch.rpm ceph-mon-15.2.13.79+g51835b62d61-3.28.1.x86_64.rpm ceph-osd-15.2.13.79+g51835b62d61-3.28.1.x86_64.rpm ceph-prometheus-alerts-15.2.13.79+g51835b62d61-3.28.1.noarch.rpm ceph-radosgw-15.2.13.79+g51835b62d61-3.28.1.x86_64.rpm ceph-test-15.2.13.79+g51835b62d61-3.28.1.src.rpm ceph-test-15.2.13.79+g51835b62d61-3.28.1.x86_64.rpm cephadm-15.2.13.79+g51835b62d61-3.28.1.noarch.rpm cephfs-shell-15.2.13.79+g51835b62d61-3.28.1.x86_64.rpm libcephfs-devel-15.2.13.79+g51835b62d61-3.28.1.x86_64.rpm libcephfs2-15.2.13.79+g51835b62d61-3.28.1.x86_64.rpm librados-devel-15.2.13.79+g51835b62d61-3.28.1.x86_64.rpm librados2-15.2.13.79+g51835b62d61-3.28.1.x86_64.rpm libradospp-devel-15.2.13.79+g51835b62d61-3.28.1.x86_64.rpm librbd-devel-15.2.13.79+g51835b62d61-3.28.1.x86_64.rpm librbd1-15.2.13.79+g51835b62d61-3.28.1.x86_64.rpm librgw-devel-15.2.13.79+g51835b62d61-3.28.1.x86_64.rpm librgw2-15.2.13.79+g51835b62d61-3.28.1.x86_64.rpm python3-ceph-argparse-15.2.13.79+g51835b62d61-3.28.1.x86_64.rpm python3-ceph-common-15.2.13.79+g51835b62d61-3.28.1.x86_64.rpm python3-cephfs-15.2.13.79+g51835b62d61-3.28.1.x86_64.rpm python3-rados-15.2.13.79+g51835b62d61-3.28.1.x86_64.rpm python3-rbd-15.2.13.79+g51835b62d61-3.28.1.x86_64.rpm python3-rgw-15.2.13.79+g51835b62d61-3.28.1.x86_64.rpm rados-objclass-devel-15.2.13.79+g51835b62d61-3.28.1.x86_64.rpm rbd-fuse-15.2.13.79+g51835b62d61-3.28.1.x86_64.rpm rbd-mirror-15.2.13.79+g51835b62d61-3.28.1.x86_64.rpm rbd-nbd-15.2.13.79+g51835b62d61-3.28.1.x86_64.rpm ceph-15.2.13.79+g51835b62d61-3.28.1.s390x.rpm ceph-base-15.2.13.79+g51835b62d61-3.28.1.s390x.rpm ceph-common-15.2.13.79+g51835b62d61-3.28.1.s390x.rpm ceph-fuse-15.2.13.79+g51835b62d61-3.28.1.s390x.rpm ceph-immutable-object-cache-15.2.13.79+g51835b62d61-3.28.1.s390x.rpm ceph-mds-15.2.13.79+g51835b62d61-3.28.1.s390x.rpm ceph-mgr-15.2.13.79+g51835b62d61-3.28.1.s390x.rpm ceph-mon-15.2.13.79+g51835b62d61-3.28.1.s390x.rpm ceph-osd-15.2.13.79+g51835b62d61-3.28.1.s390x.rpm ceph-radosgw-15.2.13.79+g51835b62d61-3.28.1.s390x.rpm cephfs-shell-15.2.13.79+g51835b62d61-3.28.1.s390x.rpm libcephfs-devel-15.2.13.79+g51835b62d61-3.28.1.s390x.rpm libcephfs2-15.2.13.79+g51835b62d61-3.28.1.s390x.rpm librados-devel-15.2.13.79+g51835b62d61-3.28.1.s390x.rpm librados2-15.2.13.79+g51835b62d61-3.28.1.s390x.rpm libradospp-devel-15.2.13.79+g51835b62d61-3.28.1.s390x.rpm librbd-devel-15.2.13.79+g51835b62d61-3.28.1.s390x.rpm librbd1-15.2.13.79+g51835b62d61-3.28.1.s390x.rpm librgw-devel-15.2.13.79+g51835b62d61-3.28.1.s390x.rpm librgw2-15.2.13.79+g51835b62d61-3.28.1.s390x.rpm python3-ceph-argparse-15.2.13.79+g51835b62d61-3.28.1.s390x.rpm python3-ceph-common-15.2.13.79+g51835b62d61-3.28.1.s390x.rpm python3-cephfs-15.2.13.79+g51835b62d61-3.28.1.s390x.rpm python3-rados-15.2.13.79+g51835b62d61-3.28.1.s390x.rpm python3-rbd-15.2.13.79+g51835b62d61-3.28.1.s390x.rpm python3-rgw-15.2.13.79+g51835b62d61-3.28.1.s390x.rpm rados-objclass-devel-15.2.13.79+g51835b62d61-3.28.1.s390x.rpm rbd-fuse-15.2.13.79+g51835b62d61-3.28.1.s390x.rpm rbd-mirror-15.2.13.79+g51835b62d61-3.28.1.s390x.rpm rbd-nbd-15.2.13.79+g51835b62d61-3.28.1.s390x.rpm ceph-15.2.13.79+g51835b62d61-3.28.1.ppc64le.rpm ceph-base-15.2.13.79+g51835b62d61-3.28.1.ppc64le.rpm ceph-common-15.2.13.79+g51835b62d61-3.28.1.ppc64le.rpm ceph-fuse-15.2.13.79+g51835b62d61-3.28.1.ppc64le.rpm ceph-immutable-object-cache-15.2.13.79+g51835b62d61-3.28.1.ppc64le.rpm ceph-mds-15.2.13.79+g51835b62d61-3.28.1.ppc64le.rpm ceph-mgr-15.2.13.79+g51835b62d61-3.28.1.ppc64le.rpm ceph-mon-15.2.13.79+g51835b62d61-3.28.1.ppc64le.rpm ceph-osd-15.2.13.79+g51835b62d61-3.28.1.ppc64le.rpm ceph-radosgw-15.2.13.79+g51835b62d61-3.28.1.ppc64le.rpm cephfs-shell-15.2.13.79+g51835b62d61-3.28.1.ppc64le.rpm libcephfs-devel-15.2.13.79+g51835b62d61-3.28.1.ppc64le.rpm libcephfs2-15.2.13.79+g51835b62d61-3.28.1.ppc64le.rpm librados-devel-15.2.13.79+g51835b62d61-3.28.1.ppc64le.rpm librados2-15.2.13.79+g51835b62d61-3.28.1.ppc64le.rpm libradospp-devel-15.2.13.79+g51835b62d61-3.28.1.ppc64le.rpm librbd-devel-15.2.13.79+g51835b62d61-3.28.1.ppc64le.rpm librbd1-15.2.13.79+g51835b62d61-3.28.1.ppc64le.rpm librgw-devel-15.2.13.79+g51835b62d61-3.28.1.ppc64le.rpm librgw2-15.2.13.79+g51835b62d61-3.28.1.ppc64le.rpm python3-ceph-argparse-15.2.13.79+g51835b62d61-3.28.1.ppc64le.rpm python3-ceph-common-15.2.13.79+g51835b62d61-3.28.1.ppc64le.rpm python3-cephfs-15.2.13.79+g51835b62d61-3.28.1.ppc64le.rpm python3-rados-15.2.13.79+g51835b62d61-3.28.1.ppc64le.rpm python3-rbd-15.2.13.79+g51835b62d61-3.28.1.ppc64le.rpm python3-rgw-15.2.13.79+g51835b62d61-3.28.1.ppc64le.rpm rados-objclass-devel-15.2.13.79+g51835b62d61-3.28.1.ppc64le.rpm rbd-fuse-15.2.13.79+g51835b62d61-3.28.1.ppc64le.rpm rbd-mirror-15.2.13.79+g51835b62d61-3.28.1.ppc64le.rpm rbd-nbd-15.2.13.79+g51835b62d61-3.28.1.ppc64le.rpm ceph-15.2.13.79+g51835b62d61-3.28.1.aarch64.rpm ceph-base-15.2.13.79+g51835b62d61-3.28.1.aarch64.rpm ceph-common-15.2.13.79+g51835b62d61-3.28.1.aarch64.rpm ceph-fuse-15.2.13.79+g51835b62d61-3.28.1.aarch64.rpm ceph-immutable-object-cache-15.2.13.79+g51835b62d61-3.28.1.aarch64.rpm ceph-mds-15.2.13.79+g51835b62d61-3.28.1.aarch64.rpm ceph-mgr-15.2.13.79+g51835b62d61-3.28.1.aarch64.rpm ceph-mon-15.2.13.79+g51835b62d61-3.28.1.aarch64.rpm ceph-osd-15.2.13.79+g51835b62d61-3.28.1.aarch64.rpm ceph-radosgw-15.2.13.79+g51835b62d61-3.28.1.aarch64.rpm cephfs-shell-15.2.13.79+g51835b62d61-3.28.1.aarch64.rpm libcephfs-devel-15.2.13.79+g51835b62d61-3.28.1.aarch64.rpm libcephfs2-15.2.13.79+g51835b62d61-3.28.1.aarch64.rpm librados-devel-15.2.13.79+g51835b62d61-3.28.1.aarch64.rpm librados2-15.2.13.79+g51835b62d61-3.28.1.aarch64.rpm libradospp-devel-15.2.13.79+g51835b62d61-3.28.1.aarch64.rpm librbd-devel-15.2.13.79+g51835b62d61-3.28.1.aarch64.rpm librbd1-15.2.13.79+g51835b62d61-3.28.1.aarch64.rpm librgw-devel-15.2.13.79+g51835b62d61-3.28.1.aarch64.rpm librgw2-15.2.13.79+g51835b62d61-3.28.1.aarch64.rpm python3-ceph-argparse-15.2.13.79+g51835b62d61-3.28.1.aarch64.rpm python3-ceph-common-15.2.13.79+g51835b62d61-3.28.1.aarch64.rpm python3-cephfs-15.2.13.79+g51835b62d61-3.28.1.aarch64.rpm python3-rados-15.2.13.79+g51835b62d61-3.28.1.aarch64.rpm python3-rbd-15.2.13.79+g51835b62d61-3.28.1.aarch64.rpm python3-rgw-15.2.13.79+g51835b62d61-3.28.1.aarch64.rpm rados-objclass-devel-15.2.13.79+g51835b62d61-3.28.1.aarch64.rpm rbd-fuse-15.2.13.79+g51835b62d61-3.28.1.aarch64.rpm rbd-mirror-15.2.13.79+g51835b62d61-3.28.1.aarch64.rpm rbd-nbd-15.2.13.79+g51835b62d61-3.28.1.aarch64.rpm openSUSE-SLE-15.3-2021-2002 Recommended update for open-vm-tools moderate SUSE Updates openSUSE-SLE 15.3 This update for open-vm-tools fixes the following issue: - open-vm-tools had a lower release number in 15 sp2 and sp3 than in 15 sp1, which could lead to migration issues. (bsc#1186642) libvmtools-devel-11.2.5-7.1.x86_64.rpm libvmtools0-11.2.5-7.1.x86_64.rpm open-vm-tools-11.2.5-7.1.src.rpm open-vm-tools-11.2.5-7.1.x86_64.rpm open-vm-tools-desktop-11.2.5-7.1.x86_64.rpm open-vm-tools-sdmp-11.2.5-7.1.x86_64.rpm libvmtools-devel-11.2.5-7.1.aarch64.rpm libvmtools0-11.2.5-7.1.aarch64.rpm open-vm-tools-11.2.5-7.1.aarch64.rpm open-vm-tools-desktop-11.2.5-7.1.aarch64.rpm open-vm-tools-sdmp-11.2.5-7.1.aarch64.rpm openSUSE-SLE-15.3-2021-2157 Security update for libgcrypt important SUSE Updates openSUSE-SLE 15.3 This update for libgcrypt fixes the following issues: - CVE-2021-33560: Fixed a side-channel against ElGamal encryption, caused by missing exponent blinding (bsc#1187212). libgcrypt-1.8.2-8.39.1.src.rpm libgcrypt-cavs-1.8.2-8.39.1.x86_64.rpm libgcrypt-devel-1.8.2-8.39.1.x86_64.rpm libgcrypt-devel-32bit-1.8.2-8.39.1.x86_64.rpm libgcrypt20-1.8.2-8.39.1.x86_64.rpm libgcrypt20-32bit-1.8.2-8.39.1.x86_64.rpm libgcrypt20-hmac-1.8.2-8.39.1.x86_64.rpm libgcrypt20-hmac-32bit-1.8.2-8.39.1.x86_64.rpm libgcrypt-cavs-1.8.2-8.39.1.s390x.rpm libgcrypt-devel-1.8.2-8.39.1.s390x.rpm libgcrypt20-1.8.2-8.39.1.s390x.rpm libgcrypt20-hmac-1.8.2-8.39.1.s390x.rpm libgcrypt-cavs-1.8.2-8.39.1.ppc64le.rpm libgcrypt-devel-1.8.2-8.39.1.ppc64le.rpm libgcrypt20-1.8.2-8.39.1.ppc64le.rpm libgcrypt20-hmac-1.8.2-8.39.1.ppc64le.rpm libgcrypt-cavs-1.8.2-8.39.1.aarch64.rpm libgcrypt-devel-1.8.2-8.39.1.aarch64.rpm libgcrypt20-1.8.2-8.39.1.aarch64.rpm libgcrypt20-hmac-1.8.2-8.39.1.aarch64.rpm openSUSE-SLE-15.3-2021-1981 Recommended update for obs-service-tar_scm moderate SUSE Updates openSUSE-SLE 15.3 This update for obs-service-tar_scm fixes the following issues: * Fix filelist: align config(noreplace) usage with obs-service-download_files * Support gitlab/github merge requests obs-service-appimage-0.10.22.1615538418.07a353d-3.12.1.noarch.rpm obs-service-obs_scm-0.10.22.1615538418.07a353d-3.12.1.noarch.rpm obs-service-obs_scm-common-0.10.22.1615538418.07a353d-3.12.1.noarch.rpm obs-service-snapcraft-0.10.22.1615538418.07a353d-3.12.1.noarch.rpm obs-service-tar-0.10.22.1615538418.07a353d-3.12.1.noarch.rpm obs-service-tar_scm-0.10.22.1615538418.07a353d-3.12.1.noarch.rpm obs-service-tar_scm-0.10.22.1615538418.07a353d-3.12.1.src.rpm openSUSE-SLE-15.3-2021-2177 Security update for arpwatch important SUSE Updates openSUSE-SLE 15.3 This update for arpwatch fixes the following issues: - CVE-2021-25321: Fixed local privilege escalation from runtime user to root (bsc#1186240). arpwatch-2.1a15-5.12.1.src.rpm arpwatch-2.1a15-5.12.1.x86_64.rpm arpwatch-ethercodes-build-2.1a15-5.12.1.x86_64.rpm arpwatch-2.1a15-5.12.1.s390x.rpm arpwatch-ethercodes-build-2.1a15-5.12.1.s390x.rpm arpwatch-2.1a15-5.12.1.ppc64le.rpm arpwatch-ethercodes-build-2.1a15-5.12.1.ppc64le.rpm arpwatch-2.1a15-5.12.1.aarch64.rpm arpwatch-ethercodes-build-2.1a15-5.12.1.aarch64.rpm openSUSE-SLE-15.3-2021-2076 Recommended update for dovecot23 moderate SUSE Updates openSUSE-SLE 15.3 This update for dovecot23 fixes the following issue: - dovecot23 had a lower release number in 15 sp2 and sp3 than in 15 sp1, which could lead to migration issues. (bsc#1186642) dovecot23-2.3.11.3-52.1.src.rpm dovecot23-2.3.11.3-52.1.x86_64.rpm dovecot23-backend-mysql-2.3.11.3-52.1.x86_64.rpm dovecot23-backend-pgsql-2.3.11.3-52.1.x86_64.rpm dovecot23-backend-sqlite-2.3.11.3-52.1.x86_64.rpm dovecot23-devel-2.3.11.3-52.1.x86_64.rpm dovecot23-fts-2.3.11.3-52.1.x86_64.rpm dovecot23-fts-lucene-2.3.11.3-52.1.x86_64.rpm dovecot23-fts-solr-2.3.11.3-52.1.x86_64.rpm dovecot23-fts-squat-2.3.11.3-52.1.x86_64.rpm dovecot23-2.3.11.3-52.1.s390x.rpm dovecot23-backend-mysql-2.3.11.3-52.1.s390x.rpm dovecot23-backend-pgsql-2.3.11.3-52.1.s390x.rpm dovecot23-backend-sqlite-2.3.11.3-52.1.s390x.rpm dovecot23-devel-2.3.11.3-52.1.s390x.rpm dovecot23-fts-2.3.11.3-52.1.s390x.rpm dovecot23-fts-lucene-2.3.11.3-52.1.s390x.rpm dovecot23-fts-solr-2.3.11.3-52.1.s390x.rpm dovecot23-fts-squat-2.3.11.3-52.1.s390x.rpm dovecot23-2.3.11.3-52.1.ppc64le.rpm dovecot23-backend-mysql-2.3.11.3-52.1.ppc64le.rpm dovecot23-backend-pgsql-2.3.11.3-52.1.ppc64le.rpm dovecot23-backend-sqlite-2.3.11.3-52.1.ppc64le.rpm dovecot23-devel-2.3.11.3-52.1.ppc64le.rpm dovecot23-fts-2.3.11.3-52.1.ppc64le.rpm dovecot23-fts-lucene-2.3.11.3-52.1.ppc64le.rpm dovecot23-fts-solr-2.3.11.3-52.1.ppc64le.rpm dovecot23-fts-squat-2.3.11.3-52.1.ppc64le.rpm dovecot23-2.3.11.3-52.1.aarch64.rpm dovecot23-backend-mysql-2.3.11.3-52.1.aarch64.rpm dovecot23-backend-pgsql-2.3.11.3-52.1.aarch64.rpm dovecot23-backend-sqlite-2.3.11.3-52.1.aarch64.rpm dovecot23-devel-2.3.11.3-52.1.aarch64.rpm dovecot23-fts-2.3.11.3-52.1.aarch64.rpm dovecot23-fts-lucene-2.3.11.3-52.1.aarch64.rpm dovecot23-fts-solr-2.3.11.3-52.1.aarch64.rpm dovecot23-fts-squat-2.3.11.3-52.1.aarch64.rpm openSUSE-SLE-15.3-2021-2668 Recommended update for salt moderate SUSE Updates openSUSE-SLE 15.3 This update for salt fixes the following issue: - salt had a lower release number in 15 sp2 and sp3 than in 15 sp1, which could lead to migration issues. (bsc#1186642) - Do noop for services states when running systemd in offline mode (bsc#1187787) - transactional_updates: do not execute states in parallel but use a queue (bsc#1188170) - Handle "master tops" data when states are applied by "transactional_update" (bsc#1187787) - Enhance openscap module: add "xccdf_eval" call - virt: pass emulator when getting domain capabilities from libvirt - Adding preliminary support for Rocky Linux - Implementation of held/unheld functions for state pkg (bsc#1187813) - Replace deprecated 'Thread.isAlive()' with 'Thread.is_alive()' - Fix exception in 'yumpkg.remove' for not installed package - Fix save for iptables state module (bsc#1185131) - virt: use '/dev/kvm' to detect KVM - zypperpkg: improve logic for handling vendorchange flags - Add bundled provides for tornado to the spec file - Enhance logging when inotify beacon is missing pyinotify (bsc#1186310) - Add 'python3-pyinotify' as a recommended package for Salt in SUSE/openSUSE distros - Fix 'tmpfiles.d' configuration for salt to not use legacy paths (bsc#1173103) - Detect Python version to use inside container (bsc#1167586, bsc#1164192) - Handle volumes on stopped pools in 'virt.vm_info' (bsc#1186287) - grains.extra: support old non-intel kernels (bsc#1180650) - Fix missing minion returns in batch mode (bsc#1184659) - Parsing Epoch out of version provided during pkg remove (bsc#1173692) python3-salt-3002.2-50.1.9.1.x86_64.rpm True salt-3002.2-50.1.9.1.src.rpm True salt-3002.2-50.1.9.1.x86_64.rpm True salt-api-3002.2-50.1.9.1.x86_64.rpm True salt-bash-completion-3002.2-50.1.9.1.noarch.rpm True salt-cloud-3002.2-50.1.9.1.x86_64.rpm True salt-doc-3002.2-50.1.9.1.x86_64.rpm True salt-fish-completion-3002.2-50.1.9.1.noarch.rpm True salt-master-3002.2-50.1.9.1.x86_64.rpm True salt-minion-3002.2-50.1.9.1.x86_64.rpm True salt-proxy-3002.2-50.1.9.1.x86_64.rpm True salt-ssh-3002.2-50.1.9.1.x86_64.rpm True salt-standalone-formulas-configuration-3002.2-50.1.9.1.x86_64.rpm True salt-syndic-3002.2-50.1.9.1.x86_64.rpm True salt-transactional-update-3002.2-50.1.9.1.x86_64.rpm True salt-zsh-completion-3002.2-50.1.9.1.noarch.rpm True python3-salt-3002.2-50.1.9.1.s390x.rpm True salt-3002.2-50.1.9.1.s390x.rpm True salt-api-3002.2-50.1.9.1.s390x.rpm True salt-cloud-3002.2-50.1.9.1.s390x.rpm True salt-doc-3002.2-50.1.9.1.s390x.rpm True salt-master-3002.2-50.1.9.1.s390x.rpm True salt-minion-3002.2-50.1.9.1.s390x.rpm True salt-proxy-3002.2-50.1.9.1.s390x.rpm True salt-ssh-3002.2-50.1.9.1.s390x.rpm True salt-standalone-formulas-configuration-3002.2-50.1.9.1.s390x.rpm True salt-syndic-3002.2-50.1.9.1.s390x.rpm True salt-transactional-update-3002.2-50.1.9.1.s390x.rpm True python3-salt-3002.2-50.1.9.1.ppc64le.rpm True salt-3002.2-50.1.9.1.ppc64le.rpm True salt-api-3002.2-50.1.9.1.ppc64le.rpm True salt-cloud-3002.2-50.1.9.1.ppc64le.rpm True salt-doc-3002.2-50.1.9.1.ppc64le.rpm True salt-master-3002.2-50.1.9.1.ppc64le.rpm True salt-minion-3002.2-50.1.9.1.ppc64le.rpm True salt-proxy-3002.2-50.1.9.1.ppc64le.rpm True salt-ssh-3002.2-50.1.9.1.ppc64le.rpm True salt-standalone-formulas-configuration-3002.2-50.1.9.1.ppc64le.rpm True salt-syndic-3002.2-50.1.9.1.ppc64le.rpm True salt-transactional-update-3002.2-50.1.9.1.ppc64le.rpm True python3-salt-3002.2-50.1.9.1.aarch64.rpm True salt-3002.2-50.1.9.1.aarch64.rpm True salt-api-3002.2-50.1.9.1.aarch64.rpm True salt-cloud-3002.2-50.1.9.1.aarch64.rpm True salt-doc-3002.2-50.1.9.1.aarch64.rpm True salt-master-3002.2-50.1.9.1.aarch64.rpm True salt-minion-3002.2-50.1.9.1.aarch64.rpm True salt-proxy-3002.2-50.1.9.1.aarch64.rpm True salt-ssh-3002.2-50.1.9.1.aarch64.rpm True salt-standalone-formulas-configuration-3002.2-50.1.9.1.aarch64.rpm True salt-syndic-3002.2-50.1.9.1.aarch64.rpm True salt-transactional-update-3002.2-50.1.9.1.aarch64.rpm True openSUSE-SLE-15.3-2021-2089 Recommended update for libreoffice important SUSE Updates openSUSE-SLE 15.3 This update for libreoffice fixes the following issue: - LibreOffice migration conflict from SUSE Linux Enterprise 15-SP2 to SUSE Linux Enterprise 15-SP3. (bsc#1187354) libreoffice-7.1.3.2-14.22.6.1.src.rpm libreoffice-7.1.3.2-14.22.6.1.x86_64.rpm libreoffice-base-7.1.3.2-14.22.6.1.x86_64.rpm libreoffice-base-drivers-postgresql-7.1.3.2-14.22.6.1.x86_64.rpm libreoffice-branding-upstream-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-calc-7.1.3.2-14.22.6.1.x86_64.rpm libreoffice-calc-extensions-7.1.3.2-14.22.6.1.x86_64.rpm libreoffice-draw-7.1.3.2-14.22.6.1.x86_64.rpm libreoffice-filters-optional-7.1.3.2-14.22.6.1.x86_64.rpm libreoffice-gdb-pretty-printers-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-glade-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-gnome-7.1.3.2-14.22.6.1.x86_64.rpm libreoffice-gtk3-7.1.3.2-14.22.6.1.x86_64.rpm libreoffice-icon-themes-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-impress-7.1.3.2-14.22.6.1.x86_64.rpm libreoffice-l10n-af-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-am-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-ar-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-as-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-ast-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-be-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-bg-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-bn-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-bn_IN-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-bo-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-br-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-brx-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-bs-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-ca-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-ca_valencia-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-ckb-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-cs-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-cy-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-da-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-de-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-dgo-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-dsb-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-dz-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-el-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-en-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-en_GB-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-en_ZA-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-eo-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-es-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-et-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-eu-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-fa-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-fi-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-fr-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-fur-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-fy-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-ga-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-gd-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-gl-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-gu-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-gug-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-he-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-hi-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-hr-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-hsb-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-hu-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-id-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-is-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-it-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-ja-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-ka-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-kab-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-kk-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-km-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-kmr_Latn-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-kn-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-ko-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-kok-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-ks-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-lb-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-lo-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-lt-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-lv-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-mai-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-mk-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-ml-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-mn-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-mni-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-mr-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-my-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-nb-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-ne-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-nl-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-nn-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-nr-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-nso-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-oc-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-om-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-or-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-pa-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-pl-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-pt_BR-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-pt_PT-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-ro-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-ru-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-rw-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-sa_IN-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-sat-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-sd-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-si-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-sid-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-sk-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-sl-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-sq-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-sr-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-ss-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-st-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-sv-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-sw_TZ-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-szl-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-ta-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-te-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-tg-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-th-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-tn-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-tr-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-ts-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-tt-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-ug-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-uk-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-uz-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-ve-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-vec-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-vi-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-xh-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-zh_CN-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-zh_TW-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-zu-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-librelogo-7.1.3.2-14.22.6.1.x86_64.rpm libreoffice-mailmerge-7.1.3.2-14.22.6.1.x86_64.rpm libreoffice-math-7.1.3.2-14.22.6.1.x86_64.rpm libreoffice-officebean-7.1.3.2-14.22.6.1.x86_64.rpm libreoffice-pyuno-7.1.3.2-14.22.6.1.x86_64.rpm libreoffice-qt5-7.1.3.2-14.22.6.1.x86_64.rpm libreoffice-sdk-7.1.3.2-14.22.6.1.x86_64.rpm libreoffice-sdk-doc-7.1.3.2-14.22.6.1.x86_64.rpm libreoffice-writer-7.1.3.2-14.22.6.1.x86_64.rpm libreoffice-writer-extensions-7.1.3.2-14.22.6.1.x86_64.rpm libreofficekit-7.1.3.2-14.22.6.1.x86_64.rpm libreofficekit-devel-7.1.3.2-14.22.6.1.x86_64.rpm libreoffice-7.1.3.2-14.22.6.1.ppc64le.rpm libreoffice-base-7.1.3.2-14.22.6.1.ppc64le.rpm libreoffice-base-drivers-postgresql-7.1.3.2-14.22.6.1.ppc64le.rpm libreoffice-calc-7.1.3.2-14.22.6.1.ppc64le.rpm libreoffice-calc-extensions-7.1.3.2-14.22.6.1.ppc64le.rpm libreoffice-draw-7.1.3.2-14.22.6.1.ppc64le.rpm libreoffice-filters-optional-7.1.3.2-14.22.6.1.ppc64le.rpm libreoffice-gnome-7.1.3.2-14.22.6.1.ppc64le.rpm libreoffice-gtk3-7.1.3.2-14.22.6.1.ppc64le.rpm libreoffice-impress-7.1.3.2-14.22.6.1.ppc64le.rpm libreoffice-librelogo-7.1.3.2-14.22.6.1.ppc64le.rpm libreoffice-mailmerge-7.1.3.2-14.22.6.1.ppc64le.rpm libreoffice-math-7.1.3.2-14.22.6.1.ppc64le.rpm libreoffice-officebean-7.1.3.2-14.22.6.1.ppc64le.rpm libreoffice-pyuno-7.1.3.2-14.22.6.1.ppc64le.rpm libreoffice-qt5-7.1.3.2-14.22.6.1.ppc64le.rpm libreoffice-sdk-7.1.3.2-14.22.6.1.ppc64le.rpm libreoffice-sdk-doc-7.1.3.2-14.22.6.1.ppc64le.rpm libreoffice-writer-7.1.3.2-14.22.6.1.ppc64le.rpm libreoffice-writer-extensions-7.1.3.2-14.22.6.1.ppc64le.rpm libreofficekit-7.1.3.2-14.22.6.1.ppc64le.rpm libreofficekit-devel-7.1.3.2-14.22.6.1.ppc64le.rpm libreoffice-7.1.3.2-14.22.6.1.aarch64.rpm libreoffice-base-7.1.3.2-14.22.6.1.aarch64.rpm libreoffice-base-drivers-postgresql-7.1.3.2-14.22.6.1.aarch64.rpm libreoffice-calc-7.1.3.2-14.22.6.1.aarch64.rpm libreoffice-calc-extensions-7.1.3.2-14.22.6.1.aarch64.rpm libreoffice-draw-7.1.3.2-14.22.6.1.aarch64.rpm libreoffice-filters-optional-7.1.3.2-14.22.6.1.aarch64.rpm libreoffice-gnome-7.1.3.2-14.22.6.1.aarch64.rpm libreoffice-gtk3-7.1.3.2-14.22.6.1.aarch64.rpm libreoffice-impress-7.1.3.2-14.22.6.1.aarch64.rpm libreoffice-librelogo-7.1.3.2-14.22.6.1.aarch64.rpm libreoffice-mailmerge-7.1.3.2-14.22.6.1.aarch64.rpm libreoffice-math-7.1.3.2-14.22.6.1.aarch64.rpm libreoffice-officebean-7.1.3.2-14.22.6.1.aarch64.rpm libreoffice-pyuno-7.1.3.2-14.22.6.1.aarch64.rpm libreoffice-qt5-7.1.3.2-14.22.6.1.aarch64.rpm libreoffice-sdk-7.1.3.2-14.22.6.1.aarch64.rpm libreoffice-sdk-doc-7.1.3.2-14.22.6.1.aarch64.rpm libreoffice-writer-7.1.3.2-14.22.6.1.aarch64.rpm libreoffice-writer-extensions-7.1.3.2-14.22.6.1.aarch64.rpm libreofficekit-7.1.3.2-14.22.6.1.aarch64.rpm libreofficekit-devel-7.1.3.2-14.22.6.1.aarch64.rpm openSUSE-SLE-15.3-2021-2118 Security update for ovmf important SUSE Updates openSUSE-SLE 15.3 This update for ovmf fixes the following issues: - Fixed a possible buffer overflow in IScsiDxe (bsc#1186151) ovmf-202008-10.8.1.src.rpm ovmf-202008-10.8.1.x86_64.rpm ovmf-tools-202008-10.8.1.x86_64.rpm qemu-ovmf-ia32-202008-10.8.1.noarch.rpm qemu-ovmf-x86_64-202008-10.8.1.noarch.rpm qemu-ovmf-x86_64-debug-202008-10.8.1.x86_64.rpm qemu-uefi-aarch32-202008-10.8.1.noarch.rpm qemu-uefi-aarch64-202008-10.8.1.noarch.rpm ovmf-202008-10.8.1.aarch64.rpm ovmf-tools-202008-10.8.1.aarch64.rpm openSUSE-SLE-15.3-2021-2274 Security update for kubevirt moderate SUSE Updates openSUSE-SLE 15.3 This update for kubevirt fixes the following issues: General: - Updated kubevirt to version 0.40.0 - Fixed an issue when calling `virsh-domcapabilities` - Fixed the the wrong registry path for containers. Security fixes: - CVE-2021-20286: A flaw was found in libnbd 1.7.3. An assertion failure in nbd_unlocked_opt_go in ilb/opt.c may lead to denial of service. kubevirt-0.40.0-5.11.2.src.rpm kubevirt-container-disk-0.40.0-5.11.2.x86_64.rpm kubevirt-manifests-0.40.0-5.11.2.x86_64.rpm kubevirt-tests-0.40.0-5.11.2.x86_64.rpm kubevirt-virt-api-0.40.0-5.11.2.x86_64.rpm kubevirt-virt-controller-0.40.0-5.11.2.x86_64.rpm kubevirt-virt-handler-0.40.0-5.11.2.x86_64.rpm kubevirt-virt-launcher-0.40.0-5.11.2.x86_64.rpm kubevirt-virt-operator-0.40.0-5.11.2.x86_64.rpm kubevirt-virtctl-0.40.0-5.11.2.x86_64.rpm openSUSE-SLE-15.3-2021-2158 Security update for openexr important SUSE Updates openSUSE-SLE 15.3 This update for openexr fixes the following issues: - Fixed CVE-2021-3605 [bsc#1187395]: Heap buffer overflow in the rleUncompress function - Fixed CVE-2021-3598 [bsc#1187310]: Heap buffer overflow in Imf_3_1:CharPtrIO:readChars libIlmImf-2_2-23-2.2.1-3.32.1.x86_64.rpm libIlmImf-2_2-23-32bit-2.2.1-3.32.1.x86_64.rpm libIlmImfUtil-2_2-23-2.2.1-3.32.1.x86_64.rpm libIlmImfUtil-2_2-23-32bit-2.2.1-3.32.1.x86_64.rpm openexr-2.2.1-3.32.1.src.rpm openexr-2.2.1-3.32.1.x86_64.rpm openexr-devel-2.2.1-3.32.1.x86_64.rpm openexr-doc-2.2.1-3.32.1.x86_64.rpm libIlmImf-2_2-23-2.2.1-3.32.1.s390x.rpm libIlmImfUtil-2_2-23-2.2.1-3.32.1.s390x.rpm openexr-2.2.1-3.32.1.s390x.rpm openexr-devel-2.2.1-3.32.1.s390x.rpm openexr-doc-2.2.1-3.32.1.s390x.rpm libIlmImf-2_2-23-2.2.1-3.32.1.ppc64le.rpm libIlmImfUtil-2_2-23-2.2.1-3.32.1.ppc64le.rpm openexr-2.2.1-3.32.1.ppc64le.rpm openexr-devel-2.2.1-3.32.1.ppc64le.rpm openexr-doc-2.2.1-3.32.1.ppc64le.rpm libIlmImf-2_2-23-2.2.1-3.32.1.aarch64.rpm libIlmImfUtil-2_2-23-2.2.1-3.32.1.aarch64.rpm openexr-2.2.1-3.32.1.aarch64.rpm openexr-devel-2.2.1-3.32.1.aarch64.rpm openexr-doc-2.2.1-3.32.1.aarch64.rpm openSUSE-SLE-15.3-2021-2213 Security update for qemu moderate SUSE Updates openSUSE-SLE 15.3 This update for qemu fixes the following issues: - CVE-2021-3546: Fixed out-of-bounds write in virgl_cmd_get_capset (bsc#1185981). - CVE-2021-3544: Fixed memory leaks found in the virtio vhost-user GPU device (bsc#1186010). - CVE-2021-3545: Fixed information disclosure due to uninitialized memory read (bsc#1185990). qemu-5.2.0-20.1.src.rpm qemu-5.2.0-20.1.x86_64.rpm qemu-arm-5.2.0-20.1.x86_64.rpm qemu-audio-alsa-5.2.0-20.1.x86_64.rpm qemu-audio-pa-5.2.0-20.1.x86_64.rpm qemu-audio-spice-5.2.0-20.1.x86_64.rpm qemu-block-curl-5.2.0-20.1.x86_64.rpm qemu-block-dmg-5.2.0-20.1.x86_64.rpm qemu-block-gluster-5.2.0-20.1.x86_64.rpm qemu-block-iscsi-5.2.0-20.1.x86_64.rpm qemu-block-nfs-5.2.0-20.1.x86_64.rpm qemu-block-rbd-5.2.0-20.1.x86_64.rpm qemu-block-ssh-5.2.0-20.1.x86_64.rpm qemu-chardev-baum-5.2.0-20.1.x86_64.rpm qemu-chardev-spice-5.2.0-20.1.x86_64.rpm qemu-extra-5.2.0-20.1.x86_64.rpm qemu-guest-agent-5.2.0-20.1.x86_64.rpm qemu-hw-display-qxl-5.2.0-20.1.x86_64.rpm qemu-hw-display-virtio-gpu-5.2.0-20.1.x86_64.rpm qemu-hw-display-virtio-gpu-pci-5.2.0-20.1.x86_64.rpm qemu-hw-display-virtio-vga-5.2.0-20.1.x86_64.rpm qemu-hw-s390x-virtio-gpu-ccw-5.2.0-20.1.x86_64.rpm qemu-hw-usb-redirect-5.2.0-20.1.x86_64.rpm qemu-hw-usb-smartcard-5.2.0-20.1.x86_64.rpm qemu-ipxe-1.0.0+-20.1.noarch.rpm qemu-ivshmem-tools-5.2.0-20.1.x86_64.rpm qemu-ksm-5.2.0-20.1.x86_64.rpm qemu-kvm-5.2.0-20.1.x86_64.rpm qemu-lang-5.2.0-20.1.x86_64.rpm qemu-microvm-5.2.0-20.1.noarch.rpm qemu-ppc-5.2.0-20.1.x86_64.rpm qemu-s390x-5.2.0-20.1.x86_64.rpm qemu-seabios-1.14.0_0_g155821a-20.1.noarch.rpm qemu-sgabios-8-20.1.noarch.rpm qemu-skiboot-5.2.0-20.1.noarch.rpm qemu-tools-5.2.0-20.1.x86_64.rpm qemu-ui-curses-5.2.0-20.1.x86_64.rpm qemu-ui-gtk-5.2.0-20.1.x86_64.rpm qemu-ui-opengl-5.2.0-20.1.x86_64.rpm qemu-ui-spice-app-5.2.0-20.1.x86_64.rpm qemu-ui-spice-core-5.2.0-20.1.x86_64.rpm qemu-vgabios-1.14.0_0_g155821a-20.1.noarch.rpm qemu-vhost-user-gpu-5.2.0-20.1.x86_64.rpm qemu-x86-5.2.0-20.1.x86_64.rpm qemu-5.2.0-20.1.s390x.rpm qemu-arm-5.2.0-20.1.s390x.rpm qemu-audio-alsa-5.2.0-20.1.s390x.rpm qemu-audio-pa-5.2.0-20.1.s390x.rpm qemu-audio-spice-5.2.0-20.1.s390x.rpm qemu-block-curl-5.2.0-20.1.s390x.rpm qemu-block-dmg-5.2.0-20.1.s390x.rpm qemu-block-gluster-5.2.0-20.1.s390x.rpm qemu-block-iscsi-5.2.0-20.1.s390x.rpm qemu-block-nfs-5.2.0-20.1.s390x.rpm qemu-block-rbd-5.2.0-20.1.s390x.rpm qemu-block-ssh-5.2.0-20.1.s390x.rpm qemu-chardev-baum-5.2.0-20.1.s390x.rpm qemu-chardev-spice-5.2.0-20.1.s390x.rpm qemu-extra-5.2.0-20.1.s390x.rpm qemu-guest-agent-5.2.0-20.1.s390x.rpm qemu-hw-display-qxl-5.2.0-20.1.s390x.rpm qemu-hw-display-virtio-gpu-5.2.0-20.1.s390x.rpm qemu-hw-display-virtio-gpu-pci-5.2.0-20.1.s390x.rpm qemu-hw-display-virtio-vga-5.2.0-20.1.s390x.rpm qemu-hw-s390x-virtio-gpu-ccw-5.2.0-20.1.s390x.rpm qemu-hw-usb-redirect-5.2.0-20.1.s390x.rpm qemu-hw-usb-smartcard-5.2.0-20.1.s390x.rpm qemu-ivshmem-tools-5.2.0-20.1.s390x.rpm qemu-ksm-5.2.0-20.1.s390x.rpm qemu-kvm-5.2.0-20.1.s390x.rpm qemu-lang-5.2.0-20.1.s390x.rpm qemu-ppc-5.2.0-20.1.s390x.rpm qemu-s390x-5.2.0-20.1.s390x.rpm qemu-tools-5.2.0-20.1.s390x.rpm qemu-ui-curses-5.2.0-20.1.s390x.rpm qemu-ui-gtk-5.2.0-20.1.s390x.rpm qemu-ui-opengl-5.2.0-20.1.s390x.rpm qemu-ui-spice-app-5.2.0-20.1.s390x.rpm qemu-ui-spice-core-5.2.0-20.1.s390x.rpm qemu-vhost-user-gpu-5.2.0-20.1.s390x.rpm qemu-x86-5.2.0-20.1.s390x.rpm qemu-5.2.0-20.1.ppc64le.rpm qemu-arm-5.2.0-20.1.ppc64le.rpm qemu-audio-alsa-5.2.0-20.1.ppc64le.rpm qemu-audio-pa-5.2.0-20.1.ppc64le.rpm qemu-audio-spice-5.2.0-20.1.ppc64le.rpm qemu-block-curl-5.2.0-20.1.ppc64le.rpm qemu-block-dmg-5.2.0-20.1.ppc64le.rpm qemu-block-gluster-5.2.0-20.1.ppc64le.rpm qemu-block-iscsi-5.2.0-20.1.ppc64le.rpm qemu-block-nfs-5.2.0-20.1.ppc64le.rpm qemu-block-rbd-5.2.0-20.1.ppc64le.rpm qemu-block-ssh-5.2.0-20.1.ppc64le.rpm qemu-chardev-baum-5.2.0-20.1.ppc64le.rpm qemu-chardev-spice-5.2.0-20.1.ppc64le.rpm qemu-extra-5.2.0-20.1.ppc64le.rpm qemu-guest-agent-5.2.0-20.1.ppc64le.rpm qemu-hw-display-qxl-5.2.0-20.1.ppc64le.rpm qemu-hw-display-virtio-gpu-5.2.0-20.1.ppc64le.rpm qemu-hw-display-virtio-gpu-pci-5.2.0-20.1.ppc64le.rpm qemu-hw-display-virtio-vga-5.2.0-20.1.ppc64le.rpm qemu-hw-s390x-virtio-gpu-ccw-5.2.0-20.1.ppc64le.rpm qemu-hw-usb-redirect-5.2.0-20.1.ppc64le.rpm qemu-hw-usb-smartcard-5.2.0-20.1.ppc64le.rpm qemu-ivshmem-tools-5.2.0-20.1.ppc64le.rpm qemu-ksm-5.2.0-20.1.ppc64le.rpm qemu-lang-5.2.0-20.1.ppc64le.rpm qemu-ppc-5.2.0-20.1.ppc64le.rpm qemu-s390x-5.2.0-20.1.ppc64le.rpm qemu-tools-5.2.0-20.1.ppc64le.rpm qemu-ui-curses-5.2.0-20.1.ppc64le.rpm qemu-ui-gtk-5.2.0-20.1.ppc64le.rpm qemu-ui-opengl-5.2.0-20.1.ppc64le.rpm qemu-ui-spice-app-5.2.0-20.1.ppc64le.rpm qemu-ui-spice-core-5.2.0-20.1.ppc64le.rpm qemu-vhost-user-gpu-5.2.0-20.1.ppc64le.rpm qemu-x86-5.2.0-20.1.ppc64le.rpm qemu-5.2.0-20.1.aarch64.rpm qemu-arm-5.2.0-20.1.aarch64.rpm qemu-audio-alsa-5.2.0-20.1.aarch64.rpm qemu-audio-pa-5.2.0-20.1.aarch64.rpm qemu-audio-spice-5.2.0-20.1.aarch64.rpm qemu-block-curl-5.2.0-20.1.aarch64.rpm qemu-block-dmg-5.2.0-20.1.aarch64.rpm qemu-block-gluster-5.2.0-20.1.aarch64.rpm qemu-block-iscsi-5.2.0-20.1.aarch64.rpm qemu-block-nfs-5.2.0-20.1.aarch64.rpm qemu-block-rbd-5.2.0-20.1.aarch64.rpm qemu-block-ssh-5.2.0-20.1.aarch64.rpm qemu-chardev-baum-5.2.0-20.1.aarch64.rpm qemu-chardev-spice-5.2.0-20.1.aarch64.rpm qemu-extra-5.2.0-20.1.aarch64.rpm qemu-guest-agent-5.2.0-20.1.aarch64.rpm qemu-hw-display-qxl-5.2.0-20.1.aarch64.rpm qemu-hw-display-virtio-gpu-5.2.0-20.1.aarch64.rpm qemu-hw-display-virtio-gpu-pci-5.2.0-20.1.aarch64.rpm qemu-hw-display-virtio-vga-5.2.0-20.1.aarch64.rpm qemu-hw-s390x-virtio-gpu-ccw-5.2.0-20.1.aarch64.rpm qemu-hw-usb-redirect-5.2.0-20.1.aarch64.rpm qemu-hw-usb-smartcard-5.2.0-20.1.aarch64.rpm qemu-ivshmem-tools-5.2.0-20.1.aarch64.rpm qemu-ksm-5.2.0-20.1.aarch64.rpm qemu-lang-5.2.0-20.1.aarch64.rpm qemu-ppc-5.2.0-20.1.aarch64.rpm qemu-s390x-5.2.0-20.1.aarch64.rpm qemu-tools-5.2.0-20.1.aarch64.rpm qemu-ui-curses-5.2.0-20.1.aarch64.rpm qemu-ui-gtk-5.2.0-20.1.aarch64.rpm qemu-ui-opengl-5.2.0-20.1.aarch64.rpm qemu-ui-spice-app-5.2.0-20.1.aarch64.rpm qemu-ui-spice-core-5.2.0-20.1.aarch64.rpm qemu-vhost-user-gpu-5.2.0-20.1.aarch64.rpm qemu-x86-5.2.0-20.1.aarch64.rpm openSUSE-SLE-15.3-2021-2288 Recommended update for linuxrc moderate SUSE Updates openSUSE-SLE 15.3 This update for linuxrc fixes the following issues: - Prevent memory corruption while iterating through network device list. (bsc#1187014) linuxrc-7.0.30.4-3.3.1.src.rpm linuxrc-7.0.30.4-3.3.1.x86_64.rpm linuxrc-7.0.30.4-3.3.1.s390x.rpm linuxrc-7.0.30.4-3.3.1.ppc64le.rpm linuxrc-7.0.30.4-3.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-2273 Recommended update for libzypp, zypper moderate SUSE Updates openSUSE-SLE 15.3 This update for libzypp, zypper fixes the following issues: - Enhance XML output of repo GPG options - Add optional attributes showing the raw values actually present in the '.repo' file. - Link all executables with -PIE (bsc#1186447) - Ship an empty '/etc/zypp/needreboot' per default (jsc#PM-2645) - Add 'Solvable::isBlacklisted' as superset of retracted and ptf packages (bsc#1186503) - Fix segv if 'ZYPP_FULLOG' is set. libzypp-17.27.0-12.1.src.rpm True libzypp-17.27.0-12.1.x86_64.rpm True libzypp-devel-17.27.0-12.1.x86_64.rpm True libzypp-devel-doc-17.27.0-12.1.x86_64.rpm True zypper-1.14.46-13.1.src.rpm True zypper-1.14.46-13.1.x86_64.rpm True zypper-aptitude-1.14.46-13.1.noarch.rpm True zypper-log-1.14.46-13.1.noarch.rpm True zypper-needs-restarting-1.14.46-13.1.noarch.rpm True libzypp-17.27.0-12.1.s390x.rpm True libzypp-devel-17.27.0-12.1.s390x.rpm True libzypp-devel-doc-17.27.0-12.1.s390x.rpm True zypper-1.14.46-13.1.s390x.rpm True libzypp-17.27.0-12.1.ppc64le.rpm True libzypp-devel-17.27.0-12.1.ppc64le.rpm True libzypp-devel-doc-17.27.0-12.1.ppc64le.rpm True zypper-1.14.46-13.1.ppc64le.rpm True libzypp-17.27.0-12.1.aarch64.rpm True libzypp-devel-17.27.0-12.1.aarch64.rpm True libzypp-devel-doc-17.27.0-12.1.aarch64.rpm True zypper-1.14.46-13.1.aarch64.rpm True openSUSE-SLE-15.3-2021-2268 Recommended update for powerpc-utils moderate SUSE Updates openSUSE-SLE 15.3 This update for powerpc-utils fixes the following issues: - When detecting HNV connection list all connections, not only active ones. (bsc#1187148) powerpc-utils-1.3.8-9.3.1.ppc64le.rpm powerpc-utils-1.3.8-9.3.1.src.rpm openSUSE-SLE-15.3-2021-2142 Recommended update for dpdk moderate SUSE Updates openSUSE-SLE 15.3 This update for dpdk fixes the following issue: - dpdk had a lower release number in 15 sp2 than in sp3, which could lead to migration issues. (bsc#1186642) dpdk-19.11.4-6.1.src.rpm dpdk-19.11.4-6.1.x86_64.rpm dpdk-devel-19.11.4-6.1.x86_64.rpm dpdk-doc-19.11.4-6.1.noarch.rpm dpdk-examples-19.11.4-6.1.x86_64.rpm dpdk-kmp-default-19.11.4_k5.3.18_59.5-6.1.x86_64.rpm dpdk-kmp-preempt-19.11.4_k5.3.18_59.5-6.1.x86_64.rpm dpdk-tools-19.11.4-6.1.x86_64.rpm libdpdk-20_0-19.11.4-6.1.x86_64.rpm dpdk-19.11.4-6.1.ppc64le.rpm dpdk-devel-19.11.4-6.1.ppc64le.rpm dpdk-examples-19.11.4-6.1.ppc64le.rpm dpdk-kmp-default-19.11.4_k5.3.18_59.5-6.1.ppc64le.rpm dpdk-tools-19.11.4-6.1.ppc64le.rpm libdpdk-20_0-19.11.4-6.1.ppc64le.rpm dpdk-19.11.4-6.1.aarch64.rpm dpdk-devel-19.11.4-6.1.aarch64.rpm dpdk-examples-19.11.4-6.1.aarch64.rpm dpdk-kmp-default-19.11.4_k5.3.18_59.5-6.1.aarch64.rpm dpdk-kmp-preempt-19.11.4_k5.3.18_59.5-6.1.aarch64.rpm dpdk-tools-19.11.4-6.1.aarch64.rpm libdpdk-20_0-19.11.4-6.1.aarch64.rpm openSUSE-SLE-15.3-2021-2136 Security update for cryptctl important SUSE Updates openSUSE-SLE 15.3 This update for cryptctl fixes the following issues: Update to version 2.4: - CVE-2019-18906: Client side password hashing was equivalent to clear text password storage (bsc#1186226) - First step to use plain text password instead of hashed password. - Move repository into the SUSE github organization - in RPC server, if client comes from localhost, remember its ipv4 localhost address instead of ipv6 address - tell a record to clear expired pending commands upon saving a command result; introduce pending commands RPC test case - avoid hard coding 127.0.0.1 in host ID of alive message test; let system administrator mount and unmount disks by issuing these two commands on key server. cryptctl-2.4-4.5.1.src.rpm cryptctl-2.4-4.5.1.x86_64.rpm cryptctl-2.4-4.5.1.ppc64le.rpm openSUSE-SLE-15.3-2021-2290 Recommended update for postgresql13 moderate SUSE Updates openSUSE-SLE 15.3 This update for postgresql13 fixes the following issue: - reduce requirement of clang and llvm to recommends in "postgresql13-server-devel". libecpg6-13.3-5.13.1.x86_64.rpm libecpg6-32bit-13.3-5.13.1.x86_64.rpm libpq5-13.3-5.13.1.x86_64.rpm postgresql13-13.3-5.13.1.src.rpm postgresql13-13.3-5.13.1.x86_64.rpm postgresql13-contrib-13.3-5.13.1.x86_64.rpm postgresql13-devel-13.3-5.13.1.x86_64.rpm postgresql13-docs-13.3-5.13.1.noarch.rpm postgresql13-llvmjit-13.3-5.13.1.x86_64.rpm postgresql13-plperl-13.3-5.13.1.x86_64.rpm postgresql13-plpython-13.3-5.13.1.x86_64.rpm postgresql13-pltcl-13.3-5.13.1.x86_64.rpm postgresql13-server-13.3-5.13.1.x86_64.rpm postgresql13-server-devel-13.3-5.13.1.x86_64.rpm postgresql13-test-13.3-5.13.1.x86_64.rpm libecpg6-13.3-5.13.1.s390x.rpm libpq5-13.3-5.13.1.s390x.rpm postgresql13-13.3-5.13.1.s390x.rpm postgresql13-contrib-13.3-5.13.1.s390x.rpm postgresql13-devel-13.3-5.13.1.s390x.rpm postgresql13-llvmjit-13.3-5.13.1.s390x.rpm postgresql13-plperl-13.3-5.13.1.s390x.rpm postgresql13-plpython-13.3-5.13.1.s390x.rpm postgresql13-pltcl-13.3-5.13.1.s390x.rpm postgresql13-server-13.3-5.13.1.s390x.rpm postgresql13-server-devel-13.3-5.13.1.s390x.rpm postgresql13-test-13.3-5.13.1.s390x.rpm libecpg6-13.3-5.13.1.ppc64le.rpm libpq5-13.3-5.13.1.ppc64le.rpm postgresql13-13.3-5.13.1.ppc64le.rpm postgresql13-contrib-13.3-5.13.1.ppc64le.rpm postgresql13-devel-13.3-5.13.1.ppc64le.rpm postgresql13-llvmjit-13.3-5.13.1.ppc64le.rpm postgresql13-plperl-13.3-5.13.1.ppc64le.rpm postgresql13-plpython-13.3-5.13.1.ppc64le.rpm postgresql13-pltcl-13.3-5.13.1.ppc64le.rpm postgresql13-server-13.3-5.13.1.ppc64le.rpm postgresql13-server-devel-13.3-5.13.1.ppc64le.rpm postgresql13-test-13.3-5.13.1.ppc64le.rpm libecpg6-13.3-5.13.1.aarch64.rpm libpq5-13.3-5.13.1.aarch64.rpm postgresql13-13.3-5.13.1.aarch64.rpm postgresql13-contrib-13.3-5.13.1.aarch64.rpm postgresql13-devel-13.3-5.13.1.aarch64.rpm postgresql13-llvmjit-13.3-5.13.1.aarch64.rpm postgresql13-plperl-13.3-5.13.1.aarch64.rpm postgresql13-plpython-13.3-5.13.1.aarch64.rpm postgresql13-pltcl-13.3-5.13.1.aarch64.rpm postgresql13-server-13.3-5.13.1.aarch64.rpm postgresql13-server-devel-13.3-5.13.1.aarch64.rpm postgresql13-test-13.3-5.13.1.aarch64.rpm openSUSE-SLE-15.3-2021-2816 Optional update for python-kubernetes low SUSE Updates openSUSE-SLE 15.3 This patch provides the python3-kubernetes package to the following modules: - Container Module for SUSE Linux Enterprise 15 SP2 - Container Module for SUSE Linux Enterprise 15 SP3 python-cachetools-4.1.0-3.2.1.src.rpm python-google-auth-1.21.2-3.4.1.src.rpm python-kubernetes-8.0.1-3.5.1.src.rpm python-oauth2client-4.1.3-3.2.1.src.rpm python-pycrypto-2.6.1-3.2.1.src.rpm python2-google-auth-1.21.2-3.4.1.noarch.rpm python2-kubernetes-8.0.1-3.5.1.noarch.rpm python2-oauth2client-4.1.3-3.2.1.noarch.rpm python2-oauth2client-flask-4.1.3-3.2.1.noarch.rpm python2-oauth2client-gce-4.1.3-3.2.1.noarch.rpm python2-pycrypto-2.6.1-3.2.1.x86_64.rpm python3-cachetools-4.1.0-3.2.1.noarch.rpm python3-google-auth-1.21.2-3.4.1.noarch.rpm python3-kubernetes-8.0.1-3.5.1.noarch.rpm python3-oauth2client-4.1.3-3.2.1.noarch.rpm python3-oauth2client-flask-4.1.3-3.2.1.noarch.rpm python3-oauth2client-gce-4.1.3-3.2.1.noarch.rpm python3-pycrypto-2.6.1-3.2.1.x86_64.rpm python2-pycrypto-2.6.1-3.2.1.s390x.rpm python3-pycrypto-2.6.1-3.2.1.s390x.rpm python2-pycrypto-2.6.1-3.2.1.ppc64le.rpm python3-pycrypto-2.6.1-3.2.1.ppc64le.rpm python2-pycrypto-2.6.1-3.2.1.aarch64.rpm python3-pycrypto-2.6.1-3.2.1.aarch64.rpm openSUSE-SLE-15.3-2021-2154 Recommended update for python-Cython moderate SUSE Updates openSUSE-SLE 15.3 This update for python-Cython fixes the following issue: - python-Cython had a lower release number in 15 sp2 and sp3 than in 15 sp1, which could lead to migration issues. (bsc#1186642 bsc#1187450) python-Cython-0.29.14-102.1.src.rpm python2-Cython-0.29.14-102.1.x86_64.rpm python3-Cython-0.29.14-102.1.x86_64.rpm python2-Cython-0.29.14-102.1.s390x.rpm python3-Cython-0.29.14-102.1.s390x.rpm python2-Cython-0.29.14-102.1.ppc64le.rpm python3-Cython-0.29.14-102.1.ppc64le.rpm python2-Cython-0.29.14-102.1.aarch64.rpm python3-Cython-0.29.14-102.1.aarch64.rpm openSUSE-SLE-15.3-2021-2287 Recommended update for xorg-x11-server moderate SUSE Updates openSUSE-SLE 15.3 This update for xorg-x11-server fixes the following issues: - Fixes an issue where screen rotation was not working (bsc#1182955) xorg-x11-server-1.20.3-22.5.36.1.src.rpm xorg-x11-server-1.20.3-22.5.36.1.x86_64.rpm xorg-x11-server-extra-1.20.3-22.5.36.1.x86_64.rpm xorg-x11-server-sdk-1.20.3-22.5.36.1.x86_64.rpm xorg-x11-server-source-1.20.3-22.5.36.1.x86_64.rpm xorg-x11-server-wayland-1.20.3-22.5.36.1.x86_64.rpm xorg-x11-server-1.20.3-22.5.36.1.s390x.rpm xorg-x11-server-extra-1.20.3-22.5.36.1.s390x.rpm xorg-x11-server-sdk-1.20.3-22.5.36.1.s390x.rpm xorg-x11-server-source-1.20.3-22.5.36.1.s390x.rpm xorg-x11-server-wayland-1.20.3-22.5.36.1.s390x.rpm xorg-x11-server-1.20.3-22.5.36.1.ppc64le.rpm xorg-x11-server-extra-1.20.3-22.5.36.1.ppc64le.rpm xorg-x11-server-sdk-1.20.3-22.5.36.1.ppc64le.rpm xorg-x11-server-source-1.20.3-22.5.36.1.ppc64le.rpm xorg-x11-server-wayland-1.20.3-22.5.36.1.ppc64le.rpm xorg-x11-server-1.20.3-22.5.36.1.aarch64.rpm xorg-x11-server-extra-1.20.3-22.5.36.1.aarch64.rpm xorg-x11-server-sdk-1.20.3-22.5.36.1.aarch64.rpm xorg-x11-server-source-1.20.3-22.5.36.1.aarch64.rpm xorg-x11-server-wayland-1.20.3-22.5.36.1.aarch64.rpm openSUSE-SLE-15.3-2021-2289 Recommended update for gnome-bluetooth moderate SUSE Updates openSUSE-SLE 15.3 This update for gnome-bluetooth fixes the following issues: - Improved headset pairing when using gnome-control-center (bsc#1186277) gnome-bluetooth-3.34.5-4.3.1.src.rpm gnome-bluetooth-3.34.5-4.3.1.x86_64.rpm gnome-bluetooth-devel-3.34.5-4.3.1.x86_64.rpm gnome-bluetooth-lang-3.34.5-4.3.1.noarch.rpm libgnome-bluetooth13-3.34.5-4.3.1.x86_64.rpm typelib-1_0-GnomeBluetooth-1_0-3.34.5-4.3.1.x86_64.rpm gnome-bluetooth-3.34.5-4.3.1.s390x.rpm gnome-bluetooth-devel-3.34.5-4.3.1.s390x.rpm libgnome-bluetooth13-3.34.5-4.3.1.s390x.rpm typelib-1_0-GnomeBluetooth-1_0-3.34.5-4.3.1.s390x.rpm gnome-bluetooth-3.34.5-4.3.1.ppc64le.rpm gnome-bluetooth-devel-3.34.5-4.3.1.ppc64le.rpm libgnome-bluetooth13-3.34.5-4.3.1.ppc64le.rpm typelib-1_0-GnomeBluetooth-1_0-3.34.5-4.3.1.ppc64le.rpm gnome-bluetooth-3.34.5-4.3.1.aarch64.rpm gnome-bluetooth-devel-3.34.5-4.3.1.aarch64.rpm libgnome-bluetooth13-3.34.5-4.3.1.aarch64.rpm typelib-1_0-GnomeBluetooth-1_0-3.34.5-4.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-2435 Security update for crmsh moderate SUSE Updates openSUSE-SLE 15.3 This update for crmsh fixes the following issues: Update to version 4.3.1+20210624.67223df2: - Fix: ocfs2: Skip verifying UUID for ocfs2 device on top of raid or lvm on the join node (bsc#1187553) - Fix: history: use Path.mkdir instead of mkdir command(bsc#1179999, CVE-2020-35459) - Dev: crash_test: Add big warnings to have users' attention to potential failover(jsc#SLE-17979) - Dev: crash_test: rename preflight_check as crash_test(jsc#SLE-17979) - Fix: bootstrap: update sbd watchdog timeout when using diskless SBD with qdevice(bsc#1184465) - Dev: utils: allow configure link-local ipv6 address(bsc#1163460) - Fix: parse: shouldn't allow property setting with an empty value(bsc#1185423) - Fix: help: show help message from argparse(bsc#1175982) crmsh-4.3.1+20210702.4e0ee8fb-5.59.1.noarch.rpm crmsh-4.3.1+20210702.4e0ee8fb-5.59.1.src.rpm crmsh-scripts-4.3.1+20210702.4e0ee8fb-5.59.1.noarch.rpm crmsh-test-4.3.1+20210702.4e0ee8fb-5.59.1.noarch.rpm openSUSE-SLE-15.3-2021-2153 Security update for gupnp important SUSE Updates openSUSE-SLE 15.3 This update for gupnp fixes the following issues: - CVE-2021-33516: Fixed a DNS rebinding, which could trick the browser into triggering actions against local UPnP services (bsc#1186590). gupnp-1.2.2-3.3.1.src.rpm libgupnp-1_2-0-1.2.2-3.3.1.x86_64.rpm libgupnp-1_2-0-32bit-1.2.2-3.3.1.x86_64.rpm libgupnp-devel-1.2.2-3.3.1.x86_64.rpm typelib-1_0-GUPnP-1_0-1.2.2-3.3.1.x86_64.rpm libgupnp-1_2-0-1.2.2-3.3.1.s390x.rpm libgupnp-devel-1.2.2-3.3.1.s390x.rpm typelib-1_0-GUPnP-1_0-1.2.2-3.3.1.s390x.rpm libgupnp-1_2-0-1.2.2-3.3.1.ppc64le.rpm libgupnp-devel-1.2.2-3.3.1.ppc64le.rpm typelib-1_0-GUPnP-1_0-1.2.2-3.3.1.ppc64le.rpm libgupnp-1_2-0-1.2.2-3.3.1.aarch64.rpm libgupnp-devel-1.2.2-3.3.1.aarch64.rpm typelib-1_0-GUPnP-1_0-1.2.2-3.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-2193 Recommended update for tar moderate SUSE Updates openSUSE-SLE 15.3 This update for tar fixes the following issues: - Link '/var/lib/tests/tar/bin/genfile' as Position-Independent Executable (bsc#1184124) tar-1.30-3.9.1.src.rpm tar-1.30-3.9.1.x86_64.rpm tar-backup-scripts-1.30-3.9.1.noarch.rpm tar-doc-1.30-3.9.1.noarch.rpm tar-lang-1.30-3.9.1.noarch.rpm tar-rmt-1.30-3.9.1.x86_64.rpm tar-tests-1.30-3.9.1.x86_64.rpm tar-1.30-3.9.1.s390x.rpm tar-rmt-1.30-3.9.1.s390x.rpm tar-tests-1.30-3.9.1.s390x.rpm tar-1.30-3.9.1.ppc64le.rpm tar-rmt-1.30-3.9.1.ppc64le.rpm tar-tests-1.30-3.9.1.ppc64le.rpm tar-1.30-3.9.1.aarch64.rpm tar-rmt-1.30-3.9.1.aarch64.rpm tar-tests-1.30-3.9.1.aarch64.rpm openSUSE-SLE-15.3-2021-2314 Recommended update for netcontrol moderate SUSE Updates openSUSE-SLE 15.3 This update for netcontrol fixes the following issues: - Fixed an issue when the interface list takes too long with many interfaces. (bsc#1179144) - Install pkgconfig into libdir instead of datadir libnetcontrol-devel-0.3.2-10.5.1.x86_64.rpm libnetcontrol0-0.3.2-10.5.1.x86_64.rpm libnetcontrol0-32bit-0.3.2-10.5.1.x86_64.rpm netcontrol-0.3.2-10.5.1.src.rpm libnetcontrol-devel-0.3.2-10.5.1.s390x.rpm libnetcontrol0-0.3.2-10.5.1.s390x.rpm libnetcontrol-devel-0.3.2-10.5.1.ppc64le.rpm libnetcontrol0-0.3.2-10.5.1.ppc64le.rpm libnetcontrol-devel-0.3.2-10.5.1.aarch64.rpm libnetcontrol0-0.3.2-10.5.1.aarch64.rpm openSUSE-SLE-15.3-2021-2281 Recommended update for rust moderate SUSE Updates openSUSE-SLE 15.3 This update for rust fixes the following issues: - build 32bit arches llvm without debuginfo to avoid oom during build (bsc#1181571) cargo-1.43.1-15.1.x86_64.rpm cargo-doc-1.43.1-15.1.noarch.rpm clippy-1.43.1-15.1.x86_64.rpm rls-1.43.1-15.1.x86_64.rpm rust-1.43.1-15.1.src.rpm rust-1.43.1-15.1.x86_64.rpm rust-analysis-1.43.1-15.1.x86_64.rpm rust-doc-1.43.1-15.1.x86_64.rpm rust-gdb-1.43.1-15.1.x86_64.rpm rust-src-1.43.1-15.1.noarch.rpm rust-std-static-1.43.1-15.1.x86_64.rpm rustfmt-1.43.1-15.1.x86_64.rpm cargo-1.43.1-15.1.s390x.rpm clippy-1.43.1-15.1.s390x.rpm rls-1.43.1-15.1.s390x.rpm rust-1.43.1-15.1.s390x.rpm rust-analysis-1.43.1-15.1.s390x.rpm rust-doc-1.43.1-15.1.s390x.rpm rust-gdb-1.43.1-15.1.s390x.rpm rust-std-static-1.43.1-15.1.s390x.rpm rustfmt-1.43.1-15.1.s390x.rpm cargo-1.43.1-15.1.ppc64le.rpm clippy-1.43.1-15.1.ppc64le.rpm rls-1.43.1-15.1.ppc64le.rpm rust-1.43.1-15.1.ppc64le.rpm rust-analysis-1.43.1-15.1.ppc64le.rpm rust-doc-1.43.1-15.1.ppc64le.rpm rust-gdb-1.43.1-15.1.ppc64le.rpm rust-std-static-1.43.1-15.1.ppc64le.rpm rustfmt-1.43.1-15.1.ppc64le.rpm cargo-1.43.1-15.1.aarch64.rpm clippy-1.43.1-15.1.aarch64.rpm rls-1.43.1-15.1.aarch64.rpm rust-1.43.1-15.1.aarch64.rpm rust-analysis-1.43.1-15.1.aarch64.rpm rust-doc-1.43.1-15.1.aarch64.rpm rust-gdb-1.43.1-15.1.aarch64.rpm rust-std-static-1.43.1-15.1.aarch64.rpm rustfmt-1.43.1-15.1.aarch64.rpm openSUSE-SLE-15.3-2021-2096 Recommended update for python-six moderate SUSE Updates openSUSE-SLE 15.3 This update for python-six fixes the following issue: - python-six had a lower release number in 15 sp2 and sp3 than in 15 sp1, which could lead to migration issues. (bsc#1186642) python-six-1.14.0-10.1.src.rpm python2-six-1.14.0-10.1.noarch.rpm python3-six-1.14.0-10.1.noarch.rpm openSUSE-SLE-15.3-2021-2123 Security update for dovecot23 important SUSE Updates openSUSE-SLE 15.3 This update for dovecot23 fixes the following issues: - CVE-2021-29157: Local attacker can login as any user and access their emails (bsc#1187418) - CVE-2021-33515: Attacker can potentially steal user credentials and mails (bsc#1187419) dovecot23-2.3.11.3-55.1.src.rpm dovecot23-2.3.11.3-55.1.x86_64.rpm dovecot23-backend-mysql-2.3.11.3-55.1.x86_64.rpm dovecot23-backend-pgsql-2.3.11.3-55.1.x86_64.rpm dovecot23-backend-sqlite-2.3.11.3-55.1.x86_64.rpm dovecot23-devel-2.3.11.3-55.1.x86_64.rpm dovecot23-fts-2.3.11.3-55.1.x86_64.rpm dovecot23-fts-lucene-2.3.11.3-55.1.x86_64.rpm dovecot23-fts-solr-2.3.11.3-55.1.x86_64.rpm dovecot23-fts-squat-2.3.11.3-55.1.x86_64.rpm dovecot23-2.3.11.3-55.1.s390x.rpm dovecot23-backend-mysql-2.3.11.3-55.1.s390x.rpm dovecot23-backend-pgsql-2.3.11.3-55.1.s390x.rpm dovecot23-backend-sqlite-2.3.11.3-55.1.s390x.rpm dovecot23-devel-2.3.11.3-55.1.s390x.rpm dovecot23-fts-2.3.11.3-55.1.s390x.rpm dovecot23-fts-lucene-2.3.11.3-55.1.s390x.rpm dovecot23-fts-solr-2.3.11.3-55.1.s390x.rpm dovecot23-fts-squat-2.3.11.3-55.1.s390x.rpm dovecot23-2.3.11.3-55.1.ppc64le.rpm dovecot23-backend-mysql-2.3.11.3-55.1.ppc64le.rpm dovecot23-backend-pgsql-2.3.11.3-55.1.ppc64le.rpm dovecot23-backend-sqlite-2.3.11.3-55.1.ppc64le.rpm dovecot23-devel-2.3.11.3-55.1.ppc64le.rpm dovecot23-fts-2.3.11.3-55.1.ppc64le.rpm dovecot23-fts-lucene-2.3.11.3-55.1.ppc64le.rpm dovecot23-fts-solr-2.3.11.3-55.1.ppc64le.rpm dovecot23-fts-squat-2.3.11.3-55.1.ppc64le.rpm dovecot23-2.3.11.3-55.1.aarch64.rpm dovecot23-backend-mysql-2.3.11.3-55.1.aarch64.rpm dovecot23-backend-pgsql-2.3.11.3-55.1.aarch64.rpm dovecot23-backend-sqlite-2.3.11.3-55.1.aarch64.rpm dovecot23-devel-2.3.11.3-55.1.aarch64.rpm dovecot23-fts-2.3.11.3-55.1.aarch64.rpm dovecot23-fts-lucene-2.3.11.3-55.1.aarch64.rpm dovecot23-fts-solr-2.3.11.3-55.1.aarch64.rpm dovecot23-fts-squat-2.3.11.3-55.1.aarch64.rpm openSUSE-SLE-15.3-2021-2144 Recommended update for redis moderate SUSE Updates openSUSE-SLE 15.3 This update for redis fixes the following issue: - rebuilt against openssl 1.1.1 to support TLS 1.3 configuration. (bsc#1187083) redis-6.0.13-6.2.1.src.rpm redis-6.0.13-6.2.1.x86_64.rpm redis-6.0.13-6.2.1.s390x.rpm redis-6.0.13-6.2.1.ppc64le.rpm redis-6.0.13-6.2.1.aarch64.rpm openSUSE-SLE-15.3-2021-2191 Recommended update for patterns-microos moderate SUSE Updates openSUSE-SLE 15.3 This update for patterns-microos provides the following fix: - Add zypper-migration-plugin to the default pattern. (bsc#1186791) suse-build-key-12.0-8.16.1.noarch.rpm suse-build-key-12.0-8.16.1.src.rpm openSUSE-SLE-15.3-2021-2234 Recommended update for ntp moderate SUSE Updates openSUSE-SLE 15.3 This update for ntp fixes the following issues: - Fix a typo in '%post' section. (bsc#1186431) ntp-4.2.8p15-4.19.1.src.rpm ntp-4.2.8p15-4.19.1.x86_64.rpm ntp-doc-4.2.8p15-4.19.1.x86_64.rpm ntp-4.2.8p15-4.19.1.s390x.rpm ntp-doc-4.2.8p15-4.19.1.s390x.rpm ntp-4.2.8p15-4.19.1.ppc64le.rpm ntp-doc-4.2.8p15-4.19.1.ppc64le.rpm ntp-4.2.8p15-4.19.1.aarch64.rpm ntp-doc-4.2.8p15-4.19.1.aarch64.rpm openSUSE-SLE-15.3-2021-2150 Recommended update for x3270 moderate SUSE Updates openSUSE-SLE 15.3 This update for x3270 fixes the following issue: - x3270 had a lower release number in 15 sp3 than in 15 sp2, which could lead to migration issues. (bsc#1186642) x3270-3.6-6.1.src.rpm x3270-3.6-6.1.x86_64.rpm x3270-3.6-6.1.s390x.rpm x3270-3.6-6.1.ppc64le.rpm x3270-3.6-6.1.aarch64.rpm openSUSE-SLE-15.3-2021-2682 Security update for rpm important SUSE Updates openSUSE-SLE 15.3 This update for rpm fixes the following issues: - Changed default package verification level to 'none' to be compatible to rpm-4.14.1 - Made illegal obsoletes a warning - Fixed a potential access of freed mem in ndb's glue code (bsc#1179416) - Added support for enforcing signature policy and payload verification step to transactions (jsc#SLE-17817) - Added :humansi and :hmaniec query formatters for human readable output - Added query selectors for whatobsoletes and whatconflicts - Added support for sorting caret higher than base version - rpm does no longer require the signature header to be in a contiguous region when signing (bsc#1181805) Security fixes: - CVE-2021-3421: A flaw was found in the RPM package in the read functionality. This flaw allows an attacker who can convince a victim to install a seemingly verifiable package or compromise an RPM repository, to cause RPM database corruption. The highest threat from this vulnerability is to data integrity (bsc#1183543) - CVE-2021-20271: A flaw was found in RPM's signature check functionality when reading a package file. This flaw allows an attacker who can convince a victim to install a seemingly verifiable package, whose signature header was modified, to cause RPM database corruption and execute code. The highest threat from this vulnerability is to data integrity, confidentiality, and system availability (bsc#1183545) - CVE-2021-20266: A flaw was found in RPM's hdrblobInit() in lib/header.c. This flaw allows an attacker who can modify the rpmdb to cause an out-of-bounds read. The highest threat from this vulnerability is to system availability. python-rpm-4.14.3-37.2.src.rpm True python2-rpm-4.14.3-37.2.x86_64.rpm True python3-rpm-4.14.3-37.2.x86_64.rpm True rpm-32bit-4.14.3-37.2.x86_64.rpm True rpm-4.14.3-37.2.src.rpm True rpm-4.14.3-37.2.x86_64.rpm True rpm-build-4.14.3-37.2.x86_64.rpm True rpm-devel-4.14.3-37.2.x86_64.rpm True rpm-ndb-32bit-4.14.3-37.2.x86_64.rpm True rpm-ndb-4.14.3-37.2.src.rpm True rpm-ndb-4.14.3-37.2.x86_64.rpm True python2-rpm-4.14.3-37.2.s390x.rpm True python3-rpm-4.14.3-37.2.s390x.rpm True rpm-4.14.3-37.2.s390x.rpm True rpm-build-4.14.3-37.2.s390x.rpm True rpm-devel-4.14.3-37.2.s390x.rpm True rpm-ndb-4.14.3-37.2.s390x.rpm True python2-rpm-4.14.3-37.2.ppc64le.rpm True python3-rpm-4.14.3-37.2.ppc64le.rpm True rpm-4.14.3-37.2.ppc64le.rpm True rpm-build-4.14.3-37.2.ppc64le.rpm True rpm-devel-4.14.3-37.2.ppc64le.rpm True rpm-ndb-4.14.3-37.2.ppc64le.rpm True python2-rpm-4.14.3-37.2.aarch64.rpm True python3-rpm-4.14.3-37.2.aarch64.rpm True rpm-4.14.3-37.2.aarch64.rpm True rpm-build-4.14.3-37.2.aarch64.rpm True rpm-devel-4.14.3-37.2.aarch64.rpm True rpm-ndb-4.14.3-37.2.aarch64.rpm True openSUSE-SLE-15.3-2021-2630 Recommended update for crash moderate SUSE Updates openSUSE-SLE 15.3 This update for crash fixes the following issue: - Use the value of 'xen_start_info' to determine whether the kernel is running in Xen ParaVirtual OPerationS (PVOPS) mode. (bsc#1187634) - Fix backtrace command when analyzing dump. (bsc#1185209) crash-7.2.9-23.5.3.src.rpm crash-7.2.9-23.5.3.x86_64.rpm crash-devel-7.2.9-23.5.3.x86_64.rpm crash-doc-7.2.9-23.5.3.x86_64.rpm crash-eppic-7.2.9-23.5.3.x86_64.rpm crash-gcore-7.2.9-23.5.3.x86_64.rpm crash-kmp-default-7.2.9_k5.3.18_59.16-23.5.3.x86_64.rpm crash-kmp-preempt-7.2.9_k5.3.18_59.16-23.5.3.x86_64.rpm crash-7.2.9-23.5.3.s390x.rpm crash-devel-7.2.9-23.5.3.s390x.rpm crash-doc-7.2.9-23.5.3.s390x.rpm crash-eppic-7.2.9-23.5.3.s390x.rpm crash-kmp-default-7.2.9_k5.3.18_59.16-23.5.3.s390x.rpm crash-7.2.9-23.5.3.ppc64le.rpm crash-devel-7.2.9-23.5.3.ppc64le.rpm crash-doc-7.2.9-23.5.3.ppc64le.rpm crash-eppic-7.2.9-23.5.3.ppc64le.rpm crash-kmp-default-7.2.9_k5.3.18_59.16-23.5.3.ppc64le.rpm crash-7.2.9-23.5.3.aarch64.rpm crash-devel-7.2.9-23.5.3.aarch64.rpm crash-doc-7.2.9-23.5.3.aarch64.rpm crash-eppic-7.2.9-23.5.3.aarch64.rpm crash-kmp-64kb-7.2.9_k5.3.18_59.16-23.5.3.aarch64.rpm crash-kmp-default-7.2.9_k5.3.18_59.16-23.5.3.aarch64.rpm crash-kmp-preempt-7.2.9_k5.3.18_59.16-23.5.3.aarch64.rpm openSUSE-SLE-15.3-2021-2205 Recommended update for openldap2 important SUSE Updates openSUSE-SLE 15.3 This update for openldap2 fixes the following issues: - Resolve issues in the idle / connection 'TTL' timeout implementation in OpenLDAP. (bsc#1187210) libldap-2_4-2-2.4.46-9.56.1.x86_64.rpm libldap-2_4-2-32bit-2.4.46-9.56.1.x86_64.rpm libldap-data-2.4.46-9.56.1.noarch.rpm openldap2-2.4.46-9.56.1.src.rpm openldap2-2.4.46-9.56.1.x86_64.rpm openldap2-back-meta-2.4.46-9.56.1.x86_64.rpm openldap2-back-perl-2.4.46-9.56.1.x86_64.rpm openldap2-back-sock-2.4.46-9.56.1.x86_64.rpm openldap2-back-sql-2.4.46-9.56.1.x86_64.rpm openldap2-client-2.4.46-9.56.1.x86_64.rpm openldap2-contrib-2.4.46-9.56.1.x86_64.rpm openldap2-devel-2.4.46-9.56.1.x86_64.rpm openldap2-devel-32bit-2.4.46-9.56.1.x86_64.rpm openldap2-devel-static-2.4.46-9.56.1.x86_64.rpm openldap2-doc-2.4.46-9.56.1.noarch.rpm openldap2-ppolicy-check-password-1.2-9.56.1.x86_64.rpm libldap-2_4-2-2.4.46-9.56.1.s390x.rpm openldap2-2.4.46-9.56.1.s390x.rpm openldap2-back-meta-2.4.46-9.56.1.s390x.rpm openldap2-back-perl-2.4.46-9.56.1.s390x.rpm openldap2-back-sock-2.4.46-9.56.1.s390x.rpm openldap2-back-sql-2.4.46-9.56.1.s390x.rpm openldap2-client-2.4.46-9.56.1.s390x.rpm openldap2-contrib-2.4.46-9.56.1.s390x.rpm openldap2-devel-2.4.46-9.56.1.s390x.rpm openldap2-devel-static-2.4.46-9.56.1.s390x.rpm openldap2-ppolicy-check-password-1.2-9.56.1.s390x.rpm libldap-2_4-2-2.4.46-9.56.1.ppc64le.rpm openldap2-2.4.46-9.56.1.ppc64le.rpm openldap2-back-meta-2.4.46-9.56.1.ppc64le.rpm openldap2-back-perl-2.4.46-9.56.1.ppc64le.rpm openldap2-back-sock-2.4.46-9.56.1.ppc64le.rpm openldap2-back-sql-2.4.46-9.56.1.ppc64le.rpm openldap2-client-2.4.46-9.56.1.ppc64le.rpm openldap2-contrib-2.4.46-9.56.1.ppc64le.rpm openldap2-devel-2.4.46-9.56.1.ppc64le.rpm openldap2-devel-static-2.4.46-9.56.1.ppc64le.rpm openldap2-ppolicy-check-password-1.2-9.56.1.ppc64le.rpm libldap-2_4-2-2.4.46-9.56.1.aarch64.rpm openldap2-2.4.46-9.56.1.aarch64.rpm openldap2-back-meta-2.4.46-9.56.1.aarch64.rpm openldap2-back-perl-2.4.46-9.56.1.aarch64.rpm openldap2-back-sock-2.4.46-9.56.1.aarch64.rpm openldap2-back-sql-2.4.46-9.56.1.aarch64.rpm openldap2-client-2.4.46-9.56.1.aarch64.rpm openldap2-contrib-2.4.46-9.56.1.aarch64.rpm openldap2-devel-2.4.46-9.56.1.aarch64.rpm openldap2-devel-static-2.4.46-9.56.1.aarch64.rpm openldap2-ppolicy-check-password-1.2-9.56.1.aarch64.rpm openSUSE-SLE-15.3-2021-2188 Recommended update for nginx important SUSE Updates openSUSE-SLE 15.3 This update for nginx fixes the following issue: - Fix race condition between 'logrotate' and 'nginx' causing mass file reopening. (bsc#1183876) nginx-1.19.8-3.6.1.src.rpm nginx-1.19.8-3.6.1.x86_64.rpm nginx-source-1.19.8-3.6.1.noarch.rpm vim-plugin-nginx-1.19.8-3.6.1.noarch.rpm nginx-1.19.8-3.6.1.s390x.rpm nginx-1.19.8-3.6.1.ppc64le.rpm nginx-1.19.8-3.6.1.aarch64.rpm openSUSE-SLE-15.3-2021-2160 Recommended update for vsftpd moderate SUSE Updates openSUSE-SLE 15.3 This update for vsftpd fixes the following issues: - Added an option ssl_tlsv1_3 that allows disabling TLS 1.3. (bsc#1187188) vsftpd-3.0.3-12.3.1.src.rpm vsftpd-3.0.3-12.3.1.x86_64.rpm vsftpd-3.0.3-12.3.1.s390x.rpm vsftpd-3.0.3-12.3.1.ppc64le.rpm vsftpd-3.0.3-12.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-2282 Recommended update for gnuplot low SUSE Updates openSUSE-SLE 15.3 This update for gnuplot fixes the following issue: - Hardening: link as position independent executable (PIE). (bsc#1184123) gnuplot-5.2.2-3.9.2.src.rpm gnuplot-5.2.2-3.9.2.x86_64.rpm gnuplot-doc-5.2.2-3.9.2.noarch.rpm gnuplot-5.2.2-3.9.2.s390x.rpm gnuplot-5.2.2-3.9.2.ppc64le.rpm gnuplot-5.2.2-3.9.2.aarch64.rpm openSUSE-SLE-15.3-2021-2580 Recommended update for pdsh moderate SUSE Updates openSUSE-SLE 15.3 This update for pdsh fixes the following issue: - pdsh had a lower release number in 15 sp3 than in 15 sp2, which could lead to migration issues. (bsc#1186642) pdsh-2.34-32.1.src.rpm pdsh-2.34-32.1.x86_64.rpm pdsh-dshgroup-2.34-32.1.x86_64.rpm pdsh-genders-2.34-32.1.x86_64.rpm pdsh-machines-2.34-32.1.x86_64.rpm pdsh-netgroup-2.34-32.1.x86_64.rpm pdsh-slurm-2.34-32.1.x86_64.rpm pdsh-2.34-32.1.s390x.rpm pdsh-dshgroup-2.34-32.1.s390x.rpm pdsh-genders-2.34-32.1.s390x.rpm pdsh-machines-2.34-32.1.s390x.rpm pdsh-netgroup-2.34-32.1.s390x.rpm pdsh-slurm-2.34-32.1.s390x.rpm pdsh-2.34-32.1.ppc64le.rpm pdsh-dshgroup-2.34-32.1.ppc64le.rpm pdsh-genders-2.34-32.1.ppc64le.rpm pdsh-machines-2.34-32.1.ppc64le.rpm pdsh-netgroup-2.34-32.1.ppc64le.rpm pdsh-slurm-2.34-32.1.ppc64le.rpm pdsh-2.34-32.1.aarch64.rpm pdsh-dshgroup-2.34-32.1.aarch64.rpm pdsh-genders-2.34-32.1.aarch64.rpm pdsh-machines-2.34-32.1.aarch64.rpm pdsh-netgroup-2.34-32.1.aarch64.rpm pdsh-slurm-2.34-32.1.aarch64.rpm openSUSE-SLE-15.3-2021-2184 Security update for the Linux Kernel important SUSE Updates openSUSE-SLE 15.3 The SUSE Linux Enterprise 15 SP3 kernel was updated to receive various security and bugfixes. The following security bugs were fixed: - CVE-2020-26558: Bluetooth LE and BR/EDR secure pairing in Bluetooth Core Specification 2.1 may permit a nearby man-in-the-middle attacker to identify the Passkey used during pairing by reflection of the public key and the authentication evidence of the initiating device, potentially permitting this attacker to complete authenticated pairing with the responding device using the correct Passkey for the pairing session. (bnc#1179610 bnc#1186463) - CVE-2021-0129: Improper access control in BlueZ may have allowed an authenticated user to potentially enable information disclosure via adjacent access (bnc#1186463). - CVE-2020-36385: Fixed a use-after-free in drivers/infiniband/core/ucma.c which could be triggered if the ctx is reached via the ctx_list in some ucma_migrate_id situations where ucma_close is called (bnc#1187050). - CVE-2020-36386: Fixed a slab out-of-bounds read in hci_extended_inquiry_result_evt (bnc#1187038). The following non-security bugs were fixed: - ACPICA: Clean up context mutex during object deletion (git-fixes). - ALSA: hda/cirrus: Set Initial DMIC volume to -26 dB (git-fixes). - ALSA: hda: Fix for mute key LED for HP Pavilion 15-CK0xx (git-fixes). - ALSA: hda: Fix for mute key LED for HP Pavilion 15-CK0xx (git-fixes). - ALSA: hda/realtek: fix mute/micmute LEDs and speaker for HP EliteBook x360 1040 G8 (git-fixes). - ALSA: hda/realtek: fix mute/micmute LEDs and speaker for HP Elite Dragonfly G2 (git-fixes). - ALSA: hda/realtek: fix mute/micmute LEDs for HP EliteBook 840 Aero G8 (git-fixes). - ALSA: hda/realtek: fix mute/micmute LEDs for HP ZBook Power G8 (git-fixes). - ALSA: hda/realtek: headphone and mic do not work on an Acer laptop (git-fixes). - ALSA: hda: update the power_state during the direct-complete (git-fixes). - ALSA: seq: Fix race of snd_seq_timer_open() (git-fixes). - ALSA: timer: Fix master timer notification (git-fixes). - arm64: Add missing ISB after invalidating TLB in __primary_switch (git-fixes). - arm64: avoid -Woverride-init warning (git-fixes). - arm64: kasan: fix page_alloc tagging with DEBUG_VIRTUAL (git-fixes). - arm64: kdump: update ppos when reading elfcorehdr (git-fixes). - arm64: kexec_file: fix memory leakage in create_dtb() when fdt_open_into() fails (git-fixes). - arm64: link with -z norelro for LLD or aarch64-elf (git-fixes). - arm64: link with -z norelro regardless of CONFIG_RELOCATABLE (git-fixes). - arm64/mm: Fix pfn_valid() for ZONE_DEVICE based memory (git-fixes). - arm64: ptrace: Fix seccomp of traced syscall -1 (NO_SYSCALL) (git-fixes). - arm64: ptrace: Use NO_SYSCALL instead of -1 in syscall_trace_enter() (git-fixes). - ARM64: vdso32: Install vdso32 from vdso_install (git-fixes). - arm64: vdso32: make vdso32 install conditional (git-fixes). - arm: mm: use __pfn_to_section() to get mem_section (git-fixes). - ASoC: amd: fix for pcm_read() error (git-fixes). - ASoC: cs43130: handle errors in cs43130_probe() properly (git-fixes). - ASoC: Intel: soc-acpi: remove TGL RVP mixed SoundWire/TDM config (git-fixes). - ASoC: max98088: fix ni clock divider calculation (git-fixes). - ath6kl: return error code in ath6kl_wmi_set_roam_lrssi_cmd() (git-fixes). - bcache: avoid oversized read request in cache missing code path (bsc#1187357, bsc#1185570, bsc#1184631). - bcache: Convert to DEFINE_SHOW_ATTRIBUTE (bsc#1187357). - bcache: do not pass BIOSET_NEED_BVECS for the 'bio_set' embedded in 'cache_set' (bsc#1187357). - bcache: fix a regression of code compiling failure in debug.c (bsc#1187357). - bcache: inherit the optimal I/O size (bsc#1187357). - bcache: reduce redundant code in bch_cached_dev_run() (bsc#1187357). - bcache: remove bcache device self-defined readahead (bsc#1187357, bsc#1185570, bsc#1184631). - bcache: remove PTR_CACHE (bsc#1187357). - bcache: Use 64-bit arithmetic instead of 32-bit (bsc#1187357). - bcache: use NULL instead of using plain integer as pointer (bsc#1187357). - blk-mq: Swap two calls in blk_mq_exit_queue() (git-fixes). - blk-settings: align max_sectors on "logical_block_size" boundary (bsc#1185195). - block/genhd: use atomic_t for disk_event->block (bsc#1185497). - block: return the correct bvec when checking for gaps (bsc#1187143). - block: return the correct bvec when checking for gaps (bsc#1187144). - Bluetooth: fix the erroneous flush_work() order (git-fixes). - brcmfmac: Add clm_blob firmware files to modinfo (bsc#1186677). - brcmfmac: properly check for bus register errors (git-fixes). - btrfs: open device without device_list_mutex (bsc#1176771). - bus: ti-sysc: Fix flakey idling of uarts and stop using swsup_sidle_act (git-fixes). - cdrom: gdrom: deallocate struct gdrom_unit fields in remove_gdrom (git-fixes). - cdrom: gdrom: initialize global variable at init time (git-fixes). - ceph: do not clobber i_snap_caps on non-I_NEW inode (bsc#1186501). - ceph: fix inode leak on getattr error in __fh_to_dentry (bsc#1186501). - ceph: fix up error handling with snapdirs (bsc#1186501). - ceph: only check pool permissions for regular files (bsc#1186501). - char: hpet: add checks after calling ioremap (git-fixes). - chelsio/chtls: unlock on error in chtls_pt_recvmsg() (jsc#SLE-15129). - cxgb4: avoid accessing registers when clearing filters (git-fixes). - cxgb4: avoid link re-train during TC-MQPRIO configuration (jsc#SLE-8389). - cxgb4/ch_ktls: Clear resources when pf4 device is removed (jsc#SLE-15129). - cxgb4: fix regression with HASH tc prio value update (jsc#SLE-15131). - devlink: Correct VIRTUAL port to not have phys_port attributes (jsc#SLE-15172). - dmaengine: idxd: add missing dsa driver unregister (git-fixes). - dmaengine: idxd: Use cpu_feature_enabled() (git-fixes). - dmaengine: qcom_hidma: comment platform_driver_register call (git-fixes). - drm/amd/amdgpu: fix a potential deadlock in gpu reset (git-fixes). - drm/amd/amdgpu: fix refcount leak (git-fixes). - drm/amd/display: Disconnect non-DP with no EDID (git-fixes). - drm/amdgpu: Do not query CE and UE errors (git-fixes). - drm/amdgpu: Fix a use-after-free (git-fixes). - drm/amdgpu/jpeg2.0: add cancel_delayed_work_sync before power gate (git-fixes). - drm/amdgpu/jpeg2.5: add cancel_delayed_work_sync before power gate (git-fixes). - drm/amdgpu/jpeg3: add cancel_delayed_work_sync before power gate (git-fixes). - drm/amdgpu: make sure we unpin the UVD BO (git-fixes). - drm/amdgpu: stop touching sched.ready in the backend (git-fixes). - drm/amdgpu/vcn1: add cancel_delayed_work_sync before power gate (git-fixes). - drm/amdgpu/vcn2.0: add cancel_delayed_work_sync before power gate (git-fixes). - drm/amdgpu/vcn2.5: add cancel_delayed_work_sync before power gate (git-fixes). - drm/amdgpu/vcn3: add cancel_delayed_work_sync before power gate (git-fixes). - drm/amdkfd: correct sienna_cichlid SDMA RLC register offset error (git-fixes). - drm/i915/selftests: Fix return value check in live_breadcrumbs_smoketest() (git-fixes). - drm/mcde: Fix off by 10^3 in calculation (git-fixes). - drm/meson: fix shutdown crash when component not probed (git-fixes). - drm/msm/a6xx: fix incorrectly set uavflagprd_inv field for A650 (git-fixes). - drm/msm/a6xx: update/fix CP_PROTECT initialization (git-fixes). - efi: Allow EFI_MEMORY_XP and EFI_MEMORY_RO both to be cleared (git-fixes). - efi: cper: fix snprintf() use in cper_dimm_err_location() (git-fixes). - efi/libstub: prevent read overflow in find_file_option() (git-fixes). - Enable CONFIG_PCI_PF_STUB for Nvidia Ampere vGPU support (jsc#SLE-17882 jsc#ECO-3691) - fs/nfs: Use fatal_signal_pending instead of signal_pending (git-fixes). - gpio: cadence: Add missing MODULE_DEVICE_TABLE (git-fixes). - gpio: wcd934x: Fix shift-out-of-bounds error (git-fixes). - gve: Add NULL pointer checks when freeing irqs (git-fixes). - gve: Correct SKB queue index validation (git-fixes). - gve: Update mgmt_msix_idx if num_ntfy changes (git-fixes). - gve: Upgrade memory barrier in poll routine (git-fixes). - HID: i2c-hid: fix format string mismatch (git-fixes). - HID: i2c-hid: Skip ELAN power-on command after reset (git-fixes). - HID: magicmouse: fix NULL-deref on disconnect (git-fixes). - HID: multitouch: require Finger field to mark Win8 reports as MT (git-fixes). - HID: pidff: fix error return code in hid_pidff_init() (git-fixes). - hwmon: (dell-smm-hwmon) Fix index values (git-fixes). - i2c: i801: Do not generate an interrupt on bus reset (git-fixes). - i2c: imx: fix reference leak when pm_runtime_get_sync fails (git-fixes). - i2c: qcom-geni: Suspend and resume the bus during SYSTEM_SLEEP_PM ops (git-fixes). - i2c: s3c2410: fix possible NULL pointer deref on read message after write (git-fixes). - i2c: sh_mobile: Use new clock calculation formulas for RZ/G2E (git-fixes). - ice: Allow all LLDP packets from PF to Tx (jsc#SLE-7926). - ice: Fix allowing VF to request more/less queues via virtchnl (jsc#SLE-12878). - ice: Fix VFR issues for AVF drivers that expect ATQLEN cleared (git-fixes). - ice: handle the VF VSI rebuild failure (jsc#SLE-12878). - iio: adc: ad7124: Fix missbalanced regulator enable / disable on error (git-fixes). - iio: adc: ad7124: Fix potential overflow due to non sequential channel numbers (git-fixes). - iio: adc: ad7768-1: Fix too small buffer passed to iio_push_to_buffers_with_timestamp() (git-fixes). - iio: adc: ad7793: Add missing error code in ad7793_setup() (git-fixes). - iio: gyro: fxas21002c: balance runtime power in error path (git-fixes). - iommu/amd: Keep track of amd_iommu_irq_remap state (https://bugzilla.kernel.org/show_bug.cgi?id=212133). - iommu: Fix a boundary issue to avoid performance drop (bsc#1187344). - iommu/virtio: Add missing MODULE_DEVICE_TABLE (bsc#1187345). - iommu/vt-d: Remove WO permissions on second-level paging entries (bsc#1187346). - iommu/vt-d: Report right snoop capability when using FL for IOVA (bsc#1187347). - iommu/vt-d: Use user privilege for RID2PASID translation (bsc#1187348). - isdn: mISDN: correctly handle ph_info allocation failure in hfcsusb_ph_info (git-fixes). - isdn: mISDNinfineon: check/cleanup ioremap failure correctly in setup_io (git-fixes). - ixgbe: fix large MTU request from VF (git-fixes). - kABI workaround for rtw88 (git-fixes). - kABI workaround for struct lis3lv02d change (git-fixes). - lib: crc64: fix kernel-doc warning (bsc#1187357). - libertas: register sysfs groups properly (git-fixes). - locking/mutex: clear MUTEX_FLAGS if wait_list is empty due to signal (git-fixes). - md: bcache: avoid -Wempty-body warnings (bsc#1187357). - md: bcache: Trivial typo fixes in the file journal.c (bsc#1187357). - md: Fix missing unused status line of /proc/mdstat (git-fixes). - media: dvb: Add check on sp8870_readreg return (git-fixes). - media: dvb: Add check on sp8870_readreg return (git-fixes). - media: gspca: mt9m111: Check write_bridge for timeout (git-fixes). - media: gspca: mt9m111: Check write_bridge for timeout (git-fixes). - media: gspca: properly check for errors in po1030_probe() (git-fixes). - media: gspca: properly check for errors in po1030_probe() (git-fixes). - mei: request autosuspend after sending rx flow control (git-fixes). - misc/uss720: fix memory leak in uss720_probe (git-fixes). - mmc: sdhci: Clear unused bounce buffer at DMA mmap error path (bsc#1187039). - net: bnx2: Fix error return code in bnx2_init_board() (git-fixes). - netfilter: nf_tables: missing error reporting for not selected expressions (bsc#1176447). - netfilter: nft_set_pipapo_avx2: Add irq_fpu_usable() check, fallback to non-AVX2 version (bsc#1176447). - net: fix iteration for sctp transport seq_files (git-fixes). - net: hns3: fix incorrect resp_msg issue (jsc#SLE-14777). - net: hns3: Limiting the scope of vector_ring_chain variable (git-fixes). - net: hns3: put off calling register_netdev() until client initialize complete (bsc#1154353). - net/mlx4: Fix EEPROM dump support (git-fixes). - net/mlx5: DR, Create multi-destination flow table with level less than 64 (jsc#SLE-8464). - net/mlx5e: Fix error path of updating netdev queues (jsc#SLE-15172). - net/mlx5e: Fix incompatible casting (jsc#SLE-15172). - net/mlx5e: Fix multipath lag activation (git-fixes). - net/mlx5e: Fix null deref accessing lag dev (jsc#SLE-15172). - net/mlx5e: Fix nullptr in add_vlan_push_action() (git-fixes). - net/mlx5e: reset XPS on error flow if netdev isn't registered yet (jsc#SLE-15172). - net/mlx5: Set reformat action when needed for termination rules (jsc#SLE-15172). - net/mlx5: Set term table as an unmanaged flow table (jsc#SLE-15172). - net/sched: act_ct: Offload connections with commit action (jsc#SLE-15172). - net/sched: fq_pie: fix OOB access in the traffic path (jsc#SLE-15172). - net/sched: fq_pie: re-factor fix for fq_pie endless loop (jsc#SLE-15172). - net: usb: fix memory leak in smsc75xx_bind (git-fixes). - net: zero-initialize tc skb extension on allocation (bsc#1176447). - nfc: fix NULL ptr dereference in llcp_sock_getname() after failed connect (git-fixes). - NFC: SUSE specific brutal fix for runtime PM (bsc#1185589). - NFS: Deal correctly with attribute generation counter overflow (git-fixes). - NFS: Do not corrupt the value of pg_bytes_written in nfs_do_recoalesce() (git-fixes). - NFS: Do not discard pNFS layout segments that are marked for return (git-fixes). - NFS: Do not gratuitously clear the inode cache when lookup failed (git-fixes). - NFS: Do not revalidate the directory permissions on a lookup failure (git-fixes). - nfsd: register pernet ops last, unregister first (git-fixes). - NFSD: Repair misuse of sv_lock in 5.10.16-rt30 (git-fixes). - NFS: fix an incorrect limit in filelayout_decode_layout() (git-fixes). - NFS: Fix an Oopsable condition in __nfs_pageio_add_request() (git-fixes). - NFSv4.2: Always flush out writes in nfs42_proc_fallocate() (git-fixes). - NFSv42: Copy offload should update the file size when appropriate (git-fixes). - NFSv4.2 fix handling of sr_eof in SEEK's reply (git-fixes). - NFSv4.2: fix return value of _nfs4_get_security_label() (git-fixes). - NFSv4: Do not discard segments marked for return in _pnfs_return_layout() (git-fixes). - NFSv4: Fix a NULL pointer dereference in pnfs_mark_matching_lsegs_return() (git-fixes). - NFSv4: Fix v4.0/v4.1 SEEK_DATA return -ENOTSUPP when set NFS_V4_2 config (git-fixes). - nvme: add new line after variable declatation (bsc#1184259, bsc#1178612, bsc#1186155). - nvme: document nvme controller states (git-fixes). - nvme: do not check nvme_req flags for new req (bsc#1184259, bsc#1178612, bsc#1186155). - nvme: fix deadlock in disconnect during scan_work and/or ana_work (git-fixes). - nvme: mark nvme_setup_passsthru() inline (bsc#1184259, bsc#1178612, bsc#1186155). - nvme-multipath: fix double initialization of ANA state (bsc#1178612, bsc#1184259, bsc#1186155). - nvme-pci: align io queue count with allocted nvme_queue in (git-fixes). - nvme-pci: avoid race between nvme_reap_pending_cqes() and nvme_poll() (git-fixes). - nvme-pci: dma read memory barrier for completions (git-fixes). - nvme-pci: fix "slimmer CQ head update" (git-fixes). - nvme-pci: make sure write/poll_queues less or equal then cpu (git-fixes). - nvme-pci: remove last_sq_tail (git-fixes). - nvme-pci: Remove tag from process cq (git-fixes). - nvme-pci: Remove two-pass completions (git-fixes). - nvme-pci: remove volatile cqes (git-fixes). - nvme-pci: Simplify nvme_poll_irqdisable (git-fixes). - nvme-pci: slimmer CQ head update (git-fixes). - nvme-pci: use simple suspend when a HMB is enabled (git-fixes). - nvme: reduce checks for zero command effects (bsc#1184259, bsc#1178612, bsc#1186155). - nvme: rename nvme_init_identify() (bsc#1184259, bsc#1178612, bsc#1186155). - nvme: split init identify into helper (bsc#1184259, bsc#1178612, bsc#1186155). - nvmet: use new ana_log_size instead the old one (bsc#1178612, bsc#1184259, bsc#1186155). - nvme: use NVME_CTRL_CMIC_ANA macro (bsc#1184259, bsc#1178612, bsc#1186155). - nxp-i2c: restore includes for kABI (bsc#1185589). - nxp-nci: add NXP1002 id (bsc#1185589). - PCI/LINK: Remove bandwidth notification (bsc#1183712). - pid: take a reference when initializing `cad_pid` (bsc#1152489). - platform/x86: hp_accel: Avoid invoking _INI to speed up resume (git-fixes). - platform/x86: hp-wireless: add AMD's hardware id to the supported list (git-fixes). - platform/x86: intel_punit_ipc: Append MODULE_DEVICE_TABLE for ACPI (git-fixes). - platform/x86: touchscreen_dmi: Add info for the Mediacom Winpad 7.0 W700 tablet (git-fixes). - PM: sleep: Add pm_debug_messages kernel command line option (bsc#1186752). - pNFS/flexfiles: fix incorrect size check in decode_nfs_fh() (git-fixes). - pNFS/NFSv4: Fix a layout segment leak in pnfs_layout_process() (git-fixes). - powerpc/32: Fix boot failure with CONFIG_STACKPROTECTOR (jsc#SLE-13847 git-fixes). - powerpc/kprobes: Fix validation of prefixed instructions across page boundary (jsc#SLE-13847 git-fixes). - regulator: core: resolve supply for boot-on/always-on regulators (git-fixes). - regulator: max77620: Use device_set_of_node_from_dev() (git-fixes). - rtw88: 8822c: add LC calibration for RTL8822C (git-fixes). - scsi: aacraid: Fix an oops in error handling (bsc#1187072). - scsi: aacraid: Remove erroneous fallthrough annotation (bsc#1186950). - scsi: aacraid: Use memdup_user() as a cleanup (bsc#1186951). - scsi: acornscsi: Fix an error handling path in acornscsi_probe() (bsc#1186952). - scsi: be2iscsi: Fix a theoretical leak in beiscsi_create_eqs() (bsc#1186953). - scsi: be2iscsi: Revert "Fix a theoretical leak in beiscsi_create_eqs()" (bsc#1187067). - scsi: bfa: Fix error return in bfad_pci_init() (bsc#1186954). - scsi: bnx2fc: Fix Kconfig warning & CNIC build errors (bsc#1186955). - scsi: bnx2i: Requires MMU (bsc#1186956). - scsi: csiostor: Fix wrong return value in csio_hw_prep_fw() (bsc#1186957). - scsi: cumana_2: Fix different dev_id between request_irq() and free_irq() (bsc#1186958). - scsi: cxgb3i: Fix some leaks in init_act_open() (bsc#1186959). - scsi: cxgb4i: Fix TLS dependency (bsc#1186960). - scsi: eesox: Fix different dev_id between request_irq() and free_irq() (bsc#1186961). - scsi: fnic: Fix error return code in fnic_probe() (bsc#1186962). - scsi: hisi_sas: Fix IRQ checks (bsc#1186963). - scsi: hisi_sas: Remove preemptible() (bsc#1186964). - scsi: jazz_esp: Add IRQ check (bsc#1186965). - scsi: libfc: Fix enum-conversion warning (bsc#1186966). - scsi: libsas: Fix error path in sas_notify_lldd_dev_found() (bsc#1186967). - scsi: libsas: Reset num_scatter if libata marks qc as NODATA (bsc#1187068). - scsi: libsas: Set data_dir as DMA_NONE if libata marks qc as NODATA (bsc#1186968). - scsi: lpfc: Fix ancient double free (bsc#1186969). - scsi: lpfc: Fix failure to transmit ABTS on FC link (git-fixes). - scsi: megaraid_sas: Check user-provided offsets (bsc#1186970). - scsi: megaraid_sas: Clear affinity hint (bsc#1186971). - scsi: megaraid_sas: Do not call disable_irq from process IRQ poll (bsc#1186972). - scsi: megaraid_sas: Fix MEGASAS_IOC_FIRMWARE regression (bsc#1186973). - scsi: megaraid_sas: Remove undefined ENABLE_IRQ_POLL macro (bsc#1186974). - scsi: mesh: Fix panic after host or bus reset (bsc#1186976). - scsi: mpt3sas: Do not use GFP_KERNEL in atomic context (bsc#1186977). - scsi: mpt3sas: Fix error return code of mpt3sas_base_attach() (bsc#1186978). - scsi: mpt3sas: Fix ioctl timeout (bsc#1186979). - scsi: myrs: Fix a double free in myrs_cleanup() (bsc#1186980). - scsi: pm80xx: Fix error return in pm8001_pci_probe() (bsc#1186981). - scsi: powertec: Fix different dev_id between request_irq() and free_irq() (bsc#1186982). - scsi: qedi: Check for buffer overflow in qedi_set_path() (bsc#1186983). - scsi: qedi: Fix error return code of qedi_alloc_global_queues() (bsc#1186984). - scsi: qedi: Fix missing destroy_workqueue() on error in __qedi_probe (bsc#1186985). - scsi: qla2xxx: Prevent PRLI in target mode (git-fixes). - scsi: qla4xxx: Fix an error handling path in 'qla4xxx_get_host_stats()' (bsc#1186986). - scsi: qla4xxx: Remove in_interrupt() (bsc#1186987). - scsi: scsi_debug: Add check for sdebug_max_queue during module init (bsc#1186988). - scsi: scsi_dh_alua: Retry RTPG on a different path after failure (bsc#1174978 bsc#1185701). - scsi: sd: Fix Opal support (bsc#1186989). - scsi: smartpqi: Add additional logging for LUN resets (bsc#1186472). - scsi: smartpqi: Add host level stream detection enable (bsc#1186472). - scsi: smartpqi: Add new PCI IDs (bsc#1186472). - scsi: smartpqi: Add phy ID support for the physical drives (bsc#1186472). - scsi: smartpqi: Add stream detection (bsc#1186472). - scsi: smartpqi: Add support for BMIC sense feature cmd and feature bits (bsc#1186472). - scsi: smartpqi: Add support for long firmware version (bsc#1186472). - scsi: smartpqi: Add support for new product ids (bsc#1186472). - scsi: smartpqi: Add support for RAID1 writes (bsc#1186472). - scsi: smartpqi: Add support for RAID5 and RAID6 writes (bsc#1186472). - scsi: smartpqi: Add support for wwid (bsc#1186472). - scsi: smartpqi: Align code with oob driver (bsc#1186472). - scsi: smartpqi: Convert snprintf() to scnprintf() (bsc#1186472). - scsi: smartpqi: Correct request leakage during reset operations (bsc#1186472). - scsi: smartpqi: Correct system hangs when resuming from hibernation (bsc#1186472). - scsi: smartpqi: Disable WRITE SAME for HBA NVMe disks (bsc#1186472). - scsi: smartpqi: Fix blocks_per_row static checker issue (bsc#1186472). - scsi: smartpqi: Fix device pointer variable reference static checker issue (bsc#1186472). - scsi: smartpqi: Fix driver synchronization issues (bsc#1186472). - scsi: smartpqi: Refactor aio submission code (bsc#1186472). - scsi: smartpqi: Refactor scatterlist code (bsc#1186472). - scsi: smartpqi: Remove timeouts from internal cmds (bsc#1186472). - scsi: smartpqi: Remove unused functions (bsc#1186472). - scsi: smartpqi: Synchronize device resets with mutex (bsc#1186472). - scsi: smartpqi: Update device scan operations (bsc#1186472). - scsi: smartpqi: Update enclosure identifier in sysfs (bsc#1186472). - scsi: smartpqi: Update event handler (bsc#1186472). - scsi: smartpqi: Update OFA management (bsc#1186472). - scsi: smartpqi: Update RAID bypass handling (bsc#1186472). - scsi: smartpqi: Update SAS initiator_port_protocols and target_port_protocols (bsc#1186472). - scsi: smartpqi: Update soft reset management for OFA (bsc#1186472). - scsi: smartpqi: Update suspend/resume and shutdown (bsc#1186472). - scsi: smartpqi: Update version to 2.1.8-045 (bsc#1186472). - scsi: smartpqi: Use host-wide tag space (bsc#1186472). - scsi: sni_53c710: Add IRQ check (bsc#1186990). - scsi: sun3x_esp: Add IRQ check (bsc#1186991). - scsi: ufs: Add quirk to disallow reset of interrupt aggregation (bsc#1186992). - scsi: ufs: Add quirk to enable host controller without hce (bsc#1186993). - scsi: ufs: Add quirk to fix abnormal ocs fatal error (bsc#1186994). - scsi: ufs: Add quirk to fix mishandling utrlclr/utmrlclr (bsc#1186995). - scsi: ufs: core: Narrow down fast path in system suspend path (bsc#1186996). - scsi: ufs: Do not update urgent bkops level when toggling auto bkops (bsc#1186997). - scsi: ufs: Fix race between shutdown and runtime resume flow (bsc#1186998). - scsi: ufshcd: use an enum for quirks (bsc#1186999). - scsi: ufs: Introduce UFSHCD_QUIRK_PRDT_BYTE_GRAN quirk (bsc#1187000). - scsi: ufs: Make ufshcd_print_trs() consider UFSHCD_QUIRK_PRDT_BYTE_GRAN (bsc#1187069). - scsi: ufs: Properly release resources if a task is aborted successfully (bsc#1187001). - scsi: ufs-qcom: Fix scheduling while atomic issue (bsc#1187002). - scsi: ufs: ufshcd-pltfrm: Fix deferred probing (bsc#1187003). - serial: 8250_pci: handle FL_NOIRQ board flag (git-fixes). - serial: core: fix suspicious security_locked_down() call (git-fixes). - serial: max310x: unregister uart driver in case of failure and abort (git-fixes). - serial: rp2: use 'request_firmware' instead of 'request_firmware_nowait' (git-fixes). - serial: sh-sci: Fix off-by-one error in FIFO threshold register setting (git-fixes). - serial: tegra: Fix a mask operation that is always true (git-fixes). - staging: emxx_udc: fix loop in _nbu2ss_nuke() (git-fixes). - staging: iio: cdc: ad7746: avoid overwrite of num_channels (git-fixes). - staging: rtl8723bs: Fix uninitialized variables (git-fixes). - sunrpc: fix refcount leak for rpc auth modules (git-fixes). - SUNRPC: More fixes for backlog congestion (bsc#1185428). - SUNRPC: Move fault injection call sites (git-fixes). - SUNRPC: Set memalloc_nofs_save() for sync tasks (git-fixes). - svcrdma: disable timeouts on rdma backchannel (git-fixes). - thermal/drivers/intel: Initialize RW trip to THERMAL_TEMP_INVALID (git-fixes). - thunderbolt: dma_port: Fix NVM read buffer bounds and offset issue (git-fixes). - thunderbolt: usb4: Fix NVM read buffer bounds and offset issue (git-fixes). - tpm: fix error return code in tpm2_get_cc_attrs_tbl() (git-fixes). - ttyprintk: Add TTY hangup callback (git-fixes). - UCSI fixup of array of PDOs (git-fixes). - usb: chipidea: imx: Fix Battery Charger 1.2 CDP detection (git-fixes). - usb: core: reduce power-on-good delay time of root hub (git-fixes). - usb: dwc3: gadget: Enable suspend events (git-fixes). - usb: fix various gadgets null ptr deref on 10gbps cabling (git-fixes). - USB: f_ncm: ncm_bitrate (speed) is unsigned (git-fixes). - usb: gadget: udc: renesas_usb3: Fix a race in usb3_start_pipen() (git-fixes). - usb: musb: fix MUSB_QUIRK_B_DISCONNECT_99 handling (git-fixes). - usb: pd: Set PD_T_SINK_WAIT_CAP to 310ms (git-fixes). - USB: serial: cp210x: fix alternate function for CP2102N QFN20 (git-fixes). - USB: serial: ftdi_sio: add IDs for IDS GmbH Products (git-fixes). - USB: serial: option: add Telit LE910-S1 compositions 0x7010, 0x7011 (git-fixes). - USB: serial: pl2303: add device id for ADLINK ND-6530 GC (git-fixes). - USB: serial: quatech2: fix control-request directions (git-fixes). - USB: serial: ti_usb_3410_5052: add startech.com device id (git-fixes). - USB: trancevibrator: fix control-request direction (git-fixes). - usb: typec: intel_pmc_mux: Put fwnode in error case during ->probe() (git-fixes). - usb: typec: mux: Fix copy-paste mistake in typec_mux_match (git-fixes). - usb: typec: mux: Fix matching with typec_altmode_desc (git-fixes). - usb: typec: tcpm: Use LE to CPU conversion when accessing msg->header (git-fixes). - usb: typec: ucsi: Clear PPM capability data in ucsi_init() error path (git-fixes). - usb: typec: ucsi: Retrieve all the PDOs instead of just the first 4 (git-fixes). - usb: typec: wcove: Use LE to CPU conversion when accessing msg->header (git-fixes). - USB: usbfs: Do not WARN about excessively large memory allocations (git-fixes). - vfio/pci: Fix error return code in vfio_ecap_init() (git-fixes). - vfio/pci: zap_vma_ptes() needs MMU (git-fixes). - vfio/platform: fix module_put call in error flow (git-fixes). - vmlinux.lds.h: Avoid orphan section with !SMP (git-fixes). - vsock/vmci: log once the failed queue pair allocation (git-fixes). - wireguard: allowedips: initialize list head in selftest (git-fixes). - wireguard: do not use -O3 (git-fixes). - wireguard: peer: allocate in kmem_cache (git-fixes). - wireguard: peer: put frequently used members above cache lines (git-fixes). - wireguard: queueing: get rid of per-peer ring buffers (git-fixes). - wireguard: selftests: make sure rp_filter is disabled on vethc (git-fixes). - wireguard: selftests: remove old conntrack kconfig value (git-fixes). - wireguard: use synchronize_net rather than synchronize_rcu (git-fixes). - x86/apic: Mark _all_ legacy interrupts when IO/APIC is missing (bsc#1152489). - x86/boot/64: Explicitly map boot_params and command line (jsc#SLE-14337). - x86/boot/compressed/64: Add 32-bit boot #VC handler (jsc#SLE-14337). - x86/boot/compressed/64: Add CPUID sanity check to 32-bit boot-path (jsc#SLE-14337). - x86/boot/compressed/64: Check SEV encryption in 64-bit boot-path (jsc#SLE-14337). - x86/boot/compressed/64: Check SEV encryption in the 32-bit boot-path (jsc#SLE-14337). - x86/boot/compressed/64: Cleanup exception handling before booting kernel (jsc#SLE-14337). - x86/boot/compressed/64: Introduce sev_status (jsc#SLE-14337). - x86/boot/compressed/64: Reload CS in startup_32 (jsc#SLE-14337). - x86/boot/compressed/64: Sanity-check CPUID results in the early #VC handler (jsc#SLE-14337). - x86/boot/compressed/64: Setup IDT in startup_32 boot path (jsc#SLE-14337). - x86/cpufeatures: Force disable X86_FEATURE_ENQCMD and remove update_pasid() (bsc#1178134). - x86/cpu: Initialize MSR_TSC_AUX if RDTSCP *or* RDPID is supported (bsc#1152489). - x86/fault: Do not send SIGSEGV twice on SEGV_PKUERR (bsc#1152489). - x86: fix seq_file iteration for pat.c (git-fixes). - x86/fpu: Prevent state corruption in __fpu__restore_sig() (bsc#1178134). - x86/head/64: Check SEV encryption before switching to kernel page-table (jsc#SLE-14337). - x86/head/64: Disable stack protection for head$(BITS).o (jsc#SLE-14337). - x86/ioremap: Map efi_mem_reserve() memory as encrypted for SEV (bsc#1186885). - x86/sev: Check SME/SEV support in CPUID first (jsc#SLE-14337). - x86/sev: Do not require Hypervisor CPUID bit for SEV guests (jsc#SLE-14337). - x86/sev-es: Do not return NULL from sev_es_get_ghcb() (bsc#1187349). - x86/sev-es: Do not support MMIO to/from encrypted memory (jsc#SLE-14337). - x86/sev-es: Forward page-faults which happen during emulation (bsc#1187350). - x86/sev-es: Replace open-coded hlt-loops with sev_es_terminate() (jsc#SLE-14337). - x86/sev-es: Use __put_user()/__get_user() for data accesses (bsc#1187351). - xfrm: policy: Read seqcount outside of rcu-read side in xfrm_policy_lookup_bytype (bsc#1185675). - xprtrdma: Avoid Receive Queue wrapping (git-fixes). - xprtrdma: rpcrdma_mr_pop() already does list_del_init() (git-fixes). cluster-md-kmp-default-5.3.18-59.10.1.x86_64.rpm True cluster-md-kmp-preempt-5.3.18-59.10.1.x86_64.rpm True dlm-kmp-default-5.3.18-59.10.1.x86_64.rpm True dlm-kmp-preempt-5.3.18-59.10.1.x86_64.rpm True gfs2-kmp-default-5.3.18-59.10.1.x86_64.rpm True gfs2-kmp-preempt-5.3.18-59.10.1.x86_64.rpm True kernel-debug-5.3.18-59.10.1.nosrc.rpm True kernel-debug-5.3.18-59.10.1.x86_64.rpm True kernel-debug-devel-5.3.18-59.10.1.x86_64.rpm True kernel-debug-livepatch-devel-5.3.18-59.10.1.x86_64.rpm True kernel-default-5.3.18-59.10.1.nosrc.rpm True kernel-default-5.3.18-59.10.1.x86_64.rpm True kernel-default-base-5.3.18-59.10.1.18.4.2.src.rpm True kernel-default-base-5.3.18-59.10.1.18.4.2.x86_64.rpm True kernel-default-base-rebuild-5.3.18-59.10.1.18.4.2.x86_64.rpm True kernel-default-devel-5.3.18-59.10.1.x86_64.rpm True kernel-default-extra-5.3.18-59.10.1.x86_64.rpm True kernel-default-livepatch-5.3.18-59.10.1.x86_64.rpm True kernel-default-livepatch-devel-5.3.18-59.10.1.x86_64.rpm True kernel-default-optional-5.3.18-59.10.1.x86_64.rpm True kernel-devel-5.3.18-59.10.1.noarch.rpm True kernel-docs-5.3.18-59.10.1.noarch.rpm True kernel-docs-5.3.18-59.10.1.nosrc.rpm True kernel-docs-html-5.3.18-59.10.1.noarch.rpm True kernel-kvmsmall-5.3.18-59.10.1.nosrc.rpm True kernel-kvmsmall-5.3.18-59.10.1.x86_64.rpm True kernel-kvmsmall-devel-5.3.18-59.10.1.x86_64.rpm True kernel-kvmsmall-livepatch-devel-5.3.18-59.10.1.x86_64.rpm True kernel-macros-5.3.18-59.10.1.noarch.rpm True kernel-obs-build-5.3.18-59.10.1.src.rpm True kernel-obs-build-5.3.18-59.10.1.x86_64.rpm True kernel-obs-qa-5.3.18-59.10.1.src.rpm True kernel-obs-qa-5.3.18-59.10.1.x86_64.rpm True kernel-preempt-5.3.18-59.10.1.nosrc.rpm True kernel-preempt-5.3.18-59.10.1.x86_64.rpm True kernel-preempt-devel-5.3.18-59.10.1.x86_64.rpm True kernel-preempt-extra-5.3.18-59.10.1.x86_64.rpm True kernel-preempt-livepatch-devel-5.3.18-59.10.1.x86_64.rpm True kernel-preempt-optional-5.3.18-59.10.1.x86_64.rpm True kernel-source-5.3.18-59.10.1.noarch.rpm True kernel-source-5.3.18-59.10.1.src.rpm True kernel-source-vanilla-5.3.18-59.10.1.noarch.rpm True kernel-syms-5.3.18-59.10.1.src.rpm True kernel-syms-5.3.18-59.10.1.x86_64.rpm True kselftests-kmp-default-5.3.18-59.10.1.x86_64.rpm True kselftests-kmp-preempt-5.3.18-59.10.1.x86_64.rpm True ocfs2-kmp-default-5.3.18-59.10.1.x86_64.rpm True ocfs2-kmp-preempt-5.3.18-59.10.1.x86_64.rpm True reiserfs-kmp-default-5.3.18-59.10.1.x86_64.rpm True reiserfs-kmp-preempt-5.3.18-59.10.1.x86_64.rpm True cluster-md-kmp-default-5.3.18-59.10.1.s390x.rpm True dlm-kmp-default-5.3.18-59.10.1.s390x.rpm True gfs2-kmp-default-5.3.18-59.10.1.s390x.rpm True kernel-default-5.3.18-59.10.1.s390x.rpm True kernel-default-base-5.3.18-59.10.1.18.4.2.s390x.rpm True kernel-default-base-rebuild-5.3.18-59.10.1.18.4.2.s390x.rpm True kernel-default-devel-5.3.18-59.10.1.s390x.rpm True kernel-default-extra-5.3.18-59.10.1.s390x.rpm True kernel-default-livepatch-5.3.18-59.10.1.s390x.rpm True kernel-default-livepatch-devel-5.3.18-59.10.1.s390x.rpm True kernel-default-optional-5.3.18-59.10.1.s390x.rpm True kernel-obs-build-5.3.18-59.10.1.s390x.rpm True kernel-obs-qa-5.3.18-59.10.1.s390x.rpm True kernel-syms-5.3.18-59.10.1.s390x.rpm True kernel-zfcpdump-5.3.18-59.10.1.nosrc.rpm True kernel-zfcpdump-5.3.18-59.10.1.s390x.rpm True kselftests-kmp-default-5.3.18-59.10.1.s390x.rpm True ocfs2-kmp-default-5.3.18-59.10.1.s390x.rpm True reiserfs-kmp-default-5.3.18-59.10.1.s390x.rpm True cluster-md-kmp-default-5.3.18-59.10.1.ppc64le.rpm True dlm-kmp-default-5.3.18-59.10.1.ppc64le.rpm True gfs2-kmp-default-5.3.18-59.10.1.ppc64le.rpm True kernel-debug-5.3.18-59.10.1.ppc64le.rpm True kernel-debug-devel-5.3.18-59.10.1.ppc64le.rpm True kernel-debug-livepatch-devel-5.3.18-59.10.1.ppc64le.rpm True kernel-default-5.3.18-59.10.1.ppc64le.rpm True kernel-default-base-5.3.18-59.10.1.18.4.2.ppc64le.rpm True kernel-default-base-rebuild-5.3.18-59.10.1.18.4.2.ppc64le.rpm True kernel-default-devel-5.3.18-59.10.1.ppc64le.rpm True kernel-default-extra-5.3.18-59.10.1.ppc64le.rpm True kernel-default-livepatch-5.3.18-59.10.1.ppc64le.rpm True kernel-default-livepatch-devel-5.3.18-59.10.1.ppc64le.rpm True kernel-default-optional-5.3.18-59.10.1.ppc64le.rpm True kernel-kvmsmall-5.3.18-59.10.1.ppc64le.rpm True kernel-kvmsmall-devel-5.3.18-59.10.1.ppc64le.rpm True kernel-kvmsmall-livepatch-devel-5.3.18-59.10.1.ppc64le.rpm True kernel-obs-build-5.3.18-59.10.1.ppc64le.rpm True kernel-obs-qa-5.3.18-59.10.1.ppc64le.rpm True kernel-syms-5.3.18-59.10.1.ppc64le.rpm True kselftests-kmp-default-5.3.18-59.10.1.ppc64le.rpm True ocfs2-kmp-default-5.3.18-59.10.1.ppc64le.rpm True reiserfs-kmp-default-5.3.18-59.10.1.ppc64le.rpm True cluster-md-kmp-64kb-5.3.18-59.10.1.aarch64.rpm True cluster-md-kmp-default-5.3.18-59.10.1.aarch64.rpm True cluster-md-kmp-preempt-5.3.18-59.10.1.aarch64.rpm True dlm-kmp-64kb-5.3.18-59.10.1.aarch64.rpm True dlm-kmp-default-5.3.18-59.10.1.aarch64.rpm True dlm-kmp-preempt-5.3.18-59.10.1.aarch64.rpm True gfs2-kmp-64kb-5.3.18-59.10.1.aarch64.rpm True gfs2-kmp-default-5.3.18-59.10.1.aarch64.rpm True gfs2-kmp-preempt-5.3.18-59.10.1.aarch64.rpm True kernel-64kb-5.3.18-59.10.1.aarch64.rpm True kernel-64kb-5.3.18-59.10.1.nosrc.rpm True kernel-64kb-devel-5.3.18-59.10.1.aarch64.rpm True kernel-64kb-extra-5.3.18-59.10.1.aarch64.rpm True kernel-64kb-livepatch-devel-5.3.18-59.10.1.aarch64.rpm True kernel-64kb-optional-5.3.18-59.10.1.aarch64.rpm True kernel-default-5.3.18-59.10.1.aarch64.rpm True kernel-default-base-5.3.18-59.10.1.18.4.2.aarch64.rpm True kernel-default-base-rebuild-5.3.18-59.10.1.18.4.2.aarch64.rpm True kernel-default-devel-5.3.18-59.10.1.aarch64.rpm True kernel-default-extra-5.3.18-59.10.1.aarch64.rpm True kernel-default-livepatch-5.3.18-59.10.1.aarch64.rpm True kernel-default-livepatch-devel-5.3.18-59.10.1.aarch64.rpm True kernel-default-optional-5.3.18-59.10.1.aarch64.rpm True kernel-obs-build-5.3.18-59.10.1.aarch64.rpm True kernel-obs-qa-5.3.18-59.10.1.aarch64.rpm True kernel-preempt-5.3.18-59.10.1.aarch64.rpm True kernel-preempt-devel-5.3.18-59.10.1.aarch64.rpm True kernel-preempt-extra-5.3.18-59.10.1.aarch64.rpm True kernel-preempt-livepatch-devel-5.3.18-59.10.1.aarch64.rpm True kernel-preempt-optional-5.3.18-59.10.1.aarch64.rpm True kernel-syms-5.3.18-59.10.1.aarch64.rpm True kselftests-kmp-64kb-5.3.18-59.10.1.aarch64.rpm True kselftests-kmp-default-5.3.18-59.10.1.aarch64.rpm True kselftests-kmp-preempt-5.3.18-59.10.1.aarch64.rpm True ocfs2-kmp-64kb-5.3.18-59.10.1.aarch64.rpm True ocfs2-kmp-default-5.3.18-59.10.1.aarch64.rpm True ocfs2-kmp-preempt-5.3.18-59.10.1.aarch64.rpm True reiserfs-kmp-64kb-5.3.18-59.10.1.aarch64.rpm True reiserfs-kmp-default-5.3.18-59.10.1.aarch64.rpm True reiserfs-kmp-preempt-5.3.18-59.10.1.aarch64.rpm True openSUSE-SLE-15.3-2021-2202 Security update for the Linux Kernel important SUSE Updates openSUSE-SLE 15.3 The SUSE Linux Enterprise 15 SP3 azure kernel was updated to receive various security and bugfixes. The following security bugs were fixed: - CVE-2020-26558: Bluetooth LE and BR/EDR secure pairing in Bluetooth Core Specification 2.1 may permit a nearby man-in-the-middle attacker to identify the Passkey used during pairing by reflection of the public key and the authentication evidence of the initiating device, potentially permitting this attacker to complete authenticated pairing with the responding device using the correct Passkey for the pairing session. (bnc#1179610 bnc#1186463) - CVE-2021-0129: Improper access control in BlueZ may have allowed an authenticated user to potentially enable information disclosure via adjacent access (bnc#1186463). - CVE-2020-36385: Fixed a use-after-free in drivers/infiniband/core/ucma.c which could be triggered if the ctx is reached via the ctx_list in some ucma_migrate_id situations where ucma_close is called (bnc#1187050). - CVE-2020-36386: Fixed a slab out-of-bounds read in hci_extended_inquiry_result_evt (bnc#1187038). The following non-security bugs were fixed: - ACPICA: Clean up context mutex during object deletion (git-fixes). - ALSA: hda/cirrus: Set Initial DMIC volume to -26 dB (git-fixes). - ALSA: hda/realtek: fix mute/micmute LEDs and speaker for HP Elite Dragonfly G2 (git-fixes). - ALSA: hda/realtek: fix mute/micmute LEDs and speaker for HP EliteBook x360 1040 G8 (git-fixes). - ALSA: hda/realtek: fix mute/micmute LEDs for HP EliteBook 840 Aero G8 (git-fixes). - ALSA: hda/realtek: fix mute/micmute LEDs for HP ZBook Power G8 (git-fixes). - ALSA: hda/realtek: headphone and mic do not work on an Acer laptop (git-fixes). - ALSA: hda: Fix for mute key LED for HP Pavilion 15-CK0xx (git-fixes). - ALSA: hda: Fix for mute key LED for HP Pavilion 15-CK0xx (git-fixes). - ALSA: hda: update the power_state during the direct-complete (git-fixes). - ALSA: seq: Fix race of snd_seq_timer_open() (git-fixes). - ALSA: timer: Fix master timer notification (git-fixes). - ASoC: Intel: soc-acpi: remove TGL RVP mixed SoundWire/TDM config (git-fixes). - ASoC: amd: fix for pcm_read() error (git-fixes). - ASoC: cs43130: handle errors in cs43130_probe() properly (git-fixes). - ASoC: max98088: fix ni clock divider calculation (git-fixes). - Bluetooth: fix the erroneous flush_work() order (git-fixes). - Enable CONFIG_PCI_PF_STUB for Nvidia Ampere vGPU support (jsc#SLE-17882 jsc#ECO-3691) - HID: i2c-hid: Skip ELAN power-on command after reset (git-fixes). - HID: i2c-hid: fix format string mismatch (git-fixes). - HID: magicmouse: fix NULL-deref on disconnect (git-fixes). - HID: multitouch: require Finger field to mark Win8 reports as MT (git-fixes). - HID: pidff: fix error return code in hid_pidff_init() (git-fixes). - NFC: SUSE specific brutal fix for runtime PM (bsc#1185589). - NFS: Deal correctly with attribute generation counter overflow (git-fixes). - NFS: Do not corrupt the value of pg_bytes_written in nfs_do_recoalesce() (git-fixes). - NFS: Do not discard pNFS layout segments that are marked for return (git-fixes). - NFS: Do not gratuitously clear the inode cache when lookup failed (git-fixes). - NFS: Do not revalidate the directory permissions on a lookup failure (git-fixes). - NFS: Fix an Oopsable condition in __nfs_pageio_add_request() (git-fixes). - NFS: fix an incorrect limit in filelayout_decode_layout() (git-fixes). - NFSD: Repair misuse of sv_lock in 5.10.16-rt30 (git-fixes). - NFSv4.2 fix handling of sr_eof in SEEK's reply (git-fixes). - NFSv4.2: Always flush out writes in nfs42_proc_fallocate() (git-fixes). - NFSv4.2: fix return value of _nfs4_get_security_label() (git-fixes). - NFSv42: Copy offload should update the file size when appropriate (git-fixes). - NFSv4: Do not discard segments marked for return in _pnfs_return_layout() (git-fixes). - NFSv4: Fix a NULL pointer dereference in pnfs_mark_matching_lsegs_return() (git-fixes). - NFSv4: Fix v4.0/v4.1 SEEK_DATA return -ENOTSUPP when set NFS_V4_2 config (git-fixes). - PCI/LINK: Remove bandwidth notification (bsc#1183712). - PM: sleep: Add pm_debug_messages kernel command line option (bsc#1186752). - SUNRPC: Move fault injection call sites (git-fixes). - SUNRPC: Set memalloc_nofs_save() for sync tasks (git-fixes). - UCSI fixup of array of PDOs (git-fixes). - USB: f_ncm: ncm_bitrate (speed) is unsigned (git-fixes). - USB: serial: cp210x: fix alternate function for CP2102N QFN20 (git-fixes). - USB: serial: ftdi_sio: add IDs for IDS GmbH Products (git-fixes). - USB: serial: option: add Telit LE910-S1 compositions 0x7010, 0x7011 (git-fixes). - USB: serial: pl2303: add device id for ADLINK ND-6530 GC (git-fixes). - USB: serial: quatech2: fix control-request directions (git-fixes). - USB: serial: ti_usb_3410_5052: add startech.com device id (git-fixes). - USB: usbfs: Do not WARN about excessively large memory allocations (git-fixes). - ath6kl: return error code in ath6kl_wmi_set_roam_lrssi_cmd() (git-fixes). - bcache: Convert to DEFINE_SHOW_ATTRIBUTE (bsc#1187357). - bcache: Use 64-bit arithmetic instead of 32-bit (bsc#1187357). - bcache: avoid oversized read request in cache missing code path (bsc#1187357, bsc#1185570, bsc#1184631). - bcache: do not pass BIOSET_NEED_BVECS for the 'bio_set' embedded in 'cache_set' (bsc#1187357). - bcache: fix a regression of code compiling failure in debug.c (bsc#1187357). - bcache: inherit the optimal I/O size (bsc#1187357). - bcache: reduce redundant code in bch_cached_dev_run() (bsc#1187357). - bcache: remove PTR_CACHE (bsc#1187357). - bcache: remove bcache device self-defined readahead (bsc#1187357, bsc#1185570, bsc#1184631). - bcache: use NULL instead of using plain integer as pointer (bsc#1187357). - blk-settings: align max_sectors on "logical_block_size" boundary (bsc#1185195). - block: return the correct bvec when checking for gaps (bsc#1187143). - block: return the correct bvec when checking for gaps (bsc#1187144). - brcmfmac: Add clm_blob firmware files to modinfo (bsc#1186677). - brcmfmac: properly check for bus register errors (git-fixes). - btrfs: open device without device_list_mutex (bsc#1176771). - bus: ti-sysc: Fix flakey idling of uarts and stop using swsup_sidle_act (git-fixes). - char: hpet: add checks after calling ioremap (git-fixes). - chelsio/chtls: unlock on error in chtls_pt_recvmsg() (jsc#SLE-15129). - cxgb4/ch_ktls: Clear resources when pf4 device is removed (jsc#SLE-15129). - cxgb4: avoid accessing registers when clearing filters (git-fixes). - cxgb4: avoid link re-train during TC-MQPRIO configuration (jsc#SLE-8389). - cxgb4: fix regression with HASH tc prio value update (jsc#SLE-15131). - devlink: Correct VIRTUAL port to not have phys_port attributes (jsc#SLE-15172). - dmaengine: idxd: Use cpu_feature_enabled() (git-fixes). - dmaengine: idxd: add missing dsa driver unregister (git-fixes). - dmaengine: qcom_hidma: comment platform_driver_register call (git-fixes). - drm/amd/amdgpu: fix a potential deadlock in gpu reset (git-fixes). - drm/amd/amdgpu: fix refcount leak (git-fixes). - drm/amd/display: Disconnect non-DP with no EDID (git-fixes). - drm/amd/display: Disconnect non-DP with no EDID (git-fixes). - drm/amdgpu/jpeg2.0: add cancel_delayed_work_sync before power gate (git-fixes). - drm/amdgpu/jpeg2.5: add cancel_delayed_work_sync before power gate (git-fixes). - drm/amdgpu/jpeg3: add cancel_delayed_work_sync before power gate (git-fixes). - drm/amdgpu/vcn1: add cancel_delayed_work_sync before power gate (git-fixes). - drm/amdgpu/vcn2.0: add cancel_delayed_work_sync before power gate (git-fixes). - drm/amdgpu/vcn2.5: add cancel_delayed_work_sync before power gate (git-fixes). - drm/amdgpu/vcn3: add cancel_delayed_work_sync before power gate (git-fixes). - drm/amdgpu: Do not query CE and UE errors (git-fixes). - drm/amdgpu: Fix a use-after-free (git-fixes). - drm/amdgpu: make sure we unpin the UVD BO (git-fixes). - drm/amdgpu: stop touching sched.ready in the backend (git-fixes). - drm/amdkfd: correct sienna_cichlid SDMA RLC register offset error (git-fixes). - drm/i915/selftests: Fix return value check in live_breadcrumbs_smoketest() (git-fixes). - drm/mcde: Fix off by 10^3 in calculation (git-fixes). - drm/msm/a6xx: fix incorrectly set uavflagprd_inv field for A650 (git-fixes). - drm/msm/a6xx: update/fix CP_PROTECT initialization (git-fixes). - efi/libstub: prevent read overflow in find_file_option() (git-fixes). - efi: Allow EFI_MEMORY_XP and EFI_MEMORY_RO both to be cleared (git-fixes). - efi: cper: fix snprintf() use in cper_dimm_err_location() (git-fixes). - fs/nfs: Use fatal_signal_pending instead of signal_pending (git-fixes). - gpio: cadence: Add missing MODULE_DEVICE_TABLE (git-fixes). - gpio: wcd934x: Fix shift-out-of-bounds error (git-fixes). - gve: Add NULL pointer checks when freeing irqs (git-fixes). - gve: Correct SKB queue index validation (git-fixes). - gve: Update mgmt_msix_idx if num_ntfy changes (git-fixes). - gve: Upgrade memory barrier in poll routine (git-fixes). - hwmon: (dell-smm-hwmon) Fix index values (git-fixes). - i2c: imx: fix reference leak when pm_runtime_get_sync fails (git-fixes). - i2c: qcom-geni: Suspend and resume the bus during SYSTEM_SLEEP_PM ops (git-fixes). - ice: Allow all LLDP packets from PF to Tx (jsc#SLE-7926). - ice: Fix VFR issues for AVF drivers that expect ATQLEN cleared (git-fixes). - ice: Fix allowing VF to request more/less queues via virtchnl (jsc#SLE-12878). - ice: handle the VF VSI rebuild failure (jsc#SLE-12878). - iommu/amd: Keep track of amd_iommu_irq_remap state (https://bugzilla.kernel.org/show_bug.cgi?id=212133). - iommu/virtio: Add missing MODULE_DEVICE_TABLE (bsc#1187345). - iommu/vt-d: Remove WO permissions on second-level paging entries (bsc#1187346). - iommu/vt-d: Report right snoop capability when using FL for IOVA (bsc#1187347). - iommu/vt-d: Use user privilege for RID2PASID translation (bsc#1187348). - iommu: Fix a boundary issue to avoid performance drop (bsc#1187344). - isdn: mISDN: correctly handle ph_info allocation failure in hfcsusb_ph_info (git-fixes). - isdn: mISDNinfineon: check/cleanup ioremap failure correctly in setup_io (git-fixes). - ixgbe: fix large MTU request from VF (git-fixes). - kABI workaround for rtw88 (git-fixes). - kABI workaround for struct lis3lv02d change (git-fixes). - lib: crc64: fix kernel-doc warning (bsc#1187357). - libertas: register sysfs groups properly (git-fixes). - locking/mutex: clear MUTEX_FLAGS if wait_list is empty due to signal (git-fixes). - md: Fix missing unused status line of /proc/mdstat (git-fixes). - md: bcache: Trivial typo fixes in the file journal.c (bsc#1187357). - md: bcache: avoid -Wempty-body warnings (bsc#1187357). - media: dvb: Add check on sp8870_readreg return (git-fixes). - media: dvb: Add check on sp8870_readreg return (git-fixes). - media: gspca: mt9m111: Check write_bridge for timeout (git-fixes). - media: gspca: mt9m111: Check write_bridge for timeout (git-fixes). - media: gspca: properly check for errors in po1030_probe() (git-fixes). - media: gspca: properly check for errors in po1030_probe() (git-fixes). - mei: request autosuspend after sending rx flow control (git-fixes). - mmc: sdhci: Clear unused bounce buffer at DMA mmap error path (bsc#1187039). - net/mlx4: Fix EEPROM dump support (git-fixes). - net/mlx5: DR, Create multi-destination flow table with level less than 64 (jsc#SLE-8464). - net/mlx5: Set reformat action when needed for termination rules (jsc#SLE-15172). - net/mlx5: Set term table as an unmanaged flow table (jsc#SLE-15172). - net/mlx5e: Fix error path of updating netdev queues (jsc#SLE-15172). - net/mlx5e: Fix incompatible casting (jsc#SLE-15172). - net/mlx5e: Fix multipath lag activation (git-fixes). - net/mlx5e: Fix null deref accessing lag dev (jsc#SLE-15172). - net/mlx5e: Fix nullptr in add_vlan_push_action() (git-fixes). - net/mlx5e: reset XPS on error flow if netdev isn't registered yet (jsc#SLE-15172). - net/sched: act_ct: Offload connections with commit action (jsc#SLE-15172). - net/sched: fq_pie: fix OOB access in the traffic path (jsc#SLE-15172). - net/sched: fq_pie: re-factor fix for fq_pie endless loop (jsc#SLE-15172). - net: bnx2: Fix error return code in bnx2_init_board() (git-fixes). - net: fix iteration for sctp transport seq_files (git-fixes). - net: hns3: Limiting the scope of vector_ring_chain variable (git-fixes). - net: hns3: fix incorrect resp_msg issue (jsc#SLE-14777). - net: hns3: put off calling register_netdev() until client initialize complete (bsc#1154353). - net: zero-initialize tc skb extension on allocation (bsc#1176447). - netfilter: nf_tables: missing error reporting for not selected expressions (bsc#1176447). - netfilter: nft_set_pipapo_avx2: Add irq_fpu_usable() check, fallback to non-AVX2 version (bsc#1176447). - nfc: fix NULL ptr dereference in llcp_sock_getname() after failed connect (git-fixes). - nfsd: register pernet ops last, unregister first (git-fixes). - nvme-multipath: fix double initialization of ANA state (bsc#1178612, bsc#1184259, bsc#1186155). - nvme: add new line after variable declatation (bsc#1184259, bsc#1178612, bsc#1186155). - nvme: do not check nvme_req flags for new req (bsc#1184259, bsc#1178612, bsc#1186155). - nvme: mark nvme_setup_passsthru() inline (bsc#1184259, bsc#1178612, bsc#1186155). - nvme: reduce checks for zero command effects (bsc#1184259, bsc#1178612, bsc#1186155). - nvme: rename nvme_init_identify() (bsc#1184259, bsc#1178612, bsc#1186155). - nvme: split init identify into helper (bsc#1184259, bsc#1178612, bsc#1186155). - nvme: use NVME_CTRL_CMIC_ANA macro (bsc#1184259, bsc#1178612, bsc#1186155). - nvmet: use new ana_log_size instead the old one (bsc#1178612, bsc#1184259, bsc#1186155). - pNFS/NFSv4: Fix a layout segment leak in pnfs_layout_process() (git-fixes). - pNFS/flexfiles: fix incorrect size check in decode_nfs_fh() (git-fixes). - pid: take a reference when initializing `cad_pid` (bsc#1152489). - platform/x86: hp-wireless: add AMD's hardware id to the supported list (git-fixes). - platform/x86: hp_accel: Avoid invoking _INI to speed up resume (git-fixes). - platform/x86: intel_punit_ipc: Append MODULE_DEVICE_TABLE for ACPI (git-fixes). - platform/x86: touchscreen_dmi: Add info for the Mediacom Winpad 7.0 W700 tablet (git-fixes). - powerpc/32: Fix boot failure with CONFIG_STACKPROTECTOR (jsc#SLE-13847 git-fixes). - powerpc/kprobes: Fix validation of prefixed instructions across page boundary (jsc#SLE-13847 git-fixes). - regulator: core: resolve supply for boot-on/always-on regulators (git-fixes). - regulator: max77620: Use device_set_of_node_from_dev() (git-fixes). - rtw88: 8822c: add LC calibration for RTL8822C (git-fixes). - scsi: aacraid: Fix an oops in error handling (bsc#1187072). - scsi: aacraid: Remove erroneous fallthrough annotation (bsc#1186950). - scsi: aacraid: Use memdup_user() as a cleanup (bsc#1186951). - scsi: acornscsi: Fix an error handling path in acornscsi_probe() (bsc#1186952). - scsi: be2iscsi: Fix a theoretical leak in beiscsi_create_eqs() (bsc#1186953). - scsi: be2iscsi: Revert "Fix a theoretical leak in beiscsi_create_eqs()" (bsc#1187067). - scsi: bfa: Fix error return in bfad_pci_init() (bsc#1186954). - scsi: bnx2fc: Fix Kconfig warning & CNIC build errors (bsc#1186955). - scsi: bnx2i: Requires MMU (bsc#1186956). - scsi: csiostor: Fix wrong return value in csio_hw_prep_fw() (bsc#1186957). - scsi: cumana_2: Fix different dev_id between request_irq() and free_irq() (bsc#1186958). - scsi: cxgb3i: Fix some leaks in init_act_open() (bsc#1186959). - scsi: cxgb4i: Fix TLS dependency (bsc#1186960). - scsi: eesox: Fix different dev_id between request_irq() and free_irq() (bsc#1186961). - scsi: fnic: Fix error return code in fnic_probe() (bsc#1186962). - scsi: hisi_sas: Fix IRQ checks (bsc#1186963). - scsi: hisi_sas: Remove preemptible() (bsc#1186964). - scsi: jazz_esp: Add IRQ check (bsc#1186965). - scsi: libfc: Fix enum-conversion warning (bsc#1186966). - scsi: libsas: Fix error path in sas_notify_lldd_dev_found() (bsc#1186967). - scsi: libsas: Reset num_scatter if libata marks qc as NODATA (bsc#1187068). - scsi: libsas: Set data_dir as DMA_NONE if libata marks qc as NODATA (bsc#1186968). - scsi: lpfc: Fix ancient double free (bsc#1186969). - scsi: lpfc: Fix failure to transmit ABTS on FC link (git-fixes). - scsi: megaraid_sas: Check user-provided offsets (bsc#1186970). - scsi: megaraid_sas: Clear affinity hint (bsc#1186971). - scsi: megaraid_sas: Do not call disable_irq from process IRQ poll (bsc#1186972). - scsi: megaraid_sas: Fix MEGASAS_IOC_FIRMWARE regression (bsc#1186973). - scsi: megaraid_sas: Remove undefined ENABLE_IRQ_POLL macro (bsc#1186974). - scsi: mesh: Fix panic after host or bus reset (bsc#1186976). - scsi: mpt3sas: Do not use GFP_KERNEL in atomic context (bsc#1186977). - scsi: mpt3sas: Fix error return code of mpt3sas_base_attach() (bsc#1186978). - scsi: mpt3sas: Fix ioctl timeout (bsc#1186979). - scsi: myrs: Fix a double free in myrs_cleanup() (bsc#1186980). - scsi: pm80xx: Fix error return in pm8001_pci_probe() (bsc#1186981). - scsi: powertec: Fix different dev_id between request_irq() and free_irq() (bsc#1186982). - scsi: qedi: Check for buffer overflow in qedi_set_path() (bsc#1186983). - scsi: qedi: Fix error return code of qedi_alloc_global_queues() (bsc#1186984). - scsi: qedi: Fix missing destroy_workqueue() on error in __qedi_probe (bsc#1186985). - scsi: qla2xxx: Prevent PRLI in target mode (git-fixes). - scsi: qla4xxx: Fix an error handling path in 'qla4xxx_get_host_stats()' (bsc#1186986). - scsi: qla4xxx: Remove in_interrupt() (bsc#1186987). - scsi: scsi_debug: Add check for sdebug_max_queue during module init (bsc#1186988). - scsi: scsi_dh_alua: Retry RTPG on a different path after failure (bsc#1174978 bsc#1185701). - scsi: sd: Fix Opal support (bsc#1186989). - scsi: smartpqi: Add additional logging for LUN resets (bsc#1186472). - scsi: smartpqi: Add host level stream detection enable (bsc#1186472). - scsi: smartpqi: Add new PCI IDs (bsc#1186472). - scsi: smartpqi: Add phy ID support for the physical drives (bsc#1186472). - scsi: smartpqi: Add stream detection (bsc#1186472). - scsi: smartpqi: Add support for BMIC sense feature cmd and feature bits (bsc#1186472). - scsi: smartpqi: Add support for RAID1 writes (bsc#1186472). - scsi: smartpqi: Add support for RAID5 and RAID6 writes (bsc#1186472). - scsi: smartpqi: Add support for long firmware version (bsc#1186472). - scsi: smartpqi: Add support for new product ids (bsc#1186472). - scsi: smartpqi: Add support for wwid (bsc#1186472). - scsi: smartpqi: Align code with oob driver (bsc#1186472). - scsi: smartpqi: Convert snprintf() to scnprintf() (bsc#1186472). - scsi: smartpqi: Correct request leakage during reset operations (bsc#1186472). - scsi: smartpqi: Correct system hangs when resuming from hibernation (bsc#1186472). - scsi: smartpqi: Disable WRITE SAME for HBA NVMe disks (bsc#1186472). - scsi: smartpqi: Fix blocks_per_row static checker issue (bsc#1186472). - scsi: smartpqi: Fix device pointer variable reference static checker issue (bsc#1186472). - scsi: smartpqi: Fix driver synchronization issues (bsc#1186472). - scsi: smartpqi: Refactor aio submission code (bsc#1186472). - scsi: smartpqi: Refactor scatterlist code (bsc#1186472). - scsi: smartpqi: Remove timeouts from internal cmds (bsc#1186472). - scsi: smartpqi: Remove unused functions (bsc#1186472). - scsi: smartpqi: Synchronize device resets with mutex (bsc#1186472). - scsi: smartpqi: Update OFA management (bsc#1186472). - scsi: smartpqi: Update RAID bypass handling (bsc#1186472). - scsi: smartpqi: Update SAS initiator_port_protocols and target_port_protocols (bsc#1186472). - scsi: smartpqi: Update device scan operations (bsc#1186472). - scsi: smartpqi: Update enclosure identifier in sysfs (bsc#1186472). - scsi: smartpqi: Update event handler (bsc#1186472). - scsi: smartpqi: Update soft reset management for OFA (bsc#1186472). - scsi: smartpqi: Update suspend/resume and shutdown (bsc#1186472). - scsi: smartpqi: Update version to 2.1.8-045 (bsc#1186472). - scsi: smartpqi: Use host-wide tag space (bsc#1186472). - scsi: sni_53c710: Add IRQ check (bsc#1186990). - scsi: sun3x_esp: Add IRQ check (bsc#1186991). - scsi: ufs-qcom: Fix scheduling while atomic issue (bsc#1187002). - scsi: ufs: Add quirk to disallow reset of interrupt aggregation (bsc#1186992). - scsi: ufs: Add quirk to enable host controller without hce (bsc#1186993). - scsi: ufs: Add quirk to fix abnormal ocs fatal error (bsc#1186994). - scsi: ufs: Add quirk to fix mishandling utrlclr/utmrlclr (bsc#1186995). - scsi: ufs: Do not update urgent bkops level when toggling auto bkops (bsc#1186997). - scsi: ufs: Fix race between shutdown and runtime resume flow (bsc#1186998). - scsi: ufs: Introduce UFSHCD_QUIRK_PRDT_BYTE_GRAN quirk (bsc#1187000). - scsi: ufs: Make ufshcd_print_trs() consider UFSHCD_QUIRK_PRDT_BYTE_GRAN (bsc#1187069). - scsi: ufs: Properly release resources if a task is aborted successfully (bsc#1187001). - scsi: ufs: core: Narrow down fast path in system suspend path (bsc#1186996). - scsi: ufs: ufshcd-pltfrm: Fix deferred probing (bsc#1187003). - scsi: ufshcd: use an enum for quirks (bsc#1186999). - serial: 8250_pci: handle FL_NOIRQ board flag (git-fixes). - serial: max310x: unregister uart driver in case of failure and abort (git-fixes). - serial: rp2: use 'request_firmware' instead of 'request_firmware_nowait' (git-fixes). - staging: rtl8723bs: Fix uninitialized variables (git-fixes). - sunrpc: fix refcount leak for rpc auth modules (git-fixes). - svcrdma: disable timeouts on rdma backchannel (git-fixes). - thermal/drivers/intel: Initialize RW trip to THERMAL_TEMP_INVALID (git-fixes). - thunderbolt: usb4: Fix NVM read buffer bounds and offset issue (git-fixes). - tpm: fix error return code in tpm2_get_cc_attrs_tbl() (git-fixes). - ttyprintk: Add TTY hangup callback (git-fixes). - usb: chipidea: imx: Fix Battery Charger 1.2 CDP detection (git-fixes). - usb: core: reduce power-on-good delay time of root hub (git-fixes). - usb: fix various gadgets null ptr deref on 10gbps cabling (git-fixes). - usb: musb: fix MUSB_QUIRK_B_DISCONNECT_99 handling (git-fixes). - usb: pd: Set PD_T_SINK_WAIT_CAP to 310ms (git-fixes). - usb: typec: intel_pmc_mux: Put fwnode in error case during ->probe() (git-fixes). - usb: typec: mux: Fix copy-paste mistake in typec_mux_match (git-fixes). - usb: typec: mux: Fix matching with typec_altmode_desc (git-fixes). - usb: typec: tcpm: Use LE to CPU conversion when accessing msg->header (git-fixes). - usb: typec: ucsi: Clear PPM capability data in ucsi_init() error path (git-fixes). - usb: typec: ucsi: Retrieve all the PDOs instead of just the first 4 (git-fixes). - usb: typec: wcove: Use LE to CPU conversion when accessing msg->header (git-fixes). - vfio/pci: Fix error return code in vfio_ecap_init() (git-fixes). - vfio/pci: zap_vma_ptes() needs MMU (git-fixes). - vfio/platform: fix module_put call in error flow (git-fixes). - vmlinux.lds.h: Avoid orphan section with !SMP (git-fixes). - vsock/vmci: log once the failed queue pair allocation (git-fixes). - wireguard: allowedips: initialize list head in selftest (git-fixes). - wireguard: do not use -O3 (git-fixes). - wireguard: peer: allocate in kmem_cache (git-fixes). - wireguard: peer: put frequently used members above cache lines (git-fixes). - wireguard: queueing: get rid of per-peer ring buffers (git-fixes). - wireguard: selftests: make sure rp_filter is disabled on vethc (git-fixes). - wireguard: selftests: remove old conntrack kconfig value (git-fixes). - wireguard: use synchronize_net rather than synchronize_rcu (git-fixes). - x86/apic: Mark _all_ legacy interrupts when IO/APIC is missing (bsc#1152489). - x86/boot/64: Explicitly map boot_params and command line (jsc#SLE-14337). - x86/boot/compressed/64: Add 32-bit boot #VC handler (jsc#SLE-14337). - x86/boot/compressed/64: Add CPUID sanity check to 32-bit boot-path (jsc#SLE-14337). - x86/boot/compressed/64: Check SEV encryption in 64-bit boot-path (jsc#SLE-14337). - x86/boot/compressed/64: Check SEV encryption in the 32-bit boot-path (jsc#SLE-14337). - x86/boot/compressed/64: Cleanup exception handling before booting kernel (jsc#SLE-14337). - x86/boot/compressed/64: Introduce sev_status (jsc#SLE-14337). - x86/boot/compressed/64: Reload CS in startup_32 (jsc#SLE-14337). - x86/boot/compressed/64: Sanity-check CPUID results in the early #VC handler (jsc#SLE-14337). - x86/boot/compressed/64: Setup IDT in startup_32 boot path (jsc#SLE-14337). - x86/cpufeatures: Force disable X86_FEATURE_ENQCMD and remove update_pasid() (bsc#1178134). - x86/fault: Do not send SIGSEGV twice on SEGV_PKUERR (bsc#1152489). - x86/fpu: Prevent state corruption in __fpu__restore_sig() (bsc#1178134). - x86/head/64: Check SEV encryption before switching to kernel page-table (jsc#SLE-14337). - x86/head/64: Disable stack protection for head$(BITS).o (jsc#SLE-14337). - x86/ioremap: Map efi_mem_reserve() memory as encrypted for SEV (bsc#1186885). - x86/sev-es: Do not return NULL from sev_es_get_ghcb() (bsc#1187349). - x86/sev-es: Do not support MMIO to/from encrypted memory (jsc#SLE-14337). - x86/sev-es: Forward page-faults which happen during emulation (bsc#1187350). - x86/sev-es: Replace open-coded hlt-loops with sev_es_terminate() (jsc#SLE-14337). - x86/sev-es: Use __put_user()/__get_user() for data accesses (bsc#1187351). - x86/sev: Check SME/SEV support in CPUID first (jsc#SLE-14337). - x86/sev: Do not require Hypervisor CPUID bit for SEV guests (jsc#SLE-14337). - x86: fix seq_file iteration for pat.c (git-fixes). - xfrm: policy: Read seqcount outside of rcu-read side in xfrm_policy_lookup_bytype (bsc#1185675). - xprtrdma: Avoid Receive Queue wrapping (git-fixes). - xprtrdma: rpcrdma_mr_pop() already does list_del_init() (git-fixes). cluster-md-kmp-azure-5.3.18-38.8.1.x86_64.rpm True dlm-kmp-azure-5.3.18-38.8.1.x86_64.rpm True gfs2-kmp-azure-5.3.18-38.8.1.x86_64.rpm True kernel-azure-5.3.18-38.8.1.nosrc.rpm True kernel-azure-5.3.18-38.8.1.x86_64.rpm True kernel-azure-devel-5.3.18-38.8.1.x86_64.rpm True kernel-azure-extra-5.3.18-38.8.1.x86_64.rpm True kernel-azure-livepatch-devel-5.3.18-38.8.1.x86_64.rpm True kernel-azure-optional-5.3.18-38.8.1.x86_64.rpm True kernel-devel-azure-5.3.18-38.8.1.noarch.rpm True kernel-source-azure-5.3.18-38.8.1.noarch.rpm True kernel-source-azure-5.3.18-38.8.1.src.rpm True kernel-syms-azure-5.3.18-38.8.1.src.rpm True kernel-syms-azure-5.3.18-38.8.1.x86_64.rpm True kselftests-kmp-azure-5.3.18-38.8.1.x86_64.rpm True ocfs2-kmp-azure-5.3.18-38.8.1.x86_64.rpm True reiserfs-kmp-azure-5.3.18-38.8.1.x86_64.rpm True openSUSE-SLE-15.3-2021-2395 Recommended update for efivar moderate SUSE Updates openSUSE-SLE 15.3 This update for efivar provides the following fix: - Fix the eMMC sysfs parsing. (bsc#1187386) efivar-37-6.12.1.src.rpm efivar-37-6.12.1.x86_64.rpm efivar-devel-37-6.12.1.x86_64.rpm libefivar1-37-6.12.1.x86_64.rpm efivar-37-6.12.1.s390x.rpm efivar-devel-37-6.12.1.s390x.rpm libefivar1-37-6.12.1.s390x.rpm efivar-37-6.12.1.ppc64le.rpm efivar-devel-37-6.12.1.ppc64le.rpm libefivar1-37-6.12.1.ppc64le.rpm efivar-37-6.12.1.aarch64.rpm efivar-devel-37-6.12.1.aarch64.rpm libefivar1-37-6.12.1.aarch64.rpm openSUSE-SLE-15.3-2021-2394 Recommended update for suse-module-tools moderate SUSE Updates openSUSE-SLE 15.3 This update for suse-module-tools provides the following fixes: - Fix treatment of compressed modules. (bsc#1187093) - modprobe.d: Remove dma=none setting for parport_pc. (bsc#1177695) suse-module-tools-15.3.8-3.5.1.src.rpm suse-module-tools-15.3.8-3.5.1.x86_64.rpm suse-module-tools-legacy-15.3.8-3.5.1.x86_64.rpm suse-module-tools-15.3.8-3.5.1.s390x.rpm suse-module-tools-legacy-15.3.8-3.5.1.s390x.rpm suse-module-tools-15.3.8-3.5.1.ppc64le.rpm suse-module-tools-legacy-15.3.8-3.5.1.ppc64le.rpm suse-module-tools-15.3.8-3.5.1.aarch64.rpm suse-module-tools-legacy-15.3.8-3.5.1.aarch64.rpm openSUSE-SLE-15.3-2021-2272 Recommended update for pacemaker moderate SUSE Updates openSUSE-SLE 15.3 This update for pacemaker provides the following fix: - controld: Purge attrd attributes when the remote node is up to ensure sync with CIB. (bsc#1186693) libpacemaker-devel-2.0.5+20201202.ba59be712-4.6.1.x86_64.rpm libpacemaker3-2.0.5+20201202.ba59be712-4.6.1.x86_64.rpm pacemaker-2.0.5+20201202.ba59be712-4.6.1.src.rpm pacemaker-2.0.5+20201202.ba59be712-4.6.1.x86_64.rpm pacemaker-cli-2.0.5+20201202.ba59be712-4.6.1.x86_64.rpm pacemaker-cts-2.0.5+20201202.ba59be712-4.6.1.noarch.rpm pacemaker-remote-2.0.5+20201202.ba59be712-4.6.1.x86_64.rpm libpacemaker-devel-2.0.5+20201202.ba59be712-4.6.1.s390x.rpm libpacemaker3-2.0.5+20201202.ba59be712-4.6.1.s390x.rpm pacemaker-2.0.5+20201202.ba59be712-4.6.1.s390x.rpm pacemaker-cli-2.0.5+20201202.ba59be712-4.6.1.s390x.rpm pacemaker-remote-2.0.5+20201202.ba59be712-4.6.1.s390x.rpm libpacemaker-devel-2.0.5+20201202.ba59be712-4.6.1.ppc64le.rpm libpacemaker3-2.0.5+20201202.ba59be712-4.6.1.ppc64le.rpm pacemaker-2.0.5+20201202.ba59be712-4.6.1.ppc64le.rpm pacemaker-cli-2.0.5+20201202.ba59be712-4.6.1.ppc64le.rpm pacemaker-remote-2.0.5+20201202.ba59be712-4.6.1.ppc64le.rpm libpacemaker-devel-2.0.5+20201202.ba59be712-4.6.1.aarch64.rpm libpacemaker3-2.0.5+20201202.ba59be712-4.6.1.aarch64.rpm pacemaker-2.0.5+20201202.ba59be712-4.6.1.aarch64.rpm pacemaker-cli-2.0.5+20201202.ba59be712-4.6.1.aarch64.rpm pacemaker-remote-2.0.5+20201202.ba59be712-4.6.1.aarch64.rpm openSUSE-SLE-15.3-2021-2308 Recommended update for cpupower moderate SUSE Updates openSUSE-SLE 15.3 This update for cpupower provides the following fix: - cpupower updates for Milan. (jsc#SLE-17797) cpupower-5.10-3.3.1.src.rpm cpupower-5.10-3.3.1.x86_64.rpm cpupower-bench-5.10-3.3.1.x86_64.rpm cpupower-devel-5.10-3.3.1.x86_64.rpm libcpupower0-5.10-3.3.1.x86_64.rpm cpupower-5.10-3.3.1.s390x.rpm cpupower-bench-5.10-3.3.1.s390x.rpm cpupower-devel-5.10-3.3.1.s390x.rpm libcpupower0-5.10-3.3.1.s390x.rpm cpupower-5.10-3.3.1.ppc64le.rpm cpupower-bench-5.10-3.3.1.ppc64le.rpm cpupower-devel-5.10-3.3.1.ppc64le.rpm libcpupower0-5.10-3.3.1.ppc64le.rpm cpupower-5.10-3.3.1.aarch64.rpm cpupower-bench-5.10-3.3.1.aarch64.rpm cpupower-devel-5.10-3.3.1.aarch64.rpm libcpupower0-5.10-3.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-2271 Recommended update for evolution moderate SUSE Updates openSUSE-SLE 15.3 This update for evolution provides the following fix: - Disable WebKit sandboxing to make printing work until WebkitGTK is fixed. (bsc#1174907) evolution-3.34.4-3.3.1.src.rpm evolution-3.34.4-3.3.1.x86_64.rpm evolution-devel-3.34.4-3.3.1.x86_64.rpm evolution-lang-3.34.4-3.3.1.noarch.rpm evolution-plugin-bogofilter-3.34.4-3.3.1.x86_64.rpm evolution-plugin-pst-import-3.34.4-3.3.1.x86_64.rpm evolution-plugin-spamassassin-3.34.4-3.3.1.x86_64.rpm evolution-plugin-text-highlight-3.34.4-3.3.1.x86_64.rpm glade-catalog-evolution-3.34.4-3.3.1.x86_64.rpm evolution-3.34.4-3.3.1.s390x.rpm evolution-devel-3.34.4-3.3.1.s390x.rpm evolution-plugin-bogofilter-3.34.4-3.3.1.s390x.rpm evolution-plugin-pst-import-3.34.4-3.3.1.s390x.rpm evolution-plugin-spamassassin-3.34.4-3.3.1.s390x.rpm evolution-plugin-text-highlight-3.34.4-3.3.1.s390x.rpm glade-catalog-evolution-3.34.4-3.3.1.s390x.rpm evolution-3.34.4-3.3.1.ppc64le.rpm evolution-devel-3.34.4-3.3.1.ppc64le.rpm evolution-plugin-bogofilter-3.34.4-3.3.1.ppc64le.rpm evolution-plugin-pst-import-3.34.4-3.3.1.ppc64le.rpm evolution-plugin-spamassassin-3.34.4-3.3.1.ppc64le.rpm evolution-plugin-text-highlight-3.34.4-3.3.1.ppc64le.rpm glade-catalog-evolution-3.34.4-3.3.1.ppc64le.rpm evolution-3.34.4-3.3.1.aarch64.rpm evolution-devel-3.34.4-3.3.1.aarch64.rpm evolution-plugin-bogofilter-3.34.4-3.3.1.aarch64.rpm evolution-plugin-pst-import-3.34.4-3.3.1.aarch64.rpm evolution-plugin-spamassassin-3.34.4-3.3.1.aarch64.rpm evolution-plugin-text-highlight-3.34.4-3.3.1.aarch64.rpm glade-catalog-evolution-3.34.4-3.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-2283 Recommended update for deja-dup moderate SUSE Updates openSUSE-SLE 15.3 This update for deja-dup provides the following fix: - Require duplicity as deja-dup cannot run without it. (bsc#1187256) deja-dup-40.6-3.3.1.src.rpm deja-dup-40.6-3.3.1.x86_64.rpm deja-dup-lang-40.6-3.3.1.noarch.rpm nautilus-deja-dup-40.6-3.3.1.x86_64.rpm deja-dup-40.6-3.3.1.s390x.rpm nautilus-deja-dup-40.6-3.3.1.s390x.rpm deja-dup-40.6-3.3.1.ppc64le.rpm nautilus-deja-dup-40.6-3.3.1.ppc64le.rpm deja-dup-40.6-3.3.1.aarch64.rpm nautilus-deja-dup-40.6-3.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-2169 Recommended update for hexchat moderate SUSE Updates openSUSE-SLE 15.3 This update for hexchat fixes the following issues: - Added Libera.chat to available servers (bsc#1187587) hexchat-2.12.4-3.3.1.src.rpm hexchat-2.12.4-3.3.1.x86_64.rpm hexchat-devel-2.12.4-3.3.1.x86_64.rpm hexchat-lang-2.12.4-3.3.1.noarch.rpm hexchat-plugins-lua-2.12.4-3.3.1.x86_64.rpm hexchat-plugins-perl-2.12.4-3.3.1.x86_64.rpm hexchat-plugins-python3-2.12.4-3.3.1.x86_64.rpm hexchat-2.12.4-3.3.1.s390x.rpm hexchat-devel-2.12.4-3.3.1.s390x.rpm hexchat-plugins-lua-2.12.4-3.3.1.s390x.rpm hexchat-plugins-perl-2.12.4-3.3.1.s390x.rpm hexchat-plugins-python3-2.12.4-3.3.1.s390x.rpm hexchat-2.12.4-3.3.1.ppc64le.rpm hexchat-devel-2.12.4-3.3.1.ppc64le.rpm hexchat-plugins-lua-2.12.4-3.3.1.ppc64le.rpm hexchat-plugins-perl-2.12.4-3.3.1.ppc64le.rpm hexchat-plugins-python3-2.12.4-3.3.1.ppc64le.rpm hexchat-2.12.4-3.3.1.aarch64.rpm hexchat-devel-2.12.4-3.3.1.aarch64.rpm hexchat-plugins-lua-2.12.4-3.3.1.aarch64.rpm hexchat-plugins-perl-2.12.4-3.3.1.aarch64.rpm hexchat-plugins-python3-2.12.4-3.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-2317 Recommended update for libvma moderate SUSE Updates openSUSE-SLE 15.3 This update for libvma fixes the following issues: - Link the tools as position independent executables. (bsc#1184124) libvma-8.9.4-3.3.1.src.rpm libvma8-8.9.4-3.3.1.x86_64.rpm libvma8-8.9.4-3.3.1.ppc64le.rpm libvma8-8.9.4-3.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-2214 Security update for go1.15 important SUSE Updates openSUSE-SLE 15.3 This update for go1.15 fixes the following issues: Update to 1.15.13. Includes these security fixes - CVE-2021-33195: net: Lookup functions may return invalid host names (bsc#1187443). - CVE-2021-33196: archive/zip: malformed archive may cause panic or memory exhaustion (bsc#1186622). - CVE-2021-33197: net/http/httputil: ReverseProxy forwards Connection headers if first one is empty (bsc#1187444) - CVE-2021-33198: math/big: (*Rat).SetString with "1.770p02041010010011001001" crashes with "makeslice: len out of range" (bsc#1187445). go1.15-1.15.13-1.33.1.src.rpm go1.15-1.15.13-1.33.1.x86_64.rpm go1.15-doc-1.15.13-1.33.1.x86_64.rpm go1.15-race-1.15.13-1.33.1.x86_64.rpm go1.15-1.15.13-1.33.1.s390x.rpm go1.15-doc-1.15.13-1.33.1.s390x.rpm go1.15-1.15.13-1.33.1.ppc64le.rpm go1.15-doc-1.15.13-1.33.1.ppc64le.rpm go1.15-1.15.13-1.33.1.aarch64.rpm go1.15-doc-1.15.13-1.33.1.aarch64.rpm go1.15-race-1.15.13-1.33.1.aarch64.rpm openSUSE-SLE-15.3-2021-2186 Security update for go1.16 important SUSE Updates openSUSE-SLE 15.3 This update for go1.16 fixes the following issues: Update to 1.16.5. Includes these security fixes - CVE-2021-33195: net: Lookup functions may return invalid host names (bsc#1187443). - CVE-2021-33196: archive/zip: malformed archive may cause panic or memory exhaustion (bsc#1186622). - CVE-2021-33197: net/http/httputil: ReverseProxy forwards Connection headers if first one is empty (bsc#1187444) - CVE-2021-33198: math/big: (*Rat).SetString with "1.770p02041010010011001001" crashes with "makeslice: len out of range" (bsc#1187445). go1.16-1.16.5-1.17.1.src.rpm go1.16-1.16.5-1.17.1.x86_64.rpm go1.16-doc-1.16.5-1.17.1.x86_64.rpm go1.16-race-1.16.5-1.17.1.x86_64.rpm go1.16-1.16.5-1.17.1.s390x.rpm go1.16-doc-1.16.5-1.17.1.s390x.rpm go1.16-1.16.5-1.17.1.ppc64le.rpm go1.16-doc-1.16.5-1.17.1.ppc64le.rpm go1.16-1.16.5-1.17.1.aarch64.rpm go1.16-doc-1.16.5-1.17.1.aarch64.rpm go1.16-race-1.16.5-1.17.1.aarch64.rpm openSUSE-SLE-15.3-2021-2292 Security update for dbus-1 important SUSE Updates openSUSE-SLE 15.3 This update for dbus-1 fixes the following issues: - CVE-2020-35512: Fixed a use-after-free or potential undefined behaviour caused by shared UID's (bsc#1187105) dbus-1-1.12.2-8.6.1.src.rpm True dbus-1-1.12.2-8.6.1.x86_64.rpm True dbus-1-devel-1.12.2-8.6.1.x86_64.rpm True dbus-1-devel-32bit-1.12.2-8.6.1.x86_64.rpm True dbus-1-devel-doc-1.12.2-8.6.1.noarch.rpm True dbus-1-x11-1.12.2-8.6.1.src.rpm True dbus-1-x11-1.12.2-8.6.1.x86_64.rpm True libdbus-1-3-1.12.2-8.6.1.x86_64.rpm True libdbus-1-3-32bit-1.12.2-8.6.1.x86_64.rpm True dbus-1-1.12.2-8.6.1.s390x.rpm True dbus-1-devel-1.12.2-8.6.1.s390x.rpm True dbus-1-x11-1.12.2-8.6.1.s390x.rpm True libdbus-1-3-1.12.2-8.6.1.s390x.rpm True dbus-1-1.12.2-8.6.1.ppc64le.rpm True dbus-1-devel-1.12.2-8.6.1.ppc64le.rpm True dbus-1-x11-1.12.2-8.6.1.ppc64le.rpm True libdbus-1-3-1.12.2-8.6.1.ppc64le.rpm True dbus-1-1.12.2-8.6.1.aarch64.rpm True dbus-1-devel-1.12.2-8.6.1.aarch64.rpm True dbus-1-x11-1.12.2-8.6.1.aarch64.rpm True libdbus-1-3-1.12.2-8.6.1.aarch64.rpm True openSUSE-SLE-15.3-2021-2322 Security update for ffmpeg important SUSE Updates openSUSE-SLE 15.3 This update for ffmpeg fixes the following issues: - CVE-2020-13904: Fixed use-after-free via a crafted EXTINF duration in an m3u8 file (bsc#1172640). - CVE-2020-21041: Fixed buffer overflow vulnerability via apng_do_inverse_blend in libavcodec/pngenc.c (bsc#1186406). - CVE-2019-17539: Fixed NULL pointer dereference in avcodec_open2 in libavcodec/utils.c (bsc# 1154065). - CVE-2020-22026: Fixed buffer overflow vulnerability in config_input() at libavfilter/af_tremolo.c (bsc#1186583). - CVE-2020-22021: Fixed buffer overflow vulnerability in filter_edges function in libavfilter/vf_yadif.c (bsc#1186586). - CVE-2020-22020: Fixed buffer overflow vulnerability in build_diff_map() in libavfilter/vf_fieldmatch.c (bsc#1186587). - CVE-2020-22015: Fixed buffer overflow vulnerability in mov_write_video_tag() due to the out of bounds in libavformat/movenc.c (bsc#1186596). - CVE-2020-22016: Fixed a heap-based Buffer Overflow vulnerability at libavcodec/get_bits.h when writing .mov files (bsc#1186598). - CVE-2020-22017: Fixed a heap-based Buffer Overflow vulnerability in ff_fill_rectangle() in libavfilter/drawutils.c (bsc#1186600). - CVE-2020-22022: Fixed a heap-based Buffer Overflow vulnerability in filter_frame at libavfilter/vf_fieldorder.c (bsc#1186603). - CVE-2020-22023: Fixed a heap-based Buffer Overflow vulnerability in filter_frame at libavfilter/vf_bitplanenoise.c (bsc#1186604) - CVE-2020-22025: Fixed a heap-based Buffer Overflow vulnerability in gaussian_blur at libavfilter/vf_edgedetect.c (bsc#1186605). - CVE-2020-22031: Fixed a heap-based Buffer Overflow vulnerability at libavfilter/vf_w3fdif.c in filter16_complex_low() (bsc#1186613). - CVE-2020-22032: Fixed a heap-based Buffer Overflow vulnerability at libavfilter/vf_edgedetect.c in gaussian_blur() (bsc#1186614). - CVE-2020-22034: Fixed a heap-based Buffer Overflow vulnerability at libavfilter/vf_floodfill.c (bsc#1186616). - CVE-2020-20451: Fixed denial of service issue due to resource management errors via fftools/cmdutils.c (bsc#1186658). - CVE-2020-20448: Fixed divide by zero issue via libavcodec/ratecontrol.c (bsc#1186660). - CVE-2020-22038: Fixed denial of service vulnerability due to a memory leak in the ff_v4l2_m2m_create_context function in v4l2_m2m.c (bsc#1186757). - CVE-2020-22039: Fixed denial of service vulnerability due to a memory leak in the inavi_add_ientry function (bsc#1186758). - CVE-2020-22043: Fixed denial of service vulnerability due to a memory leak at the fifo_alloc_common function in libavutil/fifo.c (bsc#1186762). - CVE-2020-22044: Fixed denial of service vulnerability due to a memory leak in the url_open_dyn_buf_internal function in libavformat/aviobuf.c (bsc#1186763). - CVE-2020-22033,CVE-2020-22019: Fixed a heap-based Buffer Overflow Vulnerability at libavfilter/vf_vmafmotion.c in convolution_y_8bit() and in convolution_y_10bit() in libavfilter/vf_vmafmotion.c (bsc#1186615, bsc#1186597). ffmpeg-3.4.2-11.3.1.src.rpm ffmpeg-3.4.2-11.3.1.x86_64.rpm ffmpeg-private-devel-3.4.2-11.3.1.x86_64.rpm libavcodec-devel-3.4.2-11.3.1.x86_64.rpm libavcodec57-3.4.2-11.3.1.x86_64.rpm libavcodec57-32bit-3.4.2-11.3.1.x86_64.rpm libavdevice-devel-3.4.2-11.3.1.x86_64.rpm libavdevice57-3.4.2-11.3.1.x86_64.rpm libavdevice57-32bit-3.4.2-11.3.1.x86_64.rpm libavfilter-devel-3.4.2-11.3.1.x86_64.rpm libavfilter6-3.4.2-11.3.1.x86_64.rpm libavfilter6-32bit-3.4.2-11.3.1.x86_64.rpm libavformat-devel-3.4.2-11.3.1.x86_64.rpm libavformat57-3.4.2-11.3.1.x86_64.rpm libavformat57-32bit-3.4.2-11.3.1.x86_64.rpm libavresample-devel-3.4.2-11.3.1.x86_64.rpm libavresample3-3.4.2-11.3.1.x86_64.rpm libavresample3-32bit-3.4.2-11.3.1.x86_64.rpm libavutil-devel-3.4.2-11.3.1.x86_64.rpm libavutil55-3.4.2-11.3.1.x86_64.rpm libavutil55-32bit-3.4.2-11.3.1.x86_64.rpm libpostproc-devel-3.4.2-11.3.1.x86_64.rpm libpostproc54-3.4.2-11.3.1.x86_64.rpm libpostproc54-32bit-3.4.2-11.3.1.x86_64.rpm libswresample-devel-3.4.2-11.3.1.x86_64.rpm libswresample2-3.4.2-11.3.1.x86_64.rpm libswresample2-32bit-3.4.2-11.3.1.x86_64.rpm libswscale-devel-3.4.2-11.3.1.x86_64.rpm libswscale4-3.4.2-11.3.1.x86_64.rpm libswscale4-32bit-3.4.2-11.3.1.x86_64.rpm ffmpeg-3.4.2-11.3.1.s390x.rpm ffmpeg-private-devel-3.4.2-11.3.1.s390x.rpm libavcodec-devel-3.4.2-11.3.1.s390x.rpm libavcodec57-3.4.2-11.3.1.s390x.rpm libavdevice-devel-3.4.2-11.3.1.s390x.rpm libavdevice57-3.4.2-11.3.1.s390x.rpm libavfilter-devel-3.4.2-11.3.1.s390x.rpm libavfilter6-3.4.2-11.3.1.s390x.rpm libavformat-devel-3.4.2-11.3.1.s390x.rpm libavformat57-3.4.2-11.3.1.s390x.rpm libavresample-devel-3.4.2-11.3.1.s390x.rpm libavresample3-3.4.2-11.3.1.s390x.rpm libavutil-devel-3.4.2-11.3.1.s390x.rpm libavutil55-3.4.2-11.3.1.s390x.rpm libpostproc-devel-3.4.2-11.3.1.s390x.rpm libpostproc54-3.4.2-11.3.1.s390x.rpm libswresample-devel-3.4.2-11.3.1.s390x.rpm libswresample2-3.4.2-11.3.1.s390x.rpm libswscale-devel-3.4.2-11.3.1.s390x.rpm libswscale4-3.4.2-11.3.1.s390x.rpm ffmpeg-3.4.2-11.3.1.ppc64le.rpm ffmpeg-private-devel-3.4.2-11.3.1.ppc64le.rpm libavcodec-devel-3.4.2-11.3.1.ppc64le.rpm libavcodec57-3.4.2-11.3.1.ppc64le.rpm libavdevice-devel-3.4.2-11.3.1.ppc64le.rpm libavdevice57-3.4.2-11.3.1.ppc64le.rpm libavfilter-devel-3.4.2-11.3.1.ppc64le.rpm libavfilter6-3.4.2-11.3.1.ppc64le.rpm libavformat-devel-3.4.2-11.3.1.ppc64le.rpm libavformat57-3.4.2-11.3.1.ppc64le.rpm libavresample-devel-3.4.2-11.3.1.ppc64le.rpm libavresample3-3.4.2-11.3.1.ppc64le.rpm libavutil-devel-3.4.2-11.3.1.ppc64le.rpm libavutil55-3.4.2-11.3.1.ppc64le.rpm libpostproc-devel-3.4.2-11.3.1.ppc64le.rpm libpostproc54-3.4.2-11.3.1.ppc64le.rpm libswresample-devel-3.4.2-11.3.1.ppc64le.rpm libswresample2-3.4.2-11.3.1.ppc64le.rpm libswscale-devel-3.4.2-11.3.1.ppc64le.rpm libswscale4-3.4.2-11.3.1.ppc64le.rpm ffmpeg-3.4.2-11.3.1.aarch64.rpm ffmpeg-private-devel-3.4.2-11.3.1.aarch64.rpm libavcodec-devel-3.4.2-11.3.1.aarch64.rpm libavcodec57-3.4.2-11.3.1.aarch64.rpm libavdevice-devel-3.4.2-11.3.1.aarch64.rpm libavdevice57-3.4.2-11.3.1.aarch64.rpm libavfilter-devel-3.4.2-11.3.1.aarch64.rpm libavfilter6-3.4.2-11.3.1.aarch64.rpm libavformat-devel-3.4.2-11.3.1.aarch64.rpm libavformat57-3.4.2-11.3.1.aarch64.rpm libavresample-devel-3.4.2-11.3.1.aarch64.rpm libavresample3-3.4.2-11.3.1.aarch64.rpm libavutil-devel-3.4.2-11.3.1.aarch64.rpm libavutil55-3.4.2-11.3.1.aarch64.rpm libpostproc-devel-3.4.2-11.3.1.aarch64.rpm libpostproc54-3.4.2-11.3.1.aarch64.rpm libswresample-devel-3.4.2-11.3.1.aarch64.rpm libswresample2-3.4.2-11.3.1.aarch64.rpm libswscale-devel-3.4.2-11.3.1.aarch64.rpm libswscale4-3.4.2-11.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-2547 Recommended update for fence-agents moderate SUSE Updates openSUSE-SLE 15.3 This update for fence-agents fixes the following issues: - Corrections to support Azure SDK greater than 15 - including backward compatibility (bsc#1185058) - Fixed an issue when libvirt breaks the connection in every 30 seconds. - ECO: Update fence-agents. (jsc#SLE-18182) - Add upstream PR to aws-vpc-move-ip and apply required resource and fence agent patches. (jsc#SLE-17998) - Fixed an issue when fence-agent does not restart the node properly. (bsc#1182701) - Major rework of the original agent: * fence_gce: default method moved back to powercycle (#389) * fence_gce: make serviceaccount work with new libraries * fence_virt*: simple_auth: use %zu for sizeof to avoid failing verbose builds on some archs * configure: dont fail when --with-agents contains virt * fence_mpath: watchdog retries support * fencing: add multi plug support for reboot-action * fence_redfish: add missing diag logic * fencing: fix issue with hardcoded help text length for metadata * fencing: add stonith_status_sleep parameter for sleep between status calls during a STONITH action * fence_aws: add filter parameter to be able to limit which nodes are listed * virt: fix a bunch of coverity scan errors in ip_lookup * virt: make sure to provide an empty default to strncpy * virt: make sure buffers are big enough for 0 byte end string * virt: increase buffer size to avoid overruns * virt: check return code in virt-sockets * virt: fix plugin (minor) memory leak and plug in load race * virt: attempt to open file directly and avoid race condition * virt: fix different coverity scan errors in common/tcp * virt: cleanup deadcode in client/vsock * virt: cleanup deadcode in client/tcp * virt: fix potential buffer overrun * virt: fix mcast coverity scan errors * virt: drop pm-fence plugin * virt: drop libvirt-qmf plugin * virt: drop null plugin * virt: drop fence_virtd non-modular build * virt: fix plugin installation regression on upgrades * fence_virt: metadata fixes, implement manpage generation and metadata/delay/rng checks * virt: make sure variable is initialized * zvm: reformat fence_zvm to avoid gcc warnings * virt: drop -Werror to avoid unnecessary failures * virt: disable -Wunused for yy generated files * virt: disable fence-virt on bsd variants * virt: merge spec files * build: fix more gcc warnings * build: remove unused / obsoleted options * build: fix some annoying warnings at ./autogen.sh time * virt: move all virt CFLAGS/LDFLAGS in the right location * virt: fix unused gcc warnings and re-enable all build warnings * virt: fix write-strings gcc warnings * virt: fix pointer-arith gcc warnings * virt: fix declaration-after-statement gcc warnings * virt: fix build with -Wmissing-prototypes * build: don´t override clean target * virt: plug fence_virt into the build * virt: allow fence_virt build to be optional * virt: drop support for LSB init script * virt: collect docs in one location * virt: remove unnecessary files and move build macros in place * Ignore fence-virt man pages * Move fence_virt to the correct location * spec: use python3 path for newer releases * spec: undo autosetup change that breaks builds w/git commit hashes * Ignore unknown options on stdin * fence_gce: support google-auth and oauthlib and fallback to deprecated libs when not available * spec: add aliyun subpackage and fence_mpath_check* to mpath subpackage * fence_gce: Adds cloud-platform scope for bare metal API and optional proxy flags (#382) * fence_virt: Fix minor typo in metadata * fence_gce: update module reqs for SLES 15 (#383) * Add fence_ipmilanplus as fence_ipmilan wrapper always enabling lanplus * fence_redfish: Add diag action * fence_vbox: updated metadata file * fence_vbox: do not flood host account with vboxmanage calls * fence_aws/fence_gce: allow building without cloud libs * fence_gce: default to onoff * fence_lpar: Make --managed a required option * fence_zvmip: fix shell-timeout when using new disable-timeout parameter * Adds service account authentication to GCE fence agent * spec: dont build -all subpackage as noarch * fence_virt: add plug parameter that obsoletes old port parameter * Try to detect directory for initscripts configuration * Accept SIGTERM while waiting for initialization. * Add man pages to fence_virtd service file. * Fix spelling error in fence_virt.conf.5 * build: fix BRs for suse distros * build: remove ExclusiveArch * build: removed gcc-c++ BR * build: add spec-file and rpm build targets * build: cleanup/improvements to reworked build system * [build] rework build system to use automake/libtool * fence_virtd: Fix segfault in vl_get when no domains are found * fence_virt: fix core dump * build: harden and make it possible to build with -fPIE * fence_virt: dont report success for incorrect parameters * fence_virt: mcast: config: Warn when provided mcast addr is not used * fence_virtd: Return control to main loop on select interruption * fence-virtd: Add missing vsock makefile bits * fence-virt: Add vsock support * fence_virtd: Fix transposed arguments in startup message * fence_virt: Rename challenge functions * fence_virtd: Cleanup: remove unused configuration options * fence_virt: Remove remaining references to checkpoints * fence_virt: Remove remaining references to checkpoints * fence-virt: Format string cleanup * fence_virtd: Implment hostlist for the cpg backend * fence_virt: Fix logic error in fence_xvm * fence_virtd: Cleanup config module * fence_virtd: cpg: Fail initialization if no hypervisor connections * fence_virtd: Make the libvirt backend survive libvirtd restarts * fence_virtd: Allow the cpg backend to survive libvirt failures * fence_virtd: cpg: Fix typo * fence-virtd: Add cpg-virt backend plugin * fence_virtd: Remove checkpoint, replace it with a CPG only plugin * fence-virt: Bump version * fence_virtd: Add better debugging messages for the TCP listner * fence_virtd: Fix potential unlocked pthread_cond_timedwait() * fence-virtd: Cleanup small memory leak * fence_virtd: Fix select logic in listener plugins * Factor out common libvirt code so that it can be reused by multiple backends * Document the fence_virtd -p command line flag * fence_virtd: Log an error when startup fails * Retry writes in the TCP, mcast, and serial listener plugins while sending a response to clients, if the write fails or is incomplete. * Make the packet authentication code more resilient in the face of transient failures. * Disable the libvirt-qmf backend by default * Bump the versions of the libvirt and checkpoint plugins * fence-virtd: Enable TCP listener plugin by default * fence-virtd: Cleanup documentation of the TCP listener * fence_xvm/fence_virt: Add support for the validate-all status op * fence-virt: Add list-status command to man page and metadata * fence-virt: Cleanup numeric argument parsing * fence-virt: Log message to syslog in addition to stdout/stderr * fence-virt: Permit explicitly setting delay to 0 * fence-virt: Add 'list-status' operation for compat with other agents * Allow fence_virtd to run as non-root * Remove delay from the status, monitor and list functions * Resolves serveral problems in checkpoint plugin, making it functional. * daemon_init: Removed PID check and update * fence_virtd: drop legacy SysVStartPriority from service unit * fence-virt: client: Do not truncate VM domains in list output * client: fix "delay" parameter checking (copy-paste) * fence-virt: Fix broken restrictions on the port ranges * Clarify debug message * fence-virtd: Use perror only if the last system call returns an error. * fence-virtd: Fix printing wrong system call in perror * fence-virtd: Allow multiple hypervisors for the libvirt backend * fence-virt: Don't overrwrite saved errno * fence-virt: Fix small memory leak in the config module * fence-virt: Fix mismatched sizeof in memset call * fence-virt: Send complete hostlist info * fence-virt: Clarify the path option in serial mode * Bump version * fence-virt: Bump version * fence_virtd: Fix broken systemd service file * fence_virt/fence_xvm: Print status when invoked with -o status * fence-virt: Fix for missed libvirtd events * fence-virt: Fail properly if unable to bind the listener socket * client: dump all arguments structure in debug mode * Drop executable flag for man pages (finally) * Honor implicit "ip_family=auto" in fence_xvm w/IPv6 mult.addr. * Fix using bad struct item for auth algorithm * Drop executable flag for man pages * use bswap_X() instead of b_swapX() * fence_virtd: Fix memcpy size params in the TCP plugin * Revert "fence-virt: Fix possible descriptor leak" * fence_virtd: Return success if a domain exists but is already off. * fence-virt: Add back missing tcp_listener.h file * fence-virt: Fix a few fd leaks * fence-virt: Fix free of uninitialized variable * fence-virt: Fix possible null pointer dereference * fence-virt: Fix memory leak * fence-virt: Fix fd leak when finding local addresses * fence-virt: Fix possible descriptor leak * fence-virt: Fix possible fd leak * fence-virt: Fix null pointer deref * fence-virt: Explicitly set delay to 0 * fence-virt: Fix return with lock held * fence_virt: Fix typo in fence_virt(8) man page * fence_virt: Return failure for nonexistent domains * Improve fence_virt.conf man page description of 'hash' * Add a TCP listener plugin for use with viosproxy * In serial mode, return failure if the other end closes the connection before we see SERIAL_MAGIC in the reply or timeout. * Stop linking against unnecessary QPid libs. * Update libvirt-qmf plugin and docs * Fix crash when we fail to read key file. * Fix erroneous man page XML * Add 'interface' directive to example.conf * Add old wait_for_backend directive handling & docs * Return proper error if we can't set up our socket. * Fix startup in systemd environments * Add systemd unit file and generation * Don't override user's pick for backend server module * Use libvirt as default in shipped config * Clean up compiler warnings * Fix serial domain handling * Fix monolithic build * Clean up build and comments. * Add missing pm_fence source code * Disable CMAN / checkpoint build by default * Rename libvirt-qpid -> libvirt-qmf * Fix static analysis errors * Reword assignment to appease static analyzers * Handle return value from virDomainGetInfo * Fix bad sizeof() * Make listen() retry * Add map_check on 'status' action * Update README * Don't reference out-of-scope temporary * Ensure we don't try to strdup() or atoi() on NULL * Add libvirt-qmf support to the libvirt-qpid plugin * Convert libvirt-qpid plugin to QMFv2 * Fix incorrect return value on hash mismatch * Fix error getting status from libvirt-qpid plugin * Make fence-virt requests endian clean * Fix input parsing to allow domain again * Provide 'domain' in metadata output for compatibility * High: Fix UUID lookups in checkpoint backend * Curtail 'list' operation requests * Fix man page references: fence_virtd.conf -> fence_virt.conf * Add 'list' operation for plugins; fix missing getopt line * Fix build with newer versions of qpid * Make configure.in actually disable plugins * Rename parameters to match other fencing agents * Fix fence_xvm man page to point to the right location * client: Clarify license in serial.c * Return 2 for 'off' like other fencing agents * Reset flags before returning from connect_nb * Use nonblocking connect to vmchannel sockets * More parity with other fencing agents' parameters * Fix memory leaks found with valgrind * Add basic daemon functions * Fix bug in path pruning support for serial plugin * Fix libvirt-qpid bugs found while testing * Fix segfault caused by invalid map pointer assignment * Fix another compiler warning * Fix build warnings in client/serial.c * Add 'monitor' as an alias for 'status' * Add serial listener to configuration utility * Make serial/vmchannel module enabled by default * Add missing 'metadata' option to help text * Add missing static_map.h * Add metadata support to fence_xvm/fence_virt * Allow IPs to be members of groups * Allow use of static mappings w/ mcast listener * Make 'path' be a directory * Remove useless debug printfs * Enable VM Channel support in serial plugin * Pass source VM UUID (if known) to backend * Mirror libvirt-qpid's settings in libvirt-qpid plugin * libvirt-qpid: clean up global variable * Enable a configurable host/port on libvirt-qpid plugin * Minor config utility cleanups * Remove unnecessary name_mode from multicast plugin * Add prototypes and clean up build warnings * Use seqno in serial requests * Minor debugging message cleanup * Fix build error due to improper value * Static map support and permissions reporting * Sync up on SERIAL_MAGIC while waiting for a response * Don't build serial vmchannel module by default * Initial checkin of serial server-side support * Fix fence_virt.conf man page name * Add Fedora init script * Compiler warning cleanups in virt-serial.c * Add wait-for-backend mode * Fix up help text for clients * Minor XML cleanups, add missing free() call * add missing module_path to fence_virtd.conf.5 * Add capabilities to virt-serial * Note that serial support is experimental * Add a serial.so build target * Add vmchannel serial event interface * Split fence_virt vs. fence_xvm args * Add static map functions. * Fix build warning due to missing #include * Fix multiple query code * Better config query & multiple value/tag support * Add simple configuration mode * Allow setting config values to NULL to clear them * Clean up example config file * Sort plugins by type when printing them * Revert "Sort plugins by type when printing them" * Sort plugins by type when printing them * Clean up some configuration plugin information * add empty line between names * Make libvirt to automatically use uuid or names * Improve error reporting * Fix build for hostlist functionality * Hostlist functionality for libvirt, libvirt-qpid * Work around broken nspr headers * Fix installation target for man pages * Add man page build infrastructure * Make fence_xvm compatibility mode enabled by default * Fix libvirt / mcast support for name_mode * Fix agent option parsing * Fix dlsym mapping of C++ module * Make uuids work with libvirt-qpid * Fix uninitialized variable causing false returns * Add 'help' to fence_virtd * Fix libvirt-qpid build * Fix libvirt-qpid build * Add libvirt-qpid build target * Initial checking of libvirt-qpid plugin * Fix build on i686 * Make symlink/compatibilty mode disabled by default * Add simple tarball / release script * Use immediate resolution of symbols * Example config tweaks * Use sysconfdir for /etc/fence_virt.conf * Fix package name and install locations * Add 'maintainer-clean' target * Fix build errors on Fedora * Add missing header file * Ignore automake error * Make the build script actually build * Make cluster mode plugin work * Add basic cpg stuff for later * Enable 'on' operation for libvirt backend * Clean up modular build * Minor build cleanups * Yet more build fixes * More build cleanups * Build cleanups * Initial port to autoconf * Add checkpoint.c stub functions * Add sequence numbers to requests for tracking * Include missing include * Call generic history functions * Make history functions generic * Make debugging work from modules again * Revert "Fix build issue breaking debug printing from modules" * Fix build issue breaking debug printing from modules * Fix libvirt backend; VALIDATE was wrong * Cleanups, add daemon support * Add simple 'null' skeleton backend plugin * Make all plugins dynamically loaded. * Fix error message * Remove dummy serial prototypes * Remove modules in 'make clean' * Make listeners plugins. * Move name_mode to fence_virtd block * Add name_mode to example.conf * Move VM naming scheme to top level of config * Enable UUID use in libvirt.c * Move options.c to client directory * Drop duplicate fencing requests * Don't require specifying an interface in fence_virt.conf * Fix empty node parsing * Actually use the default port by default * Don't overwrite config files * Install modules, too. * Add temporary 'make install' target * Make a default configuration file * Make mcast work with UUIDs * Add checkpoint.so to the build * Fix missing carriage returns on debug prints * Add architecture overview description * Make serial_init match mcast_init. * Make multicast use config file * Integrate config file processing * Create server-side plugin architecture * Make libvirt a built-in plugin * Fix header in serial.c. fence-agents-4.9.0+git.1624456340.8d746be9-3.5.1.src.rpm fence-agents-4.9.0+git.1624456340.8d746be9-3.5.1.x86_64.rpm fence-agents-amt_ws-4.9.0+git.1624456340.8d746be9-3.5.1.x86_64.rpm fence-agents-devel-4.9.0+git.1624456340.8d746be9-3.5.1.x86_64.rpm fence-agents-4.9.0+git.1624456340.8d746be9-3.5.1.s390x.rpm fence-agents-amt_ws-4.9.0+git.1624456340.8d746be9-3.5.1.s390x.rpm fence-agents-devel-4.9.0+git.1624456340.8d746be9-3.5.1.s390x.rpm fence-agents-4.9.0+git.1624456340.8d746be9-3.5.1.ppc64le.rpm fence-agents-amt_ws-4.9.0+git.1624456340.8d746be9-3.5.1.ppc64le.rpm fence-agents-devel-4.9.0+git.1624456340.8d746be9-3.5.1.ppc64le.rpm fence-agents-4.9.0+git.1624456340.8d746be9-3.5.1.aarch64.rpm fence-agents-amt_ws-4.9.0+git.1624456340.8d746be9-3.5.1.aarch64.rpm fence-agents-devel-4.9.0+git.1624456340.8d746be9-3.5.1.aarch64.rpm openSUSE-SLE-15.3-2021-2165 Recommended update for obs-service-kiwi_metainfo_helper moderate SUSE Updates openSUSE-SLE 15.3 This update for obs-service-kiwi_metainfo_helper fixes the following issues: - Provide various modified spellings of 'PRETTY_NAME' useful for writing KIWI image definitions with reduced diff between SLE, Leap and Tumbleweed. (Needed for jsc#SLE-12986) - Update README and service definition XML to reflect all variables. - Don't enable pipefail: rpm got SIGPIPE because grep -q exits early and closes the other end, which made the whole expression fail. - Read os-release from the to be installed RPMs. This avoids pulling in distribution-release when not necessary. (bsc#1180263) obs-service-kiwi_metainfo_helper-0.3-1.12.1.noarch.rpm obs-service-kiwi_metainfo_helper-0.3-1.12.1.src.rpm openSUSE-SLE-15.3-2021-2315 Recommended update for lsvpd moderate SUSE Updates openSUSE-SLE 15.3 This update for lsvpd fixes the following issues: - Fixed an issue when usb.ids file not found. (bsc#1171188, bsc#1187665) lsvpd-1.7.11-3.9.1.ppc64le.rpm lsvpd-1.7.11-3.9.1.src.rpm openSUSE-SLE-15.3-2021-2385 Recommended update for virt-manager moderate SUSE Updates openSUSE-SLE 15.3 This update for virt-manager fixes the following issues: - Upstream bug fixes (bsc#1027942) - Speeds up the volumeupload case for a local URI for the cost of some higher runtime memory - Unable to open graphical console of running virtual machine - Fix error message format string - Remove some unnecessary 'max_length' annotations - Fix forgetting password from keyring - Add support for detecting SUSE Linux Enterprise Micro. virt-install-3.2.0-7.4.1.noarch.rpm virt-manager-3.2.0-7.4.1.noarch.rpm virt-manager-3.2.0-7.4.1.src.rpm virt-manager-common-3.2.0-7.4.1.noarch.rpm openSUSE-SLE-15.3-2021-2350 Recommended update for lttng-modules moderate SUSE Updates openSUSE-SLE 15.3 This update for lttng-modules rebuilds it with the a new UEFI signing key. (bsc#1182570) lttng-modules-2.10.10-5.7.1.src.rpm lttng-modules-kmp-rt-2.10.10_k5.3.18_8.10-5.7.1.x86_64.rpm openSUSE-SLE-15.3-2021-2454 Security update for transfig moderate SUSE Updates openSUSE-SLE 15.3 This update for transfig fixes the following issues: Update to version 3.2.8, including fixes for - CVE-2021-3561: overflow in fig2dev/read.c in function read_colordef() (bsc#1186329). - CVE-2019-19797: out-of-bounds write in read_colordef in read.c (bsc#1159293). - CVE-2019-19555: stack-based buffer overflow because of an incorrect sscanf (bsc#1161698). - CVE-2019-19746: segmentation fault and out-of-bounds write because of an integer overflow via a large arrow type (bsc#1159130). - CVE-2019-14275: stack-based buffer overflow in the calc_arrow function in bound.c (bsc#1143650). transfig-3.2.8a-4.12.2.src.rpm transfig-3.2.8a-4.12.2.x86_64.rpm transfig-3.2.8a-4.12.2.s390x.rpm transfig-3.2.8a-4.12.2.ppc64le.rpm transfig-3.2.8a-4.12.2.aarch64.rpm openSUSE-SLE-15.3-2021-2293 Security update for jdom2 important SUSE Updates openSUSE-SLE 15.3 This update for jdom2 fixes the following issues: - CVE-2021-33813: XXE issue in SAXBuilder can cause a denial of service via a crafted HTTP request (bsc#1187446) jdom2-2.0.6-3.3.1.noarch.rpm jdom2-2.0.6-3.3.1.src.rpm jdom2-javadoc-2.0.6-3.3.1.noarch.rpm openSUSE-SLE-15.3-2021-2255 Recommended update for myspell-dictionaries, ucpp moderate SUSE Updates openSUSE-SLE 15.3 This update rereleases myspell-dictionaries and ucpp for SUSE Linux Enterprise 15 sp3 to fix a migration issue. libucpp13-1.3.4-3.4.1.x86_64.rpm myspell-af_NA-20191219-3.21.1.noarch.rpm myspell-af_ZA-20191219-3.21.1.noarch.rpm myspell-an-20191219-3.21.1.noarch.rpm myspell-an_ES-20191219-3.21.1.noarch.rpm myspell-ar-20191219-3.21.1.noarch.rpm myspell-ar_AE-20191219-3.21.1.noarch.rpm myspell-ar_BH-20191219-3.21.1.noarch.rpm myspell-ar_DZ-20191219-3.21.1.noarch.rpm myspell-ar_EG-20191219-3.21.1.noarch.rpm myspell-ar_IQ-20191219-3.21.1.noarch.rpm myspell-ar_JO-20191219-3.21.1.noarch.rpm myspell-ar_KW-20191219-3.21.1.noarch.rpm myspell-ar_LB-20191219-3.21.1.noarch.rpm myspell-ar_LY-20191219-3.21.1.noarch.rpm myspell-ar_MA-20191219-3.21.1.noarch.rpm myspell-ar_OM-20191219-3.21.1.noarch.rpm myspell-ar_QA-20191219-3.21.1.noarch.rpm myspell-ar_SA-20191219-3.21.1.noarch.rpm myspell-ar_SD-20191219-3.21.1.noarch.rpm myspell-ar_SY-20191219-3.21.1.noarch.rpm myspell-ar_TN-20191219-3.21.1.noarch.rpm myspell-ar_YE-20191219-3.21.1.noarch.rpm myspell-be_BY-20191219-3.21.1.noarch.rpm myspell-bg_BG-20191219-3.21.1.noarch.rpm myspell-bn_BD-20191219-3.21.1.noarch.rpm myspell-bn_IN-20191219-3.21.1.noarch.rpm myspell-bo-20191219-3.21.1.noarch.rpm myspell-bo_CN-20191219-3.21.1.noarch.rpm myspell-bo_IN-20191219-3.21.1.noarch.rpm myspell-br_FR-20191219-3.21.1.noarch.rpm myspell-bs-20191219-3.21.1.noarch.rpm myspell-bs_BA-20191219-3.21.1.noarch.rpm myspell-ca-20191219-3.21.1.noarch.rpm myspell-ca_AD-20191219-3.21.1.noarch.rpm myspell-ca_ES-20191219-3.21.1.noarch.rpm myspell-ca_ES_valencia-20191219-3.21.1.noarch.rpm myspell-ca_FR-20191219-3.21.1.noarch.rpm myspell-ca_IT-20191219-3.21.1.noarch.rpm myspell-cs_CZ-20191219-3.21.1.noarch.rpm myspell-da_DK-20191219-3.21.1.noarch.rpm myspell-de-20191219-3.21.1.noarch.rpm myspell-de_AT-20191219-3.21.1.noarch.rpm myspell-de_CH-20191219-3.21.1.noarch.rpm myspell-de_DE-20191219-3.21.1.noarch.rpm myspell-dictionaries-20191219-3.21.1.src.rpm myspell-dictionaries-20191219-3.21.1.x86_64.rpm myspell-el_GR-20191219-3.21.1.noarch.rpm myspell-en-20191219-3.21.1.noarch.rpm myspell-en_AU-20191219-3.21.1.noarch.rpm myspell-en_BS-20191219-3.21.1.noarch.rpm myspell-en_BZ-20191219-3.21.1.noarch.rpm myspell-en_CA-20191219-3.21.1.noarch.rpm myspell-en_GB-20191219-3.21.1.noarch.rpm myspell-en_GH-20191219-3.21.1.noarch.rpm myspell-en_IE-20191219-3.21.1.noarch.rpm myspell-en_IN-20191219-3.21.1.noarch.rpm myspell-en_JM-20191219-3.21.1.noarch.rpm myspell-en_MW-20191219-3.21.1.noarch.rpm myspell-en_NA-20191219-3.21.1.noarch.rpm myspell-en_NZ-20191219-3.21.1.noarch.rpm myspell-en_PH-20191219-3.21.1.noarch.rpm myspell-en_TT-20191219-3.21.1.noarch.rpm myspell-en_US-20191219-3.21.1.noarch.rpm myspell-en_ZA-20191219-3.21.1.noarch.rpm myspell-en_ZW-20191219-3.21.1.noarch.rpm myspell-es-20191219-3.21.1.noarch.rpm myspell-es_AR-20191219-3.21.1.noarch.rpm myspell-es_BO-20191219-3.21.1.noarch.rpm myspell-es_CL-20191219-3.21.1.noarch.rpm myspell-es_CO-20191219-3.21.1.noarch.rpm myspell-es_CR-20191219-3.21.1.noarch.rpm myspell-es_CU-20191219-3.21.1.noarch.rpm myspell-es_DO-20191219-3.21.1.noarch.rpm myspell-es_EC-20191219-3.21.1.noarch.rpm myspell-es_ES-20191219-3.21.1.noarch.rpm myspell-es_GT-20191219-3.21.1.noarch.rpm myspell-es_HN-20191219-3.21.1.noarch.rpm myspell-es_MX-20191219-3.21.1.noarch.rpm myspell-es_NI-20191219-3.21.1.noarch.rpm myspell-es_PA-20191219-3.21.1.noarch.rpm myspell-es_PE-20191219-3.21.1.noarch.rpm myspell-es_PR-20191219-3.21.1.noarch.rpm myspell-es_PY-20191219-3.21.1.noarch.rpm myspell-es_SV-20191219-3.21.1.noarch.rpm myspell-es_UY-20191219-3.21.1.noarch.rpm myspell-es_VE-20191219-3.21.1.noarch.rpm myspell-et_EE-20191219-3.21.1.noarch.rpm myspell-fr_BE-20191219-3.21.1.noarch.rpm myspell-fr_CA-20191219-3.21.1.noarch.rpm myspell-fr_CH-20191219-3.21.1.noarch.rpm myspell-fr_FR-20191219-3.21.1.noarch.rpm myspell-fr_LU-20191219-3.21.1.noarch.rpm myspell-fr_MC-20191219-3.21.1.noarch.rpm myspell-gd_GB-20191219-3.21.1.noarch.rpm myspell-gl-20191219-3.21.1.noarch.rpm myspell-gl_ES-20191219-3.21.1.noarch.rpm myspell-gu_IN-20191219-3.21.1.noarch.rpm myspell-gug-20191219-3.21.1.noarch.rpm myspell-gug_PY-20191219-3.21.1.noarch.rpm myspell-he_IL-20191219-3.21.1.noarch.rpm myspell-hi_IN-20191219-3.21.1.noarch.rpm myspell-hr_HR-20191219-3.21.1.noarch.rpm myspell-hu_HU-20191219-3.21.1.noarch.rpm myspell-id-20191219-3.21.1.noarch.rpm myspell-id_ID-20191219-3.21.1.noarch.rpm myspell-is-20191219-3.21.1.noarch.rpm myspell-is_IS-20191219-3.21.1.noarch.rpm myspell-it_IT-20191219-3.21.1.noarch.rpm myspell-kmr_Latn-20191219-3.21.1.noarch.rpm myspell-kmr_Latn_SY-20191219-3.21.1.noarch.rpm myspell-kmr_Latn_TR-20191219-3.21.1.noarch.rpm myspell-lightproof-en-20191219-3.21.1.x86_64.rpm myspell-lightproof-hu_HU-20191219-3.21.1.x86_64.rpm myspell-lightproof-pt_BR-20191219-3.21.1.x86_64.rpm myspell-lightproof-ru_RU-20191219-3.21.1.x86_64.rpm myspell-lo_LA-20191219-3.21.1.noarch.rpm myspell-lt_LT-20191219-3.21.1.noarch.rpm myspell-lv_LV-20191219-3.21.1.noarch.rpm myspell-nb_NO-20191219-3.21.1.noarch.rpm myspell-ne_NP-20191219-3.21.1.noarch.rpm myspell-nl_BE-20191219-3.21.1.noarch.rpm myspell-nl_NL-20191219-3.21.1.noarch.rpm myspell-nn_NO-20191219-3.21.1.noarch.rpm myspell-no-20191219-3.21.1.noarch.rpm myspell-oc_FR-20191219-3.21.1.noarch.rpm myspell-pl_PL-20191219-3.21.1.noarch.rpm myspell-pt_AO-20191219-3.21.1.noarch.rpm myspell-pt_BR-20191219-3.21.1.noarch.rpm myspell-pt_PT-20191219-3.21.1.noarch.rpm myspell-ro-20191219-3.21.1.noarch.rpm myspell-ro_RO-20191219-3.21.1.noarch.rpm myspell-ru_RU-20191219-3.21.1.noarch.rpm myspell-si_LK-20191219-3.21.1.noarch.rpm myspell-sk_SK-20191219-3.21.1.noarch.rpm myspell-sl_SI-20191219-3.21.1.noarch.rpm myspell-sq_AL-20191219-3.21.1.noarch.rpm myspell-sr-20191219-3.21.1.noarch.rpm myspell-sr_CS-20191219-3.21.1.noarch.rpm myspell-sr_Latn_CS-20191219-3.21.1.noarch.rpm myspell-sr_Latn_RS-20191219-3.21.1.noarch.rpm myspell-sr_RS-20191219-3.21.1.noarch.rpm myspell-sv_FI-20191219-3.21.1.noarch.rpm myspell-sv_SE-20191219-3.21.1.noarch.rpm myspell-sw_TZ-20191219-3.21.1.noarch.rpm myspell-te-20191219-3.21.1.noarch.rpm myspell-te_IN-20191219-3.21.1.noarch.rpm myspell-th_TH-20191219-3.21.1.noarch.rpm myspell-tr-20191219-3.21.1.noarch.rpm myspell-tr_TR-20191219-3.21.1.noarch.rpm myspell-uk_UA-20191219-3.21.1.noarch.rpm myspell-vi-20191219-3.21.1.noarch.rpm myspell-vi_VN-20191219-3.21.1.noarch.rpm myspell-zu_ZA-20191219-3.21.1.noarch.rpm ucpp-1.3.4-3.4.1.src.rpm ucpp-1.3.4-3.4.1.x86_64.rpm ucpp-devel-1.3.4-3.4.1.x86_64.rpm libucpp13-1.3.4-3.4.1.s390x.rpm myspell-dictionaries-20191219-3.21.1.s390x.rpm myspell-lightproof-en-20191219-3.21.1.s390x.rpm myspell-lightproof-hu_HU-20191219-3.21.1.s390x.rpm myspell-lightproof-pt_BR-20191219-3.21.1.s390x.rpm myspell-lightproof-ru_RU-20191219-3.21.1.s390x.rpm ucpp-1.3.4-3.4.1.s390x.rpm ucpp-devel-1.3.4-3.4.1.s390x.rpm libucpp13-1.3.4-3.4.1.ppc64le.rpm myspell-dictionaries-20191219-3.21.1.ppc64le.rpm myspell-lightproof-en-20191219-3.21.1.ppc64le.rpm myspell-lightproof-hu_HU-20191219-3.21.1.ppc64le.rpm myspell-lightproof-pt_BR-20191219-3.21.1.ppc64le.rpm myspell-lightproof-ru_RU-20191219-3.21.1.ppc64le.rpm ucpp-1.3.4-3.4.1.ppc64le.rpm ucpp-devel-1.3.4-3.4.1.ppc64le.rpm libucpp13-1.3.4-3.4.1.aarch64.rpm myspell-dictionaries-20191219-3.21.1.aarch64.rpm myspell-lightproof-en-20191219-3.21.1.aarch64.rpm myspell-lightproof-hu_HU-20191219-3.21.1.aarch64.rpm myspell-lightproof-pt_BR-20191219-3.21.1.aarch64.rpm myspell-lightproof-ru_RU-20191219-3.21.1.aarch64.rpm ucpp-1.3.4-3.4.1.aarch64.rpm ucpp-devel-1.3.4-3.4.1.aarch64.rpm openSUSE-SLE-15.3-2021-2805 Recommended update for dracut moderate SUSE Updates openSUSE-SLE 15.3 This update for dracut fixes the following issues: - Correct man pages regarding the 'INITRD_MODULES' as some parts already invalid. (bsc#1187115) - Fixed an issue when running mkinitrd inproper arch is being expanded. (bsc#1185615) - Fix for 'suse-initrd' exclude modules that are built-in to prevent failing modules to be installed. (bsc#1185646) - Fix informing on usage of obsolete -f parameter. (bsc#1187470) - Fix reference to 'insmodpost module' in the documentation. (bsc#1187774) dracut-049.1+suse.203.g8ee14a90-3.35.1.src.rpm dracut-049.1+suse.203.g8ee14a90-3.35.1.x86_64.rpm dracut-extra-049.1+suse.203.g8ee14a90-3.35.1.x86_64.rpm dracut-fips-049.1+suse.203.g8ee14a90-3.35.1.x86_64.rpm dracut-ima-049.1+suse.203.g8ee14a90-3.35.1.x86_64.rpm dracut-tools-049.1+suse.203.g8ee14a90-3.35.1.x86_64.rpm dracut-049.1+suse.203.g8ee14a90-3.35.1.s390x.rpm dracut-extra-049.1+suse.203.g8ee14a90-3.35.1.s390x.rpm dracut-fips-049.1+suse.203.g8ee14a90-3.35.1.s390x.rpm dracut-ima-049.1+suse.203.g8ee14a90-3.35.1.s390x.rpm dracut-tools-049.1+suse.203.g8ee14a90-3.35.1.s390x.rpm dracut-049.1+suse.203.g8ee14a90-3.35.1.ppc64le.rpm dracut-extra-049.1+suse.203.g8ee14a90-3.35.1.ppc64le.rpm dracut-fips-049.1+suse.203.g8ee14a90-3.35.1.ppc64le.rpm dracut-ima-049.1+suse.203.g8ee14a90-3.35.1.ppc64le.rpm dracut-tools-049.1+suse.203.g8ee14a90-3.35.1.ppc64le.rpm dracut-049.1+suse.203.g8ee14a90-3.35.1.aarch64.rpm dracut-extra-049.1+suse.203.g8ee14a90-3.35.1.aarch64.rpm dracut-fips-049.1+suse.203.g8ee14a90-3.35.1.aarch64.rpm dracut-ima-049.1+suse.203.g8ee14a90-3.35.1.aarch64.rpm dracut-tools-049.1+suse.203.g8ee14a90-3.35.1.aarch64.rpm openSUSE-SLE-15.3-2021-2258 Recommended update for buildah moderate SUSE Updates openSUSE-SLE 15.3 This update for buildah fixes the following issues: - buildah requires cni for usage (bsc#1187812) buildah-1.17.0-3.9.1.src.rpm buildah-1.17.0-3.9.1.x86_64.rpm buildah-1.17.0-3.9.1.s390x.rpm buildah-1.17.0-3.9.1.ppc64le.rpm buildah-1.17.0-3.9.1.aarch64.rpm openSUSE-SLE-15.3-2021-2254 Recommended update for raptor moderate SUSE Updates openSUSE-SLE 15.3 This update for raptor fixes the following issue: - raptor was not delivered correctly for openSUSE Leap 15.3 (bsc#1186642) libraptor-devel-2.0.15-9.7.1.x86_64.rpm libraptor2-0-2.0.15-9.7.1.x86_64.rpm libraptor2-0-32bit-2.0.15-9.7.1.x86_64.rpm raptor-2.0.15-9.7.1.src.rpm raptor-2.0.15-9.7.1.x86_64.rpm libraptor-devel-2.0.15-9.7.1.s390x.rpm libraptor2-0-2.0.15-9.7.1.s390x.rpm raptor-2.0.15-9.7.1.s390x.rpm libraptor-devel-2.0.15-9.7.1.ppc64le.rpm libraptor2-0-2.0.15-9.7.1.ppc64le.rpm raptor-2.0.15-9.7.1.ppc64le.rpm libraptor-devel-2.0.15-9.7.1.aarch64.rpm libraptor2-0-2.0.15-9.7.1.aarch64.rpm raptor-2.0.15-9.7.1.aarch64.rpm openSUSE-SLE-15.3-2021-2266 Recommended update for clamav important SUSE Updates openSUSE-SLE 15.3 This update for clamav fixes the following issue: - In the "clamscan" and "clamdscan" manpages, document that files over a certain size by default will silently not be scanned and how this can be adjusted. (bsc#1187509) clamav-0.103.2-3.29.1.src.rpm clamav-0.103.2-3.29.1.x86_64.rpm clamav-devel-0.103.2-3.29.1.x86_64.rpm libclamav9-0.103.2-3.29.1.x86_64.rpm libfreshclam2-0.103.2-3.29.1.x86_64.rpm clamav-0.103.2-3.29.1.s390x.rpm clamav-devel-0.103.2-3.29.1.s390x.rpm libclamav9-0.103.2-3.29.1.s390x.rpm libfreshclam2-0.103.2-3.29.1.s390x.rpm clamav-0.103.2-3.29.1.ppc64le.rpm clamav-devel-0.103.2-3.29.1.ppc64le.rpm libclamav9-0.103.2-3.29.1.ppc64le.rpm libfreshclam2-0.103.2-3.29.1.ppc64le.rpm clamav-0.103.2-3.29.1.aarch64.rpm clamav-devel-0.103.2-3.29.1.aarch64.rpm libclamav9-0.103.2-3.29.1.aarch64.rpm libfreshclam2-0.103.2-3.29.1.aarch64.rpm openSUSE-SLE-15.3-2021-2557 Recommended update for openCryptoki moderate SUSE Updates openSUSE-SLE 15.3 This update for openCryptoki fixes the following issues: - Fixed a segmentation fault with p11sak list-key. (bsc#1182726) - Fixed an issue when soft token does not check if an EC key is valid. (bsc#1185976) openCryptoki-3.15.1-5.3.1.src.rpm openCryptoki-3.15.1-5.3.1.x86_64.rpm openCryptoki-64bit-3.15.1-5.3.1.x86_64.rpm openCryptoki-devel-3.15.1-5.3.1.x86_64.rpm openCryptoki-3.15.1-5.3.1.s390x.rpm openCryptoki-64bit-3.15.1-5.3.1.s390x.rpm openCryptoki-devel-3.15.1-5.3.1.s390x.rpm openCryptoki-3.15.1-5.3.1.ppc64le.rpm openCryptoki-64bit-3.15.1-5.3.1.ppc64le.rpm openCryptoki-devel-3.15.1-5.3.1.ppc64le.rpm openCryptoki-3.15.1-5.3.1.aarch64.rpm openCryptoki-64bit-3.15.1-5.3.1.aarch64.rpm openCryptoki-devel-3.15.1-5.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-2294 Security update for redis important SUSE Updates openSUSE-SLE 15.3 This update for redis fixes the following issues: - Upgrade to 6.0.14 - CVE-2021-32625: An integer overflow bug could be exploited by using the STRALGO LCS command to cause remote remote code execution (bsc#1186722) - Fix crash in UNLINK on a stream key with deleted consumer groups - SINTERSTORE: Add missing keyspace del event when none of the sources exist redis-6.0.14-6.5.1.src.rpm redis-6.0.14-6.5.1.x86_64.rpm redis-6.0.14-6.5.1.s390x.rpm redis-6.0.14-6.5.1.ppc64le.rpm redis-6.0.14-6.5.1.aarch64.rpm openSUSE-SLE-15.3-2021-2619 Security update for djvulibre important SUSE Updates openSUSE-SLE 15.3 This update for djvulibre fixes the following issues: - CVE-2021-3630: out-of-bounds write in DJVU:DjVuTXT:decode() in DjVuText.cpp (bsc#1187869) djvulibre-3.5.27-11.11.1.src.rpm djvulibre-3.5.27-11.11.1.x86_64.rpm djvulibre-doc-3.5.27-11.11.1.noarch.rpm libdjvulibre-devel-3.5.27-11.11.1.x86_64.rpm libdjvulibre21-3.5.27-11.11.1.x86_64.rpm djvulibre-3.5.27-11.11.1.s390x.rpm libdjvulibre-devel-3.5.27-11.11.1.s390x.rpm libdjvulibre21-3.5.27-11.11.1.s390x.rpm djvulibre-3.5.27-11.11.1.ppc64le.rpm libdjvulibre-devel-3.5.27-11.11.1.ppc64le.rpm libdjvulibre21-3.5.27-11.11.1.ppc64le.rpm djvulibre-3.5.27-11.11.1.aarch64.rpm libdjvulibre-devel-3.5.27-11.11.1.aarch64.rpm libdjvulibre21-3.5.27-11.11.1.aarch64.rpm openSUSE-SLE-15.3-2021-2662 Security update for grafana important SUSE Updates openSUSE-SLE 15.3 This update for grafana fixes the following issues: - CVE-2021-27358: unauthenticated remote attackers to trigger a Denial of Service via a remote API call (bsc#1183803) - Update to version 7.5.7: * Updated relref to "Configuring exemplars" section (#34240) (#34243) * Added exemplar topic (#34147) (#34226) * Quota: Do not count folders towards dashboard quota (#32519) (#34025) * Instructions to separate emails with semicolons (#32499) (#34138) * Docs: Remove documentation of v8 generic OAuth feature (#34018) * Annotations: Prevent orphaned annotation tags cleanup when no annotations were cleaned (#33957) (#33975) * [GH-33898] Add missing --no-cache to Dockerfile. (#33906) (#33935) * ReleaseNotes: Updated changelog and release notes for 7.5.6 (#33932) (#33936) * Stop hoisting @icons/material (#33922) * Chore: fix react-color version in yarn.lock (#33914) * "Release: Updated versions in package to 7.5.6" (#33909) * Loki: fix label browser crashing when + typed (#33900) (#33901) * Document `hide_version` flag (#33670) (#33881) * Add isolation level db configuration parameter (#33830) (#33878) * Sanitize PromLink button (#33874) (#33876) * Removed content as per MarcusE's suggestion in https://github.com/grafana/grafana/issues/33822. (#33870) (#33872) * Docs feedback: /administration/provisioning.md (#33804) (#33842) * Docs: delete from high availability docs references to removed configurations related to session storage (#33827) (#33851) * Docs: Update _index.md (#33797) (#33799) * Docs: Update installation.md (#33656) (#33703) * GraphNG: uPlot 1.6.9 (#33598) (#33612) * dont consider invalid email address a failed email (#33671) (#33681) * InfluxDB: Improve measurement-autocomplete behavior in query editor (#33494) (#33625) * add template for dashboard url parameters (#33549) (#33588) * Add note to Snapshot API doc to specify that user has to provide the entire dashboard model (#33572) (#33586) * Update team.md (#33454) (#33536) * Removed duplicate file "dashboard_folder_permissions.md (#33497) * Document customQueryParameters for prometheus datasource provisioning (#33440) (#33495) * ReleaseNotes: Updated changelog and release notes for 7.5.5 (#33473) (#33492) * Documentation: Update developer-guide.md (#33478) (#33490) * add closed parenthesis to fix a hyperlink (#33471) (#33481) - Update to version 7.5.5: * "Release: Updated versions in package to 7.5.5" (#33469) * GraphNG: Fix exemplars window position (#33427) (#33462) * Remove field limitation from slack notification (#33113) (#33455) * Prometheus: Support POST in template variables (#33321) (#33441) * Instrumentation: Add success rate metrics for email notifications (#33359) (#33409) * Use either moment objects (for absolute times in the datepicker) or string (for relative time) (#33315) (#33406) * Docs: Removed type from find annotations example. (#33399) (#33403) * [v7.5.x]: FrontendMetrics: Adds new backend api that frontend can use to push frontend measurements and counters to prometheus (#33255) * Updated label for add panel. (#33285) (#33286) * Bug: Add git to Dockerfile.ubuntu (#33247) (#33248) * Docs: Sync latest master docs with 7.5.x (#33156) * Docs: Update getting-started-influxdb.md (#33234) (#33241) * Doc: Document the X-Grafana-Org-Id HTTP header (#32478) (#33239) * Minor Changes in Auditing.md (#31435) (#33238) * Docs: Add license check endpoint doc (#32987) (#33236) * Postgres: Fix time group macro when TimescaleDB is enabled and interval is less than a second (#33153) (#33219) * Docs: InfluxDB doc improvements (#32815) (#33185) * [v7.5.x] Loki: Pass Skip TLS Verify setting to alert queries (#33031) * update cla (#33181) * Fix inefficient regular expression (#33155) (#33159) * Auth: Don't clear auth token cookie when lookup token fails (#32999) (#33136) * Elasticsearch: Add documentation for supported Elasticsearch query transformations (#33072) (#33128) * Update team.md (#33060) (#33084) * GE issue 1268 (#33049) (#33081) * Fixed some formatting issues for PRs from yesterday. (#33078) (#33079) * Explore: Load default data source in Explore when the provided source does not exist (#32992) (#33061) * Docs: Replace next with latest in aliases (#33054) (#33059) * Added missing link item. (#33052) (#33055) * Backport 33034 (#33038) * Docs: Backport 32916 to v7.5x (#33008) * ReleaseNotes: Updated changelog and release notes for 7.5.4 (#32973) (#32998) * Elasticsearch: Force re-rendering of each editor row type change (#32993) (#32996) * Docs: Sync release branch with latest docs (#32986) - Update to version 7.5.4: * "Release: Updated versions in package to 7.5.4" (#32971) * fix(datasource_srv): prevent infinite loop where default datasource is named default (#32949) (#32967) * Added Azure Monitor support for Microsoft.AppConfiguration/configurationStores namespace (#32123) (#32968) * fix sqlite3 tx retry condition operator precedence (#32897) (#32952) * AzureMonitor: Add support for Virtual WAN namespaces (#32935) (#32947) * Plugins: Allow a non-dashboard page to be the default home page (#32926) (#32945) * GraphNG: uPlot 1.6.8 (#32859) (#32863) * Alerting: Add ability to include aliases with dashes (/) and at (@) signs in InfluxDB (#32844) * Prometheus: Allow exemplars endpoint in data source proxy (#32802) (#32804) * [v7.5.x] Table: Fixes table data links so they refer to correct row after sorting (#32758) * TablePanel: Makes sorting case-insensitive (#32435) (#32752) - Update to version 7.5.3: * "Release: Updated versions in package to 7.5.3" (#32745) * FolderPicker: Prevent dropdown menu from disappearing off screen (#32603) (#32741) * Loki: Remove empty annotations tags (#32359) (#32490) * SingleStat: fix wrong call to getDataLinkUIModel (#32721) (#32739) * Prometheus: Fix instant query to run two times when exemplars enabled (#32508) (#32726) * Elasticsearch: Fix bucket script variable duplication in UI (#32705) (#32714) * Variables: Confirms selection before opening new picker (#32586) (#32710) * CloudWarch: Fix service quotas link (#32686) (#32689) * Configuration: Prevent browser hanging / crashing with large number of org users (#32546) (#32598) * chore: bump execa to v2.1.0 (#32543) (#32592) * Explore: Fix bug where navigating to explore would result in wrong query and datasource to be shown (#32558) * Fix broken gtime tests (#32582) (#32587) * resolve conflicts (#32567) * gtime: Make ParseInterval deterministic (#32539) (#32560) * Dashboard: No longer includes default datasource when externally exporting dashboard with row (#32494) (#32535) * TextboxVariable: Limits the length of the preview value (#32472) (#32530) * AdHocVariable: Adds default data source (#32470) (#32476) * Variables: Fixes Unsupported data format error for null values (#32480) (#32487) * Prometheus: align exemplars check to latest api change (#32513) (#32515) * "Release: Updated versions in package to 7.5.2" (#32502) * SigV4: Add support EC2 IAM role auth and possibility to toggle auth providers (#32444) (#32488) * Set spanNulls to default (#32471) (#32486) * Graph: Fix setting right y-axis when standard option unit is configured (#32426) (#32442) * API: Return 409 on datasource version conflict (#32425) (#32433) * API: Return 400 on invalid Annotation requests (#32429) (#32431) * Variables: Fixes problem with data source variable when default ds is selected (#32384) (#32424) * Table: Fixes so links work for image cells (#32370) (#32410) * Variables: Fixes error when manually non-matching entering custom value in variable input/picker (#32390) (#32394) * DashboardQueryEditor: Run query after selecting source panel (#32383) (#32395) * API: Datasource endpoint should return 400 bad request if id and orgId is invalid (#32392) (#32397) * "Release: Updated versions in package to 7.5.1" (#32362) * MSSQL: Upgrade go-mssqldb (#32347) (#32361) * GraphNG: Fix tooltip displaying wrong or no data (#32312) (#32348) * "Release: Updated versions in package to 7.5.0" (#32308) * Loki: Fix text search in Label browser (#32293) (#32306) * Explore: Show all dataFrames in data tab in Inspector (#32161) (#32299) * PieChartV2: Add migration from old piechart (#32259) (#32291) * LibraryPanels: Adds Type and Description to DB (#32258) (#32288) * LibraryPanels: Prevents deletion of connected library panels (#32277) (#32284) * Library Panels: Add "Discard" button to panel save modal (#31647) (#32281) * LibraryPanels: Changes to non readonly reducer (#32193) (#32200) * Notifications: InfluxDB - Fix regex to include metrics with hyphen in aliases (#32224) (#32262) * SSE/InfluxDB: Change InfluxQL to work with server side expressions (#31691) (#32102) * DashboardSettings: Fixes issue with tags list not updating when changes are made (#32241) (#32247) * Logs: If log message missing, use empty string (#32080) (#32243) * CloudWatch: Use latest version of aws sdk (#32217) (#32223) * Release: Updated versions in package to 7.5.0-beta.2 (#32158) * HttpServer: Make read timeout configurable but disabled by default (#31575) (#32154) * GraphNG: Ignore string fields when building data for uPlot in GraphNG (#32150) (#32151) * Fix loading timezone info on windows (#32029) (#32149) * SQLStore: Close session in withDbSession (#31775) (#32108) * Remove datalink template suggestions for accessing specific fields when there are multiple dataframes. (#32057) (#32148) * GraphNG: make sure dataset and config are in sync when initializing and re-initializing uPlot (#32106) (#32125) * MixedDataSource: Name is updated when data source variable changes (#32090) (#32144) * Backport 32005 to v7.5.x #32128 (#32130) * Loki: Label browser UI updates (#31737) (#32119) * ValueMappings: Fixes value 0 not being mapped (#31924) (#31929) * GraphNG: Fix tooltip series color for multi data frame scenario (#32098) (#32103) * LibraryPanels: Improves the Get All experience (#32028) (#32093) * Grafana/ui: display all selected levels for selected value when searching (#32030) (#32032) * Exemplars: always query exemplars (#31673) (#32024) * [v7.5.x] TimePicker: Fixes hidden time picker shown in kiosk TV mode (#32055) * Chore: Collect elasticsearch version usage stats (#31787) (#32063) * Chore: Tidy up Go deps (#32053) * GraphNG: Fix PlotLegend field display name being outdated (#32064) (#32066) * Data proxy: Fix encoded characters in URL path should be proxied encoded (#30597) (#32060) * [v7.5.x] Auth: Allow soft token revocation (#32037) * Snapshots: Fix usage of sign in link from the snapshot page (#31986) (#32036) * Make master green (#32011) (#32015) * Query editor: avoid avoiding word wrap on query editor components (#31949) (#31982) * Variables: Fixes filtering in picker with null items (#31979) (#31995) * TooltipContainer - use resize observer instead of getClientBoundingRect (#31937) (#32003) * Loki: Fix autocomplete when re-editing Loki label values (#31828) (#31987) * Loki: Fix type errors in language_provider (#31902) (#31945) * PanelInspect: Interpolates variables in CSV file name (#31936) (#31977) * Cloudwatch: use shared library for aws auth (#29550) (#31946) * Tooltip: partial perf improvement (#31774) (#31837) (#31957) * Backport 31913 to v7.5.x (#31955) * Grafana/ui: fix searchable options for Cascader with options update (#31906) (#31938) * Variables: Do not reset description on variable type change (#31933) (#31939) * [v7.5.x] AnnotationList: Adds spacing to UI (#31888) (#31894) * Elasticseach: Support histogram fields (#29079) (#31914) * Chore: upgrade eslint and fork-ts-checker-webpack-plugin (#31854) (#31896) * Update scripts and Dockerfiles to use Go 1.16.1 (#31881) (#31891) * Templating: use dashboard timerange when variables are set to refresh 'On Dashboard Load' (#31721) (#31801) * [v7.5.x] Tempo: Add test for backend data source (#31835) (#31882) * Run go mod tidy to update go.mod and go.sum (#31859) * Grafana/ui: display all selected levels for Cascader (#31729) (#31862) * CloudWatch: Consume the grafana/aws-sdk (#31807) (#31861) * Cloudwatch: ListMetrics API page limit (#31788) (#31851) * Remove invalid attribute (#31848) (#31850) * CloudWatch: Restrict auth provider and assume role usage according to… (#31845) * CloudWatch: Add support for EC2 IAM role (#31804) (#31841) * Loki, Prometheus: Change the placement for query type explanation (#31784) (#31819) * Variables: Improves inspection performance and unknown filtering (#31811) (#31813) * Change piechart plugin state to beta (#31797) (#31798) * ReduceTransform: Include series with numeric string names (#31763) (#31794) * Annotations: Make the annotation clean up batch size configurable (#31487) (#31769) * Fix escaping in ANSI and dynamic button removal (#31731) (#31767) * DataLinks: Bring back single click links for Stat, Gauge and BarGauge panel (#31692) (#31718) * log skipped, performed and duration for migrations (#31722) (#31754) * Search: Make items more compact (#31734) (#31750) * loki_datasource: add documentation to label_format and line_format (#31710) (#31746) * Tempo: Convert tempo to backend data source2 (#31733) * Elasticsearch: Fix script fields in query editor (#31681) (#31727) * Elasticsearch: revert to isoWeek when resolving weekly indices (#31709) (#31717) * Admin: Keeps expired api keys visible in table after delete (#31636) (#31675) * Tempo: set authentication header properly (#31699) (#31701) * Tempo: convert to backend data source (#31618) (#31695) * Update package.json (#31672) * Release: Bump version to 7.5.0-beta.1 (#31664) * Fix whatsNewUrl version to 7.5 (#31666) * Chore: add alias for what's new 7.5 (#31669) * Docs: Update doc for PostgreSQL authentication (#31434) * Docs: document report template variables (#31637) * AzureMonitor: Add deprecation message for App Insights/Insights Analytics (#30633) * Color: Fixes issue where colors where reset to gray when switch panels (#31611) * Live: Use pure WebSocket transport (#31630) * Docs: Fix broken image link (#31661) * Docs: Add Whats new in 7.5 (#31659) * Docs: Fix links for 7.5 (#31658) * Update enterprise-configuration.md (#31656) * Explore/Logs: Escaping of incorrectly escaped log lines (#31352) * Tracing: Small improvements to trace types (#31646) * Update _index.md (#31645) * AlertingNG: code refactoring (#30787) * Remove pkill gpg-agent (#31169) * Remove format for plugin routes (#31633) * Library Panels: Change unsaved change detection logic (#31477) * CloudWatch: Added AWS Timestream Metrics and Dimensions (#31624) * add new metrics and dimensions (#31595) * fix devenv dashboard content typo (#31583) * DashList: Sort starred and searched dashboard alphabetically (#31605) * Docs: Update whats-new-in-v7-4.md (#31612) * SSE: Add "Classic Condition" on backend (#31511) * InfluxDB: Improve maxDataPoints error-message in Flux-mode, raise limits (#31259) * Alerting: PagerDuty: adding current state to the payload (#29270) * devenv: Fix typo (#31589) * Loki: Label browser (#30351) * LibraryPanels: No save modal when user is on same dashboard (#31606) * Bug: adding resolution for `react-use-measure` to prevent plugin tests from failing. (#31603) * Update node-graph.md (#31571) * test: pass Cypress options objects into selector wrappers (#31567) * Loki: Add support for alerting (#31424) * Tracing: Specify type of the data frame that is expected for TraceView (#31465) * LibraryPanels: Adds version column (#31590) * PieChart: Add color changing options to pie chart (#31588) * Explore: keep enabled/disabled state in angular based QueryEditors correctly (#31558) * Bring back correct legend sizing afer PlotLegend refactor (#31582) * Alerting: Fix bug in Discord for when name for metric value is absent (#31257) * LibraryPanels: Deletes library panels during folder deletion (#31572) * chore: bump lodash to 4.17.21 (#31549) * Elasticsearch: Fix impossibility to perform non-logs queries after importing queries from loki or prometheus in explore (#31518) * TestData: Fixes never ending annotations scenario (#31573) * CloudWatch: Added AWS Network Firewall metrics and dimensions (#31498) * propagate plugin unavailable message to UI (#31560) * ConfirmButton: updates story from knobs to controls (#31476) * Loki: Refactor line limit to use grafana/ui component (#31509) * LibraryPanels: Adds folder checks and permissions (#31473) * Add guide on custom option editors (#31254) * PieChart: Update text color and minor changes (#31546) * Grafana-data: bump markedjs to v2.x to resolve vulnerability (#31036) * Chore(deps): Bump google.golang.org/api from 0.39.0 to 0.40.0 (#31210) * PieChart: Improve piechart legend and options (#31446) * Chore(deps): Bump google.golang.org/grpc from 1.35.0 to 1.36.0 (#31541) * Chore(deps): Bump github.com/aws/aws-sdk-go from 1.37.7 to 1.37.20 (#31538) * Chore(deps): Bump github.com/prometheus/common from 0.17.0 to 0.18.0 (#31539) * Add multiselect options ui (#31501) * Profile: Fixes profile preferences being accessible when anonymous access was enabled (#31516) * Variables: Fixes error with: cannot read property length of undefined (#31458) * Explore: Show ANSI colored logs in logs context (#31510) * LogsPanel: Show all received logs (#31505) * AddPanel: Design polish (#31484) * TimeSeriesPanel: Remove unnecessary margin from legend (#31467) * influxdb: flux: handle is-hidden (#31324) * Graph: Fix tooltip not showing when close to the edge of viewport (#31493) * FolderPicker: Remove useNewForms from FolderPicker (#31485) * Add reportVariables feature toggle (#31469) * Grafana datasource: support multiple targets (#31495) * Update license-restrictions.md (#31488) * Docs: Derived fields links in logs detail view (#31482) * Docs: Add new data source links to Enterprise page (#31480) * Convert annotations to dataframes (#31400) * ReleaseNotes: Updated changelog and release notes for v7.4.2 (#31475) * GrafanaUI: Fixes typescript error for missing css prop (#31479) * Login: handle custom token creation error messages (#31283) * Library Panels: Don't list current panel in available panels list (#31472) * DashboardSettings: Migrate Link Settings to React (#31150) * Frontend changes for library panels feature (#30653) * Alerting notifier SensuGo: improvements in default message (#31428) * AppPlugins: Options to disable showing config page in nav (#31354) * add aws config (#31464) * Heatmap: Fix missing/wrong value in heatmap legend (#31430) * Chore: Fixes small typos (#31461) * Graphite/SSE: update graphite to work with server side expressions (#31455) * update the lastest version to 7.4.3 (#31457) * ReleaseNotes: Updated changelog and release notes for 7.4.3 (#31454) * AWS: Add aws plugin configuration (#31312) * Revert ""Release: Updated versions in package to 7.4.3" (#31444)" (#31452) * Remove UserSyncInfo.tsx (#31450) * Elasticsearch: Add word highlighting to search results (#30293) * Chore: Fix eslint react hook warnings in grafana-ui (#31092) * CloudWatch: Make it possible to specify custom api endpoint (#31402) * Chore: fixed incorrect naming for disable settings (#31448) * TraceViewer: Fix show log marker in spanbar (#30742) * LibraryPanels: Adds permissions to getAllHandler (#31416) * NamedColorsPalette: updates story from knobs to controls (#31443) * "Release: Updated versions in package to 7.4.3" (#31444) * ColorPicker: updates story from knobs to controls (#31429) * Streaming: Fixes an issue with time series panel and streaming data source when scrolling back from being out of view (#31431) * ClipboardButton: updates story from knobs to controls (#31422) * we should never log unhashed tokens (#31432) * CI: Upgrade Dockerfiles wrt. Go, Node, Debian (#31407) * Elasticsearch: Fix query initialization logic & query transformation from Promethous/Loki (#31322) * Postgres: allow providing TLS/SSL certificates as text in addition to file paths (#30353) * CloudWatch: Added AWS Ground Station metrics and dimensions (#31362) * TraceViewer: Fix trace to logs icon to show in right pane (#31414) * add hg team as migrations code owners (#31420) * Remove tidy-check script (#31423) * InfluxDB: handle columns named "table" (#30985) * Prometheus: Use configured HTTP method for /series and /labels endpoints (#31401) * Devenv: Add gdev-influxdb2 data source (#31250) * Update grabpl from 0.5.38 to 0.5.42 version (#31419) * Move NOOP_CONTROL to storybook utils and change to a standalone file (#31421) * remove squadcast details from docs (#31413) * Add new Cloudwatch AWS/DDoSProtection metrics and dimensions (#31297) * Logging: add frontend logging helpers to @grafana/runtime package (#30482) * CallToActionCard: updates story from knobs to controls (#31393) * Add eu-south-1 cloudwatch region, closes #31197 (#31198) * Chore: Upgrade eslint packages (#31408) * Cascader: updates story from knobs to controls (#31399) * addressed issues 28763 and 30314. (#31404) * Added section Query a time series database by id (#31337) * Prometheus: Change default httpMethod for new instances to POST (#31292) * Data source list: Use Card component (#31326) * Chore: Remove gotest.tools dependency (#31391) * Revert "StoryBook: Introduces Grafana Controls (#31351)" (#31388) * Chore(deps): Bump github.com/prometheus/common from 0.15.0 to 0.17.0 (#31387) * AdHocVariables: Fixes crash when values are stored as numbers (#31382) * Chore(deps): Bump github.com/golang/mock from 1.4.4 to 1.5.0 (#31379) * Chore: Fix strict errors, down to 416 (#31365) * Chore(deps): Bump github.com/getsentry/sentry-go from 0.9.0 to 0.10.0 (#31378) * StoryBook: Introduces Grafana Controls (#31351) * ReleaseNotes: Updated changelog and release notes for 7.4.2 (#31313) * Theming: Support for runtime theme switching and hooks for custom themes (#31301) * Devenv: Remove old-versioned loki blocks and update prometheus2 block (#31282) * Zipkin: Show success on test data source (#30829) * Update grot template (needs more info) (#31350) * DatasourceSrv: Fix instance retrieval when datasource variable value set to "default" (#31347) * TimeSeriesPanel: Fixes overlapping time axis ticks (#31332) * Grafana/UI: Add basic legend to the PieChart (#31278) * SAML: single logout only enabled in enterprise (#31325) * QueryEditor: handle query.hide changes in angular based query-editors (#31336) * DashboardLinks: Fixes another issue where dashboard links cause full page reload (#31334) * LibraryPanels: Syncs panel title with name (#31311) * Chore: Upgrade golangci-lint (#31330) * Add info to docs about concurrent session limits (#31333) * Table: Fixes issue with fixed min and auto max with bar gauge cell (#31316) * BarGuage: updates story from knobs to controls (#31223) * Docs: Clarifies how to add Key/Value pairs (#31303) * Usagestats: Exclude folders from total dashboard count (#31320) * ButtonCascader: updates story from knobs to controls (#31288) * test: allow check for Table as well as Graph for Explore e2e flow (#31290) * Grafana-UI: Update tooltip type (#31310) * fix 7.4.2 release note (#31299) * Add `--tries 3` arg when triggering e2e-tests upon releasing (#31285) * Chore: reduce strict errors for variables (#31241) * update latest release version (#31296) * ReleaseNotes: Updated changelog and release notes for 7.4.2 (#31291) * Correct name of Discord notifier tests (#31277) * Docs: Clarifies custom date formats for variables (#31271) * BigValue: updates story from knobs to controls (#31240) * Docs: Annotations update (#31194) * Introduce functions for interacting with library panels API (#30993) * Search: display sort metadata (#31167) * Folders: Editors should be able to edit name and delete folders (#31242) * Make Datetime local (No date if today) working (#31274) * UsageStats: Purpose named variables (#31264) * Snapshots: Disallow anonymous user to create snapshots (#31263) * only update usagestats every 30min (#31131) * Chore: grafana-toolkit uses grafana-ui and grafana-data workspaces (#30701) * Grafana-UI: Add id to Select to make it easier to test (#31230) * Prometheus: Fix enabling of disabled queries when editing in dashboard (#31055) * UI/Card: Fix handling of 'onClick' callback (#31225) * Loki: Add line limit for annotations (#31183) * Remove deprecated and breaking loki config field (#31227) * SqlDataSources: Fixes the Show Generated SQL button in query editors (#31236) * LibraryPanels: Disconnect before connect during dashboard save (#31235) * Disable Change Password for OAuth users (#27886) * TagsInput: Design update and component refactor (#31163) * Variables: Adds back default option for data source variable (#31208) * IPv6: Support host address configured with enclosing square brackets (#31226) * Postgres: Fix timeGroup macro converts long intervals to invalid numbers when TimescaleDB is enabled (#31179) * GraphNG: refactor core to class component (#30941) * Remove last synchronisation field from LDAP debug view (#30984) * Chore: Upgrade grafana-plugin-sdk-go to v0.88.0 (#30975) * Graph: Make axes unit option work even when field option unit is set (#31205) * AlertingNG: Test definition (#30886) * Docs: Update Influx config options (#31146) * WIP: Skip this call when we skip migrations (#31216) * use 0.1.0 (#31215) * DataSourceSrv: Filter out non queryable data sources by default (#31144) * QueryEditors: Fixes issue that happens after moving queries then editing would update other queries (#31193) * Chore: report eslint no-explicit-any errors to metrics (#31182) * Chore(deps): Bump cloud.google.com/go/storage from 1.12.0 to 1.13.0 (#31211) * Chore(deps): Bump xorm.io/xorm from 0.8.1 to 0.8.2 (#30773) * Alerting: Fix modal text for deleting obsolete notifier (#31171) * Chore(deps): Bump github.com/linkedin/goavro/v2 from 2.9.7 to 2.10.0 (#31204) * Variables: Fixes missing empty elements from regex filters (#31156) * StatPanels: Fixes to palette color scheme is not cleared when loading panel (#31126) * Fixed the typo. (#31189) * Docs: Rewrite preferences docs (#31154) * Explore/Refactor: Simplify URL handling (#29173) * DashboardLinks: Fixes links always cause full page reload (#31178) * Replace PR with Commit truncated hash when build fails (#31177) * Alert: update story to use controls (#31145) * Permissions: Fix team and role permissions on folders/dashboards not displayed for non Grafana Admin users (#31132) * CloudWatch: Ensure empty query row errors are not passed to the panel (#31172) * Update prometheus.md (#31173) * Variables: Extend option pickers to accept custom onChange callback (#30913) * Prometheus: Multiply exemplars timestamp to follow api change (#31143) * DashboardListPanel: Fixes issue with folder picker always showing All and using old form styles (#31160) * Add author name and pr number in drone pipeline notifications (#31124) * Prometheus: Add documentation for ad-hoc filters (#31122) * DataSourceSettings: Fixes add header button, it should not trigger a save & test action (#31135) * Alerting: Fix so that sending an alert with the Alertmanager notifier doesn't fail when one of multiple configured URL's are down (#31079) * Chore: Update latest.json (#31139) * Docs: add 7.4.1 relese notes link (#31137) * PieChart: Progress on new core pie chart (#28020) * ReleaseNotes: Updated changelog and release notes for 7.4.1 (#31133) * Eslint: no-duplicate-imports rule (bump grafana-eslint-config) (#30989) * Transforms: Fixes Outer join issue with duplicate field names not getting the same unique field names as before (#31121) * MuxWriter: Handle error for already closed file (#31119) * Logging: sourcemap transform asset urls from CDN in logged stacktraces (#31115) * Search: add sort information in dashboard results (#30609) * area/grafana/e2e: ginstall should pull version specified (#31056) * Exemplars: Change CTA style (#30880) * Influx: Make max series limit configurable and show the limiting message if applied (#31025) * Docs: request security (#30937) * update configurePanel for 7.4.0 changes (#31093) * Elasticsearch: fix log row context erroring out (#31088) * Prometheus: Fix issues with ad-hoc filters (#30931) * LogsPanel: Add deduplication option for logs (#31019) * Drone: Make sure CDN upload is ok before pushing docker images (#31075) * PluginManager: Remove some global state (#31081) * test: update addDashboard flow for v7.4.0 changes (#31059) * Transformations: Fixed typo in FilterByValue transformer description. (#31078) * Docs: Group id should be 0 instead of 1 in Docker upgrade notes (#31074) * Usage stats: Adds source/distributor setting (#31039) * CDN: Add CDN upload step to enterprise and release pipelines (#31058) * Chore: Replace native select with grafana ui select (#31030) * Docs: Update json-model.md (#31066) * Docs: Update whats-new-in-v7-4.md (#31069) * Added hyperlinks to Graphite documentation (#31064) * DashboardSettings: Update to new form styles (#31022) * CDN: Fixing drone CI config (#31052) * convert path to posix by default (#31045) * DashboardLinks: Fixes crash when link has no title (#31008) * Alerting: Fixes so notification channels are properly deleted (#31040) * Explore: Remove emotion error when displaying logs (#31026) * Elasticsearch: Fix alias field value not being shown in query editor (#30992) * CDN: Adds uppload to CDN step to drone CI (#30879) * Improved glossary (#31004) * BarGauge: Improvements to value sizing and table inner width calculations (#30990) * Drone: Fix deployment image (#31027) * ColorPicker: migrated styles from sass to emotion (#30909) * Dashboard: Migrate general settings to react (#30914) * Chore(deps): Bump github.com/jung-kurt/gofpdf from 1.10.1 to 1.16.2 (#30586) * Chore(deps): Bump github.com/aws/aws-sdk-go from 1.36.31 to 1.37.7 (#31018) * Prometheus: Min step defaults to seconds when no unit is set to prevent errors when running alerts. (#30966) * Chore(deps): Bump github.com/magefile/mage from 1.10.0 to 1.11.0 (#31017) * Chore(deps): Bump github.com/grpc-ecosystem/go-grpc-middleware (#31013) * Graph: Fixes so graph is shown for non numeric time values (#30972) * CloudMonitoring: Prevent resource type variable function from crashing (#30901) * Chore(deps): Bump google.golang.org/api from 0.33.0 to 0.39.0 (#30971) * Build: Releases e2e and e2e-selectors too (#31006) * TextPanel: Fixes so panel title is updated when variables change (#30884) * Docs: Update configuration.md (login_maximum_inactive_lifetime_duration, login_maximum_lifetime_duration) (#31000) * instrumentation: make the first database histogram bucket smaller (#30995) * Grafana/UI: Remove DismissableFeatureInfoBox and replace with LocalSt… (#30988) * StatPanel: Fixes issue formatting date values using unit option (#30979) * Chore(deps): Bump actions/cache from v2 to v2.1.4 (#30973) * Units: Fixes formatting of duration units (#30982) * Elasticsearch: Show Size setting for raw_data metric (#30980) * Alerts: Dedupe alerts so that we do not fill the screen with the same alert messsage (#30935) * make sure service and slo display name is passed to segment comp (#30900) * assign changes in cloud datasources to the new cloud datasources team (#30645) * Table: Updates devenv test dashboard after change to TestData Randrom Table response (#30927) * Theme: Use higher order theme color variables rather then is light/dark logic (#30939) * Docs: Add alias for what's new in 7.4 (#30945) * e2e: extends selector factory to plugins (#30932) * Chore: Upgrade docker build image (#30820) * Docs: updated developer guide (#29978) * Alerts: Update Alert storybook to show more states (#30908) * Variables: Adds queryparam formatting option (#30858) * Chore: pad unknown values with undefined (#30808) * Transformers: add search to transform selection (#30854) * Exemplars: change api to reflect latest changes (#30910) * docs: use selinux relabelling on docker containers (#27685) * Docs: Fix bad image path for alert notification template (#30911) * Make value mappings correctly interpret numeric-like strings (#30893) * Chore: Update latest.json (#30905) * Docs: Update whats-new-in-v7-4.md (#30882) * Dashboard: Ignore changes to dashboard when the user session expires (#30897) * ReleaseNotes: Updated changelog and release notes for 7.4.0 (#30902) * test: add support for timeout to be passed in for addDatasource (#30736) * increase page size and make sure the cache supports query params (#30892) * DataSourceSettings: Adds info box and link to Grafana Cloud (#30891) * OAuth: custom username docs (#28400) * Panels: Remove value mapping of values that have been formatted #26763 (#30868) * Alerting: Fixes alert panel header icon not showing (#30840) * AlertingNG: Edit Alert Definition (#30676) * Logging: sourcemap support for frontend stacktraces (#30590) * Added "Restart Grafana" topic. (#30844) * Docs: Org, Team, and User Admin (#30756) * bump grabpl version to 0.5.36 (#30874) * Plugins: Requests validator (#30445) * Docs: Update whats-new-in-v7-4.md (#30876) * Docs: Add server view folder (#30849) * Fixed image name and path (#30871) * Grafana-ui: fixes closing modals with escape key (#30745) * InfluxDB: Add http configuration when selecting InfluxDB v2 flavor (#30827) * TestData: Fixes issue with for ever loading state when all queries are hidden (#30861) * Chart/Tooltip: refactored style declaration (#30824) * ReleaseNotes: Updated changelog and release notes for 7.4.0-beta1 (#30853) * Grafana-ui: fixes no data message in Table component (#30821) * grafana/ui: Update pagination component for large number of pages (#30151) * Alerting: Customise OK notification priorities for Pushover notifier (#30169) * DashboardLinks: Support variable expression in to tooltip - Issue #30409 (#30569) * Chore: Remove panelTime.html, closes #30097 (#30842) * Docs: Time series panel, bar alignment docs (#30780) * Chore: add more docs annotations (#30847) * Transforms: allow boolean in field calculations (#30802) * Prometheus: Add tooltip to explain possibility to use patterns in text and title fields in annotations (#30825) * Update prometheus.md with image link fix (#30833) * BarChart: inside-align strokes, upgrade uPlot to 1.6.4. (#30806) * Update license-expiration.md (#30839) * Explore rewrite (#30804) * Prometheus: Set type of labels to string (#30831) * GrafanaUI: Add a way to persistently close InfoBox (#30716) * Fix typo in transformer registry (#30712) * Elasticsearch: Display errors with text responses (#30122) * CDN: Fixes cdn path when Grafana is under sub path (#30822) * TraceViewer: Fix lazy loading (#30700) * FormField: migrated sass styling to emotion (#30392) * AlertingNG: change API permissions (#30781) * Variables: Clears drop down state when leaving dashboard (#30810) * Grafana-UI: Add story/docs for ErrorBoundary (#30304) * Add missing callback dependency (#30797) * PanelLibrary: Adds library panel meta information to dashboard json (#30770) * Chore(deps): Bump gonum.org/v1/gonum from 0.6.0 to 0.8.2 (#30343) * Chore(deps): Bump gopkg.in/yaml.v2 from 2.3.0 to 2.4.0 (#30771) * GraphNG: improve behavior when switching between solid/dash/dots (#30796) * Chore(deps): Bump github.com/hashicorp/go-hclog from 0.14.1 to 0.15.0 (#30778) * Add width for Variable Editors (#30791) * Chore: Remove warning when calling resource (#30752) * Auth: Use SigV4 lib from grafana-aws-sdk (#30713) * Panels: Fixes so panels are refreshed when scrolling past them fast (#30784) * GraphNG: add bar alignment option (#30499) * Expressions: Measure total transformation requests and elapsed time (#30514) * Menu: Mark menu components as internal (#30740) * TableInputCSV: migrated styles from sass to emotion (#30554) * CDN: Fix passing correct prefix to GetContentDeliveryURL (#30777) * Chore(deps): Bump gopkg.in/ini.v1 from 1.57.0 to 1.62.0 (#30772) * CDN: Adds support for serving assets over a CDN (#30691) * PanelEdit: Trigger refresh when changing data source (#30744) * Chore: remove __debug_bin (#30725) * BarChart: add alpha bar chart panel (#30323) * Docs: Time series panel (#30690) * Backend Plugins: Convert test data source to use SDK contracts (#29916) * Docs: Update whats-new-in-v7-4.md (#30747) * Add link to Elasticsearch docs. (#30748) * Mobile: Fixes issue scrolling on mobile in chrome (#30746) * TagsInput: Make placeholder configurable (#30718) * Docs: Add config settings for fonts in reporting (#30421) * Add menu.yaml to .gitignore (#30743) * bump cypress to 6.3.0 (#30644) * Datasource: Use json-iterator configuration compatible with standard library (#30732) * AlertingNG: Update UX to use new PageToolbar component (#30680) * Docs: Add usage insights export feature (#30376) * skip symlinks to directories when generating plugin manifest (#30721) * PluginCiE2E: Upgrade base images (#30696) * Variables: Fixes so text format will show All instead of custom all (#30730) * PanelLibrary: better handling of deleted panels (#30709) * Added section "Curated dashboards for Google Cloud Monitoring" for 7.4 What's New (#30724) * Added "curated dashboards" information and broke down, rearranged topics. (#30659) * Transform: improve the "outer join" performance/behavior (#30407) * Add alt text to plugin logos (#30710) * Deleted menu.yaml file (#30717) * Dashboard: Top Share URL icon should share panel URL when on viewPanel page (#30000) * Added entry for web server. (#30715) * DashboardPicker: switch to promise-based debounce, return dashboard UID (#30706) * Use connected GraphNG in Explore (#30707) * Fix documentation for streaming data sources (#30704) * PanelLibrary: changes casing of responses and adds meta property (#30668) * Influx: Show all datapoints for dynamically windowed flux query (#30688) * Trace: trace to logs design update (#30637) * DeployImage: Switch base images to Debian (#30684) * Chore: remove CSP debug logging line (#30689) * Docs: 7.4 documentation for expressions (#30524) * PanelEdit: Get rid of last remaining usage of navbar-button (#30682) * Grafana-UI: Fix setting default value for MultiSelect (#30671) * CustomScrollbar: migrated styles from sass to emotion (#30506) * DashboardSettings & PanelEdit: Use new PageToolbar (#30675) * Explore: Fix jumpy live tailing (#30650) * ci(npm-publish): add missing github package token to env vars (#30665) * PageToolbar: Extracting navbar styles & layout into a modern emotion based component (#30588) * AlertingNG: pause/unpause definitions via the API (#30627) * Docs: Refer to product docs in whats new for alerting templating feature (#30652) * ReleaseNotes: Updated changelog and release notes for 7.4.0-beta1 (#30666) * Variables: Fixes display value when using capture groups in regex (#30636) * Docs: Update _index.md (#30655) * Docs: Auditing updates (#30433) * Docs: add hidden_users configuration field (#30435) * Docs: Define TLS/SSL terminology (#30533) * Docs: Fix expressions enabled description (#30589) * Docs: Update ES screenshots (#30598) * Licensing Docs: Adding license restrictions docs (#30216) * Update documentation-style-guide.md (#30611) * Docs: Update queries.md (#30616) * chore(grafana-ui): bump storybook to 6.1.15 (#30642) * DashboardSettings: fixes vertical scrolling (#30640) * Usage Stats: Remove unused method for getting user stats (#30074) * Grafana/UI: Unit picker should not set a category as unit (#30638) * Graph: Fixes auto decimals issue in legend and tooltip (#30628) * AlertingNG: List saved Alert definitions in Alert Rule list (#30603) * chore: bump redux toolkit to 1.5.0 for immer 8.0.1 vulnerability fix (#30605) * Grafana/UI: Add disable prop to Segment (#30539) * Variables: Fixes so queries work for numbers values too (#30602) * Admin: Fixes so form values are filled in from backend (#30544) * Docs: Add new override info and add whats new 7.4 links (#30615) * TestData: Improve what's new in v7.4 (#30612) * Docs: Update 7.4 What's New to use more correct description of alerting notification template feature (#30502) * NodeGraph: Add docs (#30504) * Loki: Improve live tailing errors and fix Explore's logs container type errors (#30517) * TimeRangePicker: Updates components to use new ToolbarButton & ButtonGroup (#30570) * Update styling.md guide (#30594) * TestData: Adding what's new in v7.4 to the devenv dashboards (#30568) * Chore(deps): Bump github.com/aws/aws-sdk-go from 1.35.5 to 1.36.31 (#30583) * Chore(deps): Bump github.com/prometheus/client_golang (#30585) * Chore(deps): Bump gopkg.in/macaron.v1 from 1.3.9 to 1.4.0 (#30587) * Chore(deps): Bump github.com/google/uuid from 1.1.5 to 1.2.0 (#30584) * Explore: Fix logs hover state so that it is visible and in dark mode & simply hover code (#30572) * RefreshPicker: Fixes so valid intervals in url are visible in RefreshPicker (#30474) * Add documentation for Exemplars (#30317) * OldGraph: Fix height issue in Firefox (#30565) * XY Chart: fix editor error with empty frame (no fields) (#30573) * ButtonSelect & RefreshPicker: Rewrite of components to use new emotion based ToolbarButton & Menu (#30510) * XY Chart: share legend config with timeseries (#30559) * configuration.md: Document Content Security Policy options (#30413) * DataFrame: cache frame/field index in field state (#30529) * List + before -; rm old Git ref; reformat. (#30543) * Expressions: Add option to disable feature (#30541) * Explore: Fix loading visualisation on the top of the new time series panel (#30553) * Prometheus: Fix show query instead of Value if no __name__ and metric (#30511) * Decimals: Big Improvements to auto decimals and fixes to auto decimals bug found in 7.4-beta1 (#30519) * Postgres: Convert tests to stdlib (#30536) * Storybook: Migrate card story to use controls (#30535) * AlertingNG: Enable UI to Save Alert Definitions (#30394) * Postgres: Be consistent about TLS/SSL terminology (#30532) * Loki: Append refId to logs uid (#30418) * Postgres: Fix indentation (#30531) * GraphNG: uPlot 1.6.3 (fix bands not filling below 0). close #30523. (#30527) * updates for e2e docker image (#30465) * GraphNG: uPlot 1.6.2 (#30521) * Docs: Update whats-new-in-v7-4.md (#30520) * Prettier: ignore build and devenv dirs (#30501) * Chore: Upgrade grabpl version (#30486) * Explore: Update styling of buttons (#30493) * Cloud Monitoring: Fix legend naming with display name override (#30440) * GraphNG: Disable Plot logging by default (#30390) * Admin: Fixes so whole org drop down is visible when adding users to org (#30481) * Docs: include Makefile option for local assets (#30455) * Footer: Fixes layout issue in footer (#30443) * TimeSeriesPanel: Fixed default value for gradientMode (#30484) * Docs: fix typo in what's new doc (#30489) * Chore: adds wait to e2e test (#30488) * chore: update packages dependent on dot-prop to fix security vulnerability (#30432) * Dashboard: Remove Icon and change copy -> Copy to clipboard in the share embedded panel modal (#30480) * Chore: fix spelling mistake (#30473) * Chore: Restrict internal imports from other packages (#30453) * Docs: What's new fixes and improvements (#30469) * Timeseries: only migrage point size when configured (#30461) * Alerting: Hides threshold handle for percentual thresholds (#30431) * Graph: Fixes so only users with correct permissions can add annotations (#30419) * Chore: update latest version to 7.4.0-beta1 (#30452) * Docs: Add whats new 7.4 links (#30463) * Update whats-new-in-v7-4.md (#30460) * docs: 7.4 what's new (Add expressions note) (#30446) * Chore: Upgrade build pipeline tool (#30456) * PanelModel: Make sure the angular options are passed to react panel type changed handler (#30441) * Expressions: Fix button icon (#30444) * ReleaseNotes: Updated changelog and release notes for 7.4.0-beta1 (#30449) * Docs: Fix img link for alert notification template (#30436) * grafana/ui: Fix internal import from grafana/data (#30439) * prevent field config from being overwritten (#30437) * PanelOptions: Refactoring applying panel and field options out of PanelModel and add property clean up for properties not in field config registry (#30389) * Dashboard: Remove template variables option from ShareModal (#30395) * Added doc content for variables inspector code change by Hugo (#30408) * Docs: update license expiration behavior for reporting (#30420) * Chore: use old version format in package.json (#30430) * Chore: upgrade NPM security vulnerabilities (#30397) * "Release: Updated versions in package to 7.5.0-pre.0" (#30428) * contribute: Add backend and configuration guidelines for PRs (#30426) * Chore: Update what's new URL (#30424) - Update to version 7.4.5 - CVE-2021-28146, CVE-2021-28147: Fix API permissions issues related to team-sync. (Enterprise) (bsc#1183811, bsc#1183809) - CVE-2021-28148: Usage insights requires signed in users. (Enterprise) (bsc#1183813) - CVE-2021-27962: Do not allow editors to incorrectly bypass permissions on the default data source. (Enterprise) (bsc#1184371) grafana-7.5.7-3.12.1.src.rpm grafana-7.5.7-3.12.1.x86_64.rpm grafana-7.5.7-3.12.1.s390x.rpm grafana-7.5.7-3.12.1.ppc64le.rpm grafana-7.5.7-3.12.1.aarch64.rpm openSUSE-SLE-15.3-2021-2568 Recommended update for open-vm-tools moderate SUSE Updates openSUSE-SLE 15.3 This update for open-vm-tools fixes the following issues: Update to 11.3.0 (bsc#1187567) - Reduce or eliminate Linux dependency on the 'net-tools' package. - The 'ifconfig' and 'netstat' commands are deprecated in more recent releases of Linux. Update the Linux 'vm-support' script to use the 'ip' and 'ss' commands when available. If the new commands are missing a fallback will be used. In Particular, 'ip' has a fallback on 'ifconfig', 'ip route' will fallback on 'route' and 'ss' will fallback on 'netstat'. - Configuring OVT with the '--without-pam' option will implicitly disable 'vgauth'. - When no 'vgauth' option is given alongside '--without-pam', a warning is displayed with a message 'Building without PAM; vgauth will be disabled.'. - When '--disable-vgauth' is supplied alongside '--without-pam', no warning or error message is displayed. - When '--enable-vgauth' is supplied alongside '--without-pam', an error will be shown and the configure stage will be aborted with an error message 'Cannot enable vgauth without PAM. Please configure without --without-pam or without --enable-vgauth.' - Fix issues using GCC 11 with gtk >= 3.20 and glib >=2.66.3 - Fix more GCC 11 failures. (bsc#1185103) - Update the 'FreeBSD' specific sections of 'open-vm-tools' to adjust what necessary for 'ARM64'. - New command line tool 'vmwgfxctrl' introduced in 'open-vm-tools'. - A user can now control various aspects of the 'vmwgfx' Linux kernel module. Currently it can both display and set the current topology of the 'vmwgfx' kernel driver. It is useful when trying to configure custom resolutions on recent Linux distributions, including multi-monitor setups. - New command line tool 'vmware-alias-import' added to 'open-vm-tools' that can be used to import 'vgauth' config data and apply it to the running 'vgauth' service. - Enhancements to support or utilize various vSphere features. - In 'vmtoolsd.service' move the deprecated path '/var/run' to '/run' for it's 'PID' file. (bsc#1185175) - Finalize the 'UsrMerge'. (bsc#1029961) libvmtools-devel-11.3.0-10.1.x86_64.rpm libvmtools0-11.3.0-10.1.x86_64.rpm open-vm-tools-11.3.0-10.1.src.rpm open-vm-tools-11.3.0-10.1.x86_64.rpm open-vm-tools-desktop-11.3.0-10.1.x86_64.rpm open-vm-tools-sdmp-11.3.0-10.1.x86_64.rpm libvmtools-devel-11.3.0-10.1.aarch64.rpm libvmtools0-11.3.0-10.1.aarch64.rpm open-vm-tools-11.3.0-10.1.aarch64.rpm open-vm-tools-desktop-11.3.0-10.1.aarch64.rpm open-vm-tools-sdmp-11.3.0-10.1.aarch64.rpm openSUSE-SLE-15.3-2021-2241 Recommended update for grafana-status-panel moderate SUSE Updates openSUSE-SLE 15.3 This update for grafana-status-panel fixes the following issues: - Update plugin to version 1.0.10 to fix compatibility issues with Grafana versions higher than v6.7.x. grafana-status-panel-1.0.10-3.5.1.noarch.rpm grafana-status-panel-1.0.10-3.5.1.src.rpm openSUSE-SLE-15.3-2021-2320 Security update for sqlite3 important SUSE Updates openSUSE-SLE 15.3 This update for sqlite3 fixes the following issues: - Update to version 3.36.0 - CVE-2020-15358: heap-based buffer overflow in multiSelectOrderBy due to mishandling of query-flattener optimization (bsc#1173641) - CVE-2020-9327: NULL pointer dereference and segmentation fault because of generated column optimizations in isAuxiliaryVtabOperator (bsc#1164719) - CVE-2019-20218: selectExpander in select.c proceeds with WITH stack unwinding even after a parsing error (bsc#1160439) - CVE-2019-19959: memory-management error via ext/misc/zipfile.c involving embedded '\0' input (bsc#1160438) - CVE-2019-19923: improper handling of certain uses of SELECT DISTINCT in flattenSubquery may lead to null pointer dereference (bsc#1160309) - CVE-2019-19924: improper error handling in sqlite3WindowRewrite() (bsc#1159850) - CVE-2019-19925: improper handling of NULL pathname during an update of a ZIP archive (bsc#1159847) - CVE-2019-19926: improper handling of certain errors during parsing multiSelect in select.c (bsc#1159715) - CVE-2019-19880: exprListAppendList in window.c allows attackers to trigger an invalid pointer dereference (bsc#1159491) - CVE-2019-19603: during handling of CREATE TABLE and CREATE VIEW statements, does not consider confusion with a shadow table name (bsc#1158960) - CVE-2019-19646: pragma.c mishandles NOT NULL in an integrity_check PRAGMA command in certain cases of generated columns (bsc#1158959) - CVE-2019-19645: alter.c allows attackers to trigger infinite recursion via certain types of self-referential views in conjunction with ALTER TABLE statements (bsc#1158958) - CVE-2019-19317: lookupName in resolve.c omits bits from the colUsed bitmask in the case of a generated column, which allows attackers to cause a denial of service (bsc#1158812) - CVE-2019-19244: sqlite3,sqlite2,sqlite: The function sqlite3Select in select.c allows a crash if a sub-select uses both DISTINCT and window functions, and also has certain ORDER BY usage (bsc#1157818) - CVE-2015-3415: sqlite3VdbeExec comparison operator vulnerability (bsc#928701) - CVE-2015-3414: sqlite3,sqlite2: dequoting of collation-sequence names (bsc#928700) - CVE-2020-13434: integer overflow in sqlite3_str_vappendf (bsc#1172115) - CVE-2020-13630: (bsc#1172234: use-after-free in fts3EvalNextRow - CVE-2020-13631: virtual table allowed to be renamed to one of its shadow tables (bsc#1172236) - CVE-2020-13632: NULL pointer dereference via crafted matchinfo() query (bsc#1172240) - CVE-2020-13435: Malicious SQL statements could have crashed the process that is running SQLite (bsc#1172091) libsqlite3-0-3.36.0-3.12.1.x86_64.rpm libsqlite3-0-32bit-3.36.0-3.12.1.x86_64.rpm sqlite3-3.36.0-3.12.1.src.rpm sqlite3-3.36.0-3.12.1.x86_64.rpm sqlite3-devel-3.36.0-3.12.1.x86_64.rpm sqlite3-doc-3.36.0-3.12.1.noarch.rpm libsqlite3-0-3.36.0-3.12.1.s390x.rpm sqlite3-3.36.0-3.12.1.s390x.rpm sqlite3-devel-3.36.0-3.12.1.s390x.rpm libsqlite3-0-3.36.0-3.12.1.ppc64le.rpm sqlite3-3.36.0-3.12.1.ppc64le.rpm sqlite3-devel-3.36.0-3.12.1.ppc64le.rpm libsqlite3-0-3.36.0-3.12.1.aarch64.rpm sqlite3-3.36.0-3.12.1.aarch64.rpm sqlite3-devel-3.36.0-3.12.1.aarch64.rpm openSUSE-SLE-15.3-2021-2456 Recommended update for pam-config moderate SUSE Updates openSUSE-SLE 15.3 This update for pam-config fixes the following issues: - Add "revoke" to the option list for 'pam_keyinit'. - Fixed an issue when pam-config fails to create a new service config file. (bsc#1187091) pam-config-1.1-3.3.1.src.rpm pam-config-1.1-3.3.1.x86_64.rpm pam-config-1.1-3.3.1.s390x.rpm pam-config-1.1-3.3.1.ppc64le.rpm pam-config-1.1-3.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-2606 Recommended update for libcbor moderate SUSE Updates openSUSE-SLE 15.3 This update for libcbor fixes the following issues: - Implement a fix to avoid building shared library twice. (bsc#1102408) libcbor-0.5.0-4.3.1.src.rpm libcbor-devel-0.5.0-4.3.1.x86_64.rpm libcbor0-0.5.0-4.3.1.x86_64.rpm libcbor-devel-0.5.0-4.3.1.s390x.rpm libcbor0-0.5.0-4.3.1.s390x.rpm libcbor-devel-0.5.0-4.3.1.ppc64le.rpm libcbor0-0.5.0-4.3.1.ppc64le.rpm libcbor-devel-0.5.0-4.3.1.aarch64.rpm libcbor0-0.5.0-4.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-2261 Recommended update for xmlsec1 moderate SUSE Updates openSUSE-SLE 15.3 This update rereleases xmlsec1 for SUSE Linux Enterprise 15 SP3 to fix a migration issue. libxmlsec1-1-1.2.28-7.9.1.x86_64.rpm libxmlsec1-gcrypt1-1.2.28-7.9.1.x86_64.rpm libxmlsec1-gnutls1-1.2.28-7.9.1.x86_64.rpm libxmlsec1-nss1-1.2.28-7.9.1.x86_64.rpm libxmlsec1-openssl1-1.2.28-7.9.1.x86_64.rpm xmlsec1-1.2.28-7.9.1.src.rpm xmlsec1-1.2.28-7.9.1.x86_64.rpm xmlsec1-devel-1.2.28-7.9.1.x86_64.rpm xmlsec1-gcrypt-devel-1.2.28-7.9.1.x86_64.rpm xmlsec1-gnutls-devel-1.2.28-7.9.1.x86_64.rpm xmlsec1-nss-devel-1.2.28-7.9.1.x86_64.rpm xmlsec1-openssl-devel-1.2.28-7.9.1.x86_64.rpm libxmlsec1-1-1.2.28-7.9.1.s390x.rpm libxmlsec1-gcrypt1-1.2.28-7.9.1.s390x.rpm libxmlsec1-gnutls1-1.2.28-7.9.1.s390x.rpm libxmlsec1-nss1-1.2.28-7.9.1.s390x.rpm libxmlsec1-openssl1-1.2.28-7.9.1.s390x.rpm xmlsec1-1.2.28-7.9.1.s390x.rpm xmlsec1-devel-1.2.28-7.9.1.s390x.rpm xmlsec1-gcrypt-devel-1.2.28-7.9.1.s390x.rpm xmlsec1-gnutls-devel-1.2.28-7.9.1.s390x.rpm xmlsec1-nss-devel-1.2.28-7.9.1.s390x.rpm xmlsec1-openssl-devel-1.2.28-7.9.1.s390x.rpm libxmlsec1-1-1.2.28-7.9.1.ppc64le.rpm libxmlsec1-gcrypt1-1.2.28-7.9.1.ppc64le.rpm libxmlsec1-gnutls1-1.2.28-7.9.1.ppc64le.rpm libxmlsec1-nss1-1.2.28-7.9.1.ppc64le.rpm libxmlsec1-openssl1-1.2.28-7.9.1.ppc64le.rpm xmlsec1-1.2.28-7.9.1.ppc64le.rpm xmlsec1-devel-1.2.28-7.9.1.ppc64le.rpm xmlsec1-gcrypt-devel-1.2.28-7.9.1.ppc64le.rpm xmlsec1-gnutls-devel-1.2.28-7.9.1.ppc64le.rpm xmlsec1-nss-devel-1.2.28-7.9.1.ppc64le.rpm xmlsec1-openssl-devel-1.2.28-7.9.1.ppc64le.rpm libxmlsec1-1-1.2.28-7.9.1.aarch64.rpm libxmlsec1-gcrypt1-1.2.28-7.9.1.aarch64.rpm libxmlsec1-gnutls1-1.2.28-7.9.1.aarch64.rpm libxmlsec1-nss1-1.2.28-7.9.1.aarch64.rpm libxmlsec1-openssl1-1.2.28-7.9.1.aarch64.rpm xmlsec1-1.2.28-7.9.1.aarch64.rpm xmlsec1-devel-1.2.28-7.9.1.aarch64.rpm xmlsec1-gcrypt-devel-1.2.28-7.9.1.aarch64.rpm xmlsec1-gnutls-devel-1.2.28-7.9.1.aarch64.rpm xmlsec1-nss-devel-1.2.28-7.9.1.aarch64.rpm xmlsec1-openssl-devel-1.2.28-7.9.1.aarch64.rpm openSUSE-SLE-15.3-2021-2444 Recommended update for autogen low SUSE Updates openSUSE-SLE 15.3 This update for autogen fixes the following issue: This update doesn't solve any visible issue to final users but it makes the builds reproducible. (bsc#1047218) In particular: - it normalize 'tar' - it normalize date in 'man-pages' autogen-5.18.12-3.3.1.src.rpm autogen-5.18.12-3.3.1.x86_64.rpm libopts-devel-5.18.12-3.3.1.x86_64.rpm libopts25-5.18.12-3.3.1.x86_64.rpm autogen-5.18.12-3.3.1.s390x.rpm libopts-devel-5.18.12-3.3.1.s390x.rpm libopts25-5.18.12-3.3.1.s390x.rpm autogen-5.18.12-3.3.1.ppc64le.rpm libopts-devel-5.18.12-3.3.1.ppc64le.rpm libopts25-5.18.12-3.3.1.ppc64le.rpm autogen-5.18.12-3.3.1.aarch64.rpm libopts-devel-5.18.12-3.3.1.aarch64.rpm libopts25-5.18.12-3.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-2587 Recommended update for yast2-s390 moderate SUSE Updates openSUSE-SLE 15.3 This update for yast2-s390 fixes the following issues: - Do not activate 'DASD' devices after formatting. (bsc#1187012) yast2-s390-4.3.4-3.3.1.s390x.rpm yast2-s390-4.3.4-3.3.1.src.rpm openSUSE-SLE-15.3-2021-2455 Recommended update for php7-pear moderate SUSE Updates openSUSE-SLE 15.3 This update for php7-pear fixes the following issues: - Fix for an issue when php-pear provides error messages with invalid variables. (bsc#1187372) php7-pear-1.10.19-3.3.1.noarch.rpm php7-pear-1.10.19-3.3.1.src.rpm php7-pecl-1.10.19-3.3.1.noarch.rpm openSUSE-SLE-15.3-2021-2895 Recommended update for unixODBC moderate SUSE Updates openSUSE-SLE 15.3 This update for unixODBC fixes the following issues: - ECO: Update unixODBC to 2.3.9 in SLE 15. (jsc#SLE-18004) - Fix incorrect permission for documentation files. - Update requires and baselibs for new libodbc2. - Employ shared library packaging guideline: new subpacakge libodbc2. - Update to 2.3.9: * Remove "#define UNIXODBC_SOURCE" from unixodbc_conf.h - Update to 2.3.8: * Add configure support for editline * SQLDriversW was ignoring user config * SQLDataSources Fix termination character * Fix for pooling seg fault * Make calling SQLSetStmtAttrW call the W function in the driver is its there * Try and fix race condition clearing system odbc.ini file * Remove trailing space from isql/iusql SQL * When setting connection attributes set before connect also check if the W entry poins can be used * Try calling the W error functions first if available in the driver * Add iconvperdriver configure option to allow calling unicode_setup in SQLAllocHandle * iconv handles was being lost when reusing pooled connection * Catch null copy in iniPropertyInsert * Fix a few leaks - Update to 2.3.7: * Fix for pkg-config file update on no linux platforms * Add W entry for GUI work * Various fixes for SQLBrowseConnect/W, SQLGetConnectAttr/W,and SQLSetConnectAttr/W * Fix buffer overflows in SQLConnect/W and refine behaviour of SQLGet/WritePrivateProfileString * SQLBrowseConnect/W allow disconnecting a started browse session after error * Add --with-stats-ftok-name configure option to allow the selection of a file name used to generate the IPC id when collecting stats. Default is the system odbc.ini file * Improve diag record handling with the behavior of Windows DM and export SQLCancelHandle * bug fix when SQLGetPrivateProfileString() is called to get a list of sections or a list of keys * Connection pooling: Fix liveness check for Unicode drivers libltdl7-2.4.6-3.4.1.x86_64.rpm libltdl7-32bit-2.4.6-3.4.1.x86_64.rpm libtool-2.4.6-3.4.1.src.rpm libtool-2.4.6-3.4.1.x86_64.rpm libtool-32bit-2.4.6-3.4.1.x86_64.rpm libltdl7-2.4.6-3.4.1.s390x.rpm libtool-2.4.6-3.4.1.s390x.rpm libltdl7-2.4.6-3.4.1.ppc64le.rpm libtool-2.4.6-3.4.1.ppc64le.rpm libltdl7-2.4.6-3.4.1.aarch64.rpm libtool-2.4.6-3.4.1.aarch64.rpm openSUSE-SLE-15.3-2021-2305 Security update for the Linux Kernel important SUSE Updates openSUSE-SLE 15.3 The SUSE Linux Enterprise 15 SP3 Azure kernel was updated to receive various security and bugfixes. The following security bugs were fixed: - CVE-2021-3573: Fixed an UAF vulnerability in function that can allow attackers to corrupt kernel heaps and adopt further exploitations. (bsc#1186666) - CVE-2021-0605: Fixed an out-of-bounds read which could lead to local information disclosure in the kernel with System execution privileges needed. (bsc#1187601) - CVE-2021-0512: Fixed a possible out-of-bounds write which could lead to local escalation of privilege with no additional execution privileges needed. (bsc#1187595) - CVE-2021-33624: Fixed a bug which allows unprivileged BPF program to leak the contents of arbitrary kernel memory (and therefore, of all physical memory) via a side-channel. (bsc#1187554) - CVE-2021-34693: Fixed a bug in net/can/bcm.c which could allow local users to obtain sensitive information from kernel stack memory because parts of a data structure are uninitialized. (bsc#1187452) The following non-security bugs were fixed: - 0001-x86-sched-Treat-Intel-SNC-topology-as-default-COD-as.patch: (bsc#1187263). - alx: Fix an error handling path in 'alx_probe()' (git-fixes). - asm-generic/hyperv: Add missing function prototypes per -W1 warnings (bsc#1186071). - ASoC: fsl-asoc-card: Set .owner attribute when registering card (git-fixes). - ASoC: Intel: bytcr_rt5640: Add quirk for the Glavey TM800A550L tablet (git-fixes). - ASoC: Intel: bytcr_rt5640: Add quirk for the Lenovo Miix 3-830 tablet (git-fixes). - ASoC: max98088: fix ni clock divider calculation (git-fixes). - ASoC: rt5659: Fix the lost powers for the HDA header (git-fixes). - ASoC: rt5682: Fix the fast discharge for headset unplugging in soundwire mode (git-fixes). - ASoC: sti-sas: add missing MODULE_DEVICE_TABLE (git-fixes). - ASoC: tas2562: Fix TDM_CFG0_SAMPRATE values (git-fixes). - batman-adv: Avoid WARN_ON timing related checks (git-fixes). - be2net: Fix an error handling path in 'be_probe()' (git-fixes). - block: Discard page cache of zone reset target range (bsc#1187402). - Bluetooth: Add a new USB ID for RTL8822CE (git-fixes). - Bluetooth: use correct lock to prevent UAF of hdev object (git-fixes). - bnxt_en: Call bnxt_ethtool_free() in bnxt_init_one() error path (jsc#SLE-8371 bsc#1153274). - bnxt_en: Fix TQM fastpath ring backing store computation (jsc#SLE-8371 bsc#1153274). - bnxt_en: Rediscover PHY capabilities after firmware reset (jsc#SLE-8371 bsc#1153274). - bpf: Fix integer overflow in argument calculation for bpf_map_area_alloc (bsc#1177028). - bpf: Fix libelf endian handling in resolv_btfids (bsc#1177028). - bpfilter: Specify the log level for the kmsg message (bsc#1155518). - can: mcba_usb: fix memory leak in mcba_usb (git-fixes). - ceph: must hold snap_rwsem when filling inode for async create (bsc#1187927). - cfg80211: avoid double free of PMSR request (git-fixes). - cfg80211: make certificate generation more robust (git-fixes). - cgroup1: do not allow '\n' in renaming (bsc#1187972). - clocksource/drivers/hyper-v: Handle sched_clock differences inline (bsc#1186071). - clocksource/drivers/hyper-v: Move handling of STIMER0 interrupts (bsc#1186071). - clocksource/drivers/hyper-v: Set clocksource rating based on Hyper-V feature (bsc#1186071). - cxgb4: fix endianness when flashing boot image (jsc#SLE-15131). - cxgb4: fix sleep in atomic when flashing PHY firmware (jsc#SLE-15131). - cxgb4: fix wrong ethtool n-tuple rule lookup (jsc#SLE-15131). - cxgb4: fix wrong shift (git-fixes). - cxgb4: halt chip before flashing PHY firmware image (jsc#SLE-15131). - dax: Add a wakeup mode parameter to put_unlocked_entry() (bsc#1187411). - dax: Add an enum for specifying dax wakup mode (bsc#1187411). - dax: fix ENOMEM handling in grab_mapping_entry() (bsc#1184212). - dax: Wake up all waiters after invalidating dax entry (bsc#1187411). - dmaengine: ALTERA_MSGDMA depends on HAS_IOMEM (git-fixes). - dmaengine: fsl-dpaa2-qdma: Fix error return code in two functions (git-fixes). - dmaengine: pl330: fix wrong usage of spinlock flags in dma_cyclc (git-fixes). - dmaengine: QCOM_HIDMA_MGMT depends on HAS_IOMEM (git-fixes). - dmaengine: stedma40: add missing iounmap() on error in d40_probe() (git-fixes). - drivers: hv: Create a consistent pattern for checking Hyper-V hypercall status (bsc#1186071). - drivers: hv: Fix EXPORT_SYMBOL and tab spaces issue (bsc#1186071). - Drivers: hv: Redo Hyper-V synthetic MSR get/set functions (bsc#1186071). - Drivers: hv: vmbus: Check for pending channel interrupts before taking a CPU offline (bsc#1186071). - Drivers: hv: vmbus: Drivers: hv: vmbus: Introduce CHANNELMSG_MODIFYCHANNEL_RESPONSE (bsc#1186071). - Drivers: hv: vmbus: Drop error message when 'No request id available' (bsc#1183682). - Drivers: hv: vmbus: Handle auto EOI quirk inline (bsc#1186071). - Drivers: hv: vmbus: Introduce and negotiate VMBus protocol version 5.3 (bsc#1186071). - Drivers: hv: vmbus: Move handling of VMbus interrupts (bsc#1186071). - Drivers: hv: vmbus: Move hyperv_report_panic_msg to arch neutral code (bsc#1186071). - Drivers: hv: vmbus: remove unused function (bsc#1186071). - Drivers: hv: vmbus: Remove unused linux/version.h header (bsc#1186071). - drm/amd/amdgpu:save psp ring wptr to avoid attack (git-fixes). - drm/amd/display: Allow bandwidth validation for 0 streams (git-fixes). - drm/amd/display: Fix potential memory leak in DMUB hw_init (git-fixes). - drm/amdgpu: refine amdgpu_fru_get_product_info (git-fixes). - drm/sun4i: dw-hdmi: Make HDMI PHY into a platform device (git-fixes). - drm/tegra: sor: Do not leak runtime PM reference (git-fixes). - drm/vc4: hdmi: Make sure the controller is powered in detect (git-fixes). - drm/vc4: hdmi: Move the HSM clock enable to runtime_pm (git-fixes). - drm: Fix use-after-free read in drm_getunique() (git-fixes). - drm: Lock pointer access in drm_master_release() (git-fixes). - dt-bindings: reset: meson8b: fix duplicate reset IDs (git-fixes). - ethtool: strset: fix message length calculation (bsc#1176447). - ext4: fix bug on in ext4_es_cache_extent as ext4_split_extent_at failed (bsc#1187408). - ext4: fix check to prevent false positive report of incorrect used inodes (bsc#1187404). - ext4: fix error code in ext4_commit_super (bsc#1187407). - ext4: fix memory leak in ext4_fill_super (bsc#1187409). - FCOE: fcoe_wwn_from_mac kABI fix (bsc#1187886). - fs: fix reporting supported extra file attributes for statx() (bsc#1187410). - ftrace: Do not blindly read the ip address in ftrace_bug() (git-fixes). - ftrace: Free the trampoline when ftrace_startup() fails (git-fixes). - fuse: BUG_ON correction in fuse_dev_splice_write() (bsc#1187356). - HID: Add BUS_VIRTUAL to hid_connect logging (git-fixes). - HID: gt683r: add missing MODULE_DEVICE_TABLE (git-fixes). - HID: hid-input: add mapping for emoji picker key (git-fixes). - HID: hid-sensor-hub: Return error for hid_set_field() failure (git-fixes). - HID: quirks: Set INCREMENT_USAGE_ON_DUPLICATE for Saitek X65 (git-fixes). - HID: usbhid: fix info leak in hid_submit_ctrl (git-fixes). - HID: usbhid: Fix race between usbhid_close() and usbhid_stop() (git-fixes). - hv: hyperv.h: a few mundane typo fixes (bsc#1186071). - hv_netvsc: Add a comment clarifying batching logic (bsc#1186071). - hv_netvsc: Add error handling while switching data path (bsc#1186071). - hv_netvsc: Make netvsc/VF binding check both MAC and serial number (bsc#1186071). - hwmon: (scpi-hwmon) shows the negative temperature properly (git-fixes). - i2c: mpc: Make use of i2c_recover_bus() (git-fixes). - ice: add ndo_bpf callback for safe mode netdev ops (jsc#SLE-7926). - ice: parameterize functions responsible for Tx ring management (jsc#SLE-12878). - isdn: mISDN: netjet: Fix crash in nj_probe: (git-fixes). - kernel-binary.spec.in: Regenerate makefile when not using mkmakefile. - kernel: kexec_file: fix error return code of kexec_calculate_store_digests() (git-fixes). - kthread: prevent deadlock when kthread_mod_delayed_work() races with kthread_cancel_delayed_work_sync() (bsc#1187867). - kthread_worker: split code for canceling the delayed work timer (bsc#1187867). - kyber: fix out of bounds access when preempted (bsc#1187403). - lib: vdso: Remove CROSS_COMPILE_COMPAT_VDSO (bsc#1164648,jsc#SLE-11493). - media: mtk-mdp: Check return value of of_clk_get (git-fixes). - media: mtk-mdp: Fix a refcounting bug on error in init (git-fixes). - media: s5p-g2d: Fix a memory leak in an error handling path in 'g2d_probe()' (git-fixes). - mlxsw: reg: Spectrum-3: Enforce lowest max-shaper burst size of 11 (bsc#1176774). - mmc: meson-gx: use memcpy_to/fromio for dram-access-quirk (git-fixes). - module: limit enabling module.sig_enforce (git-fixes). - net/mlx5: Consider RoCE cap before init RDMA resources (git-fixes). - net/mlx5: E-Switch, Allow setting GUID for host PF vport (jsc#SLE-15172). - net/mlx5: E-Switch, Read PF mac address (jsc#SLE-15172). - net/mlx5: Fix PBMC register mapping (git-fixes). - net/mlx5: Fix placement of log_max_flow_counter (git-fixes). - net/mlx5: Fix sleep while atomic in mlx5_eswitch_get_vepa (git-fixes). - net/mlx5: Reset mkey index on creation (jsc#SLE-15172). - net/mlx5e: Block offload of outer header csum for UDP tunnels (git-fixes). - net/mlx5e: Fix page reclaim for dead peer hairpin (git-fixes). - net/mlx5e: Remove dependency in IPsec initialization flows (git-fixes). - net/nfc/rawsock.c: fix a permission check bug (git-fixes). - net/sched: act_ct: handle DNAT tuple collision (bsc#1154353). - net/x25: Return the correct errno code (git-fixes). - net: mvpp2: add mvpp2_phylink_to_port() helper (bsc#1187171). - netxen_nic: Fix an error handling path in 'netxen_nic_probe()' (git-fixes). - NFS: Fix a potential NULL dereference in nfs_get_client() (git-fixes). - NFS: Fix deadlock between nfs4_evict_inode() and nfs4_opendata_get_inode() (git-fixes). - NFS: Fix use-after-free in nfs4_init_client() (git-fixes). - nvmem: rmem: fix undefined reference to memremap (git-fixes). - ocfs2: fix data corruption by fallocate (bsc#1187412). - PCI: aardvark: Do not rely on jiffies while holding spinlock (git-fixes). - PCI: aardvark: Fix kernel panic during PIO transfer (git-fixes). - PCI: Add ACS quirk for Broadcom BCM57414 NIC (git-fixes). - PCI: hv: Drop msi_controller structure (bsc#1186071). - PCI: Mark some NVIDIA GPUs to avoid bus reset (git-fixes). - PCI: Mark TI C667X to avoid bus reset (git-fixes). - PCI: Work around Huawei Intelligent NIC VF FLR erratum (git-fixes). - perf/x86/intel/uncore: Fix a kernel WARNING triggered by maxcpus=1 (git-fixes). - perf/x86/intel/uncore: Remove uncore extra PCI dev HSWEP_PCI_PCU_3 (bsc#1184685). - powerpc/perf: Fix crash in perf_instruction_pointer() when ppmu is not set (jsc#SLE-13513 bsc#1176919 ltc#186162 git-fixes). - qla2xxx: synchronize rport dev_loss_tmo setting (bsc#1182470 bsc#1185486). - qlcnic: Fix an error handling path in 'qlcnic_probe()' (git-fixes). - radeon: use memcpy_to/fromio for UVD fw upload (git-fixes). - regulator: bd70528: Fix off-by-one for buck123 .n_voltages setting (git-fixes). - Removed patch that was incorrectly added to SLE15-SP2 (bsc#1186949) - Revert "ecryptfs: replace BUG_ON with error handling code" (bsc#1187413). - Revert "ibmvnic: simplify reset_long_term_buff function" (bsc#1186206 ltc#191041). - Revert "PCI: PM: Do not read power state in pci_enable_device_flags()" (git-fixes). - Revert "video: hgafb: fix potential NULL pointer dereference" (git-fixes). - Revert "video: imsttfb: fix potential NULL pointer dereferences" (bsc#1152489) - s390/dasd: add missing discipline function (git-fixes). - s390/stack: fix possible register corruption with stack switch helper (bsc#1185677). - sched/debug: Fix cgroup_path[] serialization (git-fixes) - sched/fair: Keep load_avg and load_sum synced (git-fixes) - scsi: core: Fix race between handling STS_RESOURCE and completion (bsc#1187883). - scsi: fcoe: Fix mismatched fcoe_wwn_from_mac declaration (bsc#1187886). - scsi: storvsc: Enable scatterlist entry lengths > 4Kbytes (bsc#1186071). - scsi: storvsc: Parameterize number hardware queues (bsc#1186071). - scsi: ufs: Fix imprecise load calculation in devfreq window (bsc#1187795). - SCSI: ufs: fix ktime_t kabi change (bsc#1187795). - scsi: ufs: ufshcd-pltfrm depends on HAS_IOMEM (bsc#1187980). - spi: spi-nxp-fspi: move the register operation after the clock enable (git-fixes). - spi: sprd: Add missing MODULE_DEVICE_TABLE (git-fixes). - spi: stm32-qspi: Always wait BUSY bit to be cleared in stm32_qspi_wait_cmd() (git-fixes). - SUNRPC: Handle major timeout in xprt_adjust_timeout() (git-fixes). - SUNRPC: Handle major timeout in xprt_adjust_timeout() (git-fixes). - tracing: Correct the length check which causes memory corruption (git-fixes). - tracing: Do no increment trace_clock_global() by one (git-fixes). - tracing: Do not stop recording cmdlines when tracing is off (git-fixes). - tracing: Do not stop recording comms if the trace file is being read (git-fixes). - tracing: Restructure trace_clock_global() to never block (git-fixes). - USB: core: hub: Disable autosuspend for Cypress CY7C65632 (git-fixes). - USB: dwc3: core: fix kernel panic when do reboot (git-fixes). - USB: dwc3: core: fix kernel panic when do reboot (git-fixes). - USB: dwc3: debugfs: Add and remove endpoint dirs dynamically (git-fixes). - USB: dwc3: ep0: fix NULL pointer exception (git-fixes). - USB: f_ncm: only first packet of aggregate needs to start timer (git-fixes). - USB: f_ncm: only first packet of aggregate needs to start timer (git-fixes). - USB: fix various gadget panics on 10gbps cabling (git-fixes). - USB: fix various gadget panics on 10gbps cabling (git-fixes). - USB: gadget: eem: fix wrong eem header operation (git-fixes). - USB: gadget: eem: fix wrong eem header operation (git-fixes). - USB: gadget: f_fs: Ensure io_completion_wq is idle during unbind (git-fixes). - USB: gadget: f_fs: Ensure io_completion_wq is idle during unbind (git-fixes). - USB: serial: ftdi_sio: add NovaTech OrionMX product ID (git-fixes). - USB: serial: ftdi_sio: add NovaTech OrionMX product ID (git-fixes). - USB: serial: omninet: add device id for Zyxel Omni 56K Plus (git-fixes). - USB: serial: omninet: add device id for Zyxel Omni 56K Plus (git-fixes). - video: hgafb: correctly handle card detect failure during probe (git-fixes). - video: hgafb: fix potential NULL pointer dereference (git-fixes). - vrf: fix maximum MTU (git-fixes). - x86/elf: Use _BITUL() macro in UAPI headers (bsc#1178134). - x86/fpu: Preserve supervisor states in sanitize_restored_user_xstate() (bsc#1178134). - x86/hyper-v: Move hv_message_type to architecture neutral module - x86/hyperv: Fix unused variable 'hi' warning in hv_apic_read (bsc#1186071). - x86/hyperv: Fix unused variable 'msr_val' warning in hv_qlock_wait (bsc#1186071). - x86/hyperv: Move hv_do_rep_hypercall to asm-generic (bsc#1186071). - x86/hyperv: remove unused linux/version.h header (bsc#1186071). - x86/pkru: Write hardware init value to PKRU when xstate is init (bsc#1152489). - x86/process: Check PF_KTHREAD and not current->mm for kernel threads (bsc#1152489). - xen-blkback: fix compatibility bug with single page rings (git-fixes). - xen-pciback: reconfigure also from backend watch handler (git-fixes). - xen-pciback: redo VF placement in the virtual topology (git-fixes). - xen/evtchn: Change irq_info lock to raw_spinlock_t (git-fixes). - xfrm: policy: Read seqcount outside of rcu-read side in xfrm_policy_lookup_bytype (bsc#1185675). cluster-md-kmp-azure-5.3.18-38.11.1.x86_64.rpm True dlm-kmp-azure-5.3.18-38.11.1.x86_64.rpm True gfs2-kmp-azure-5.3.18-38.11.1.x86_64.rpm True kernel-azure-5.3.18-38.11.1.nosrc.rpm True kernel-azure-5.3.18-38.11.1.x86_64.rpm True kernel-azure-devel-5.3.18-38.11.1.x86_64.rpm True kernel-azure-extra-5.3.18-38.11.1.x86_64.rpm True kernel-azure-livepatch-devel-5.3.18-38.11.1.x86_64.rpm True kernel-azure-optional-5.3.18-38.11.1.x86_64.rpm True kernel-devel-azure-5.3.18-38.11.1.noarch.rpm True kernel-source-azure-5.3.18-38.11.1.noarch.rpm True kernel-source-azure-5.3.18-38.11.1.src.rpm True kernel-syms-azure-5.3.18-38.11.1.src.rpm True kernel-syms-azure-5.3.18-38.11.1.x86_64.rpm True kselftests-kmp-azure-5.3.18-38.11.1.x86_64.rpm True ocfs2-kmp-azure-5.3.18-38.11.1.x86_64.rpm True reiserfs-kmp-azure-5.3.18-38.11.1.x86_64.rpm True openSUSE-SLE-15.3-2021-2640 Recommended update for cloud-regionsrv-client moderate SUSE Updates openSUSE-SLE 15.3 This update for cloud-regionsrv-client contains the following fix: - Update to version 9.2.0: (bsc#1029162) + Support IPv6 as best-effort, with fallback to IPv4 cloud-regionsrv-client-9.2.0-6.46.1.noarch.rpm cloud-regionsrv-client-9.2.0-6.46.1.src.rpm cloud-regionsrv-client-generic-config-1.0.0-6.46.1.noarch.rpm cloud-regionsrv-client-plugin-azure-1.0.1-6.46.1.noarch.rpm cloud-regionsrv-client-plugin-ec2-1.0.1-6.46.1.noarch.rpm cloud-regionsrv-client-plugin-gce-1.0.0-6.46.1.noarch.rpm openSUSE-SLE-15.3-2021-2352 Security update for the Linux Kernel important SUSE Updates openSUSE-SLE 15.3 The SUSE Linux Enterprise 15 SP3 kernel was updated to receive various security and bugfixes. The following security bugs were fixed: - CVE-2021-3573: Fixed an UAF vulnerability in function that can allow attackers to corrupt kernel heaps and adopt further exploitations. (bsc#1186666) - CVE-2021-0605: Fixed an out-of-bounds read which could lead to local information disclosure in the kernel with System execution privileges needed. (bsc#1187601) - CVE-2021-0512: Fixed a possible out-of-bounds write which could lead to local escalation of privilege with no additional execution privileges needed. (bsc#1187595) - CVE-2021-33624: Fixed a bug which allows unprivileged BPF program to leak the contents of arbitrary kernel memory (and therefore, of all physical memory) via a side-channel. (bsc#1187554) - CVE-2021-34693: Fixed a bug in net/can/bcm.c which could allow local users to obtain sensitive information from kernel stack memory because parts of a data structure are uninitialized. (bsc#1187452) The following non-security bugs were fixed: - 0001-x86-sched-Treat-Intel-SNC-topology-as-default-COD-as.patch: (bsc#1187263). - alx: Fix an error handling path in 'alx_probe()' (git-fixes). - ASoC: fsl-asoc-card: Set .owner attribute when registering card (git-fixes). - ASoC: Intel: bytcr_rt5640: Add quirk for the Glavey TM800A550L tablet (git-fixes). - ASoC: Intel: bytcr_rt5640: Add quirk for the Lenovo Miix 3-830 tablet (git-fixes). - ASoC: max98088: fix ni clock divider calculation (git-fixes). - ASoC: rt5659: Fix the lost powers for the HDA header (git-fixes). - ASoC: rt5682: Fix the fast discharge for headset unplugging in soundwire mode (git-fixes). - ASoC: sti-sas: add missing MODULE_DEVICE_TABLE (git-fixes). - ASoC: tas2562: Fix TDM_CFG0_SAMPRATE values (git-fixes). - batman-adv: Avoid WARN_ON timing related checks (git-fixes). - be2net: Fix an error handling path in 'be_probe()' (git-fixes). - block: Discard page cache of zone reset target range (bsc#1187402). - Bluetooth: Add a new USB ID for RTL8822CE (git-fixes). - Bluetooth: use correct lock to prevent UAF of hdev object (git-fixes). - bnxt_en: Call bnxt_ethtool_free() in bnxt_init_one() error path (jsc#SLE-8371 bsc#1153274). - bnxt_en: Fix TQM fastpath ring backing store computation (jsc#SLE-8371 bsc#1153274). - bnxt_en: Rediscover PHY capabilities after firmware reset (jsc#SLE-8371 bsc#1153274). - bpf: Fix integer overflow in argument calculation for bpf_map_area_alloc (bsc#1177028). - bpf: Fix libelf endian handling in resolv_btfids (bsc#1177028). - bpfilter: Specify the log level for the kmsg message (bsc#1155518). - can: mcba_usb: fix memory leak in mcba_usb (git-fixes). - ceph: must hold snap_rwsem when filling inode for async create (bsc#1187927). - cfg80211: avoid double free of PMSR request (git-fixes). - cfg80211: make certificate generation more robust (git-fixes). - cgroup1: do not allow '\n' in renaming (bsc#1187972). - cxgb4: fix endianness when flashing boot image (jsc#SLE-15131). - cxgb4: fix sleep in atomic when flashing PHY firmware (jsc#SLE-15131). - cxgb4: fix wrong ethtool n-tuple rule lookup (jsc#SLE-15131). - cxgb4: fix wrong shift (git-fixes). - cxgb4: halt chip before flashing PHY firmware image (jsc#SLE-15131). - dax: Add a wakeup mode parameter to put_unlocked_entry() (bsc#1187411). - dax: Add an enum for specifying dax wakup mode (bsc#1187411). - dax: fix ENOMEM handling in grab_mapping_entry() (bsc#1184212). - dax: Wake up all waiters after invalidating dax entry (bsc#1187411). - dmaengine: ALTERA_MSGDMA depends on HAS_IOMEM (git-fixes). - dmaengine: fsl-dpaa2-qdma: Fix error return code in two functions (git-fixes). - dmaengine: pl330: fix wrong usage of spinlock flags in dma_cyclc (git-fixes). - dmaengine: QCOM_HIDMA_MGMT depends on HAS_IOMEM (git-fixes). - dmaengine: stedma40: add missing iounmap() on error in d40_probe() (git-fixes). - drm: Fix use-after-free read in drm_getunique() (git-fixes). - drm: Lock pointer access in drm_master_release() (git-fixes). - drm/amd/amdgpu:save psp ring wptr to avoid attack (git-fixes). - drm/amd/display: Allow bandwidth validation for 0 streams (git-fixes). - drm/amd/display: Fix potential memory leak in DMUB hw_init (git-fixes). - drm/amdgpu: refine amdgpu_fru_get_product_info (git-fixes). - drm/sun4i: dw-hdmi: Make HDMI PHY into a platform device (git-fixes). - drm/tegra: sor: Do not leak runtime PM reference (git-fixes). - drm/vc4: hdmi: Make sure the controller is powered in detect (git-fixes). - drm/vc4: hdmi: Move the HSM clock enable to runtime_pm (git-fixes). - dt-bindings: reset: meson8b: fix duplicate reset IDs (git-fixes). - ethtool: strset: fix message length calculation (bsc#1176447). - ext4: fix bug on in ext4_es_cache_extent as ext4_split_extent_at failed (bsc#1187408). - ext4: fix check to prevent false positive report of incorrect used inodes (bsc#1187404). - ext4: fix error code in ext4_commit_super (bsc#1187407). - ext4: fix memory leak in ext4_fill_super (bsc#1187409). - FCOE: fcoe_wwn_from_mac kABI fix (bsc#1187886). - fs: fix reporting supported extra file attributes for statx() (bsc#1187410). - ftrace: Do not blindly read the ip address in ftrace_bug() (git-fixes). - ftrace: Free the trampoline when ftrace_startup() fails (git-fixes). - fuse: BUG_ON correction in fuse_dev_splice_write() (bsc#1187356). - HID: Add BUS_VIRTUAL to hid_connect logging (git-fixes). - HID: gt683r: add missing MODULE_DEVICE_TABLE (git-fixes). - HID: hid-input: add mapping for emoji picker key (git-fixes). - HID: hid-sensor-hub: Return error for hid_set_field() failure (git-fixes). - HID: quirks: Set INCREMENT_USAGE_ON_DUPLICATE for Saitek X65 (git-fixes). - HID: usbhid: fix info leak in hid_submit_ctrl (git-fixes). - HID: usbhid: Fix race between usbhid_close() and usbhid_stop() (git-fixes). - hwmon: (scpi-hwmon) shows the negative temperature properly (git-fixes). - i2c: mpc: Make use of i2c_recover_bus() (git-fixes). - ice: add ndo_bpf callback for safe mode netdev ops (jsc#SLE-7926). - ice: parameterize functions responsible for Tx ring management (jsc#SLE-12878). - isdn: mISDN: netjet: Fix crash in nj_probe: (git-fixes). - kernel-binary.spec.in: Regenerate makefile when not using mkmakefile. - kernel: kexec_file: fix error return code of kexec_calculate_store_digests() (git-fixes). - kthread_worker: split code for canceling the delayed work timer (bsc#1187867). - kthread: prevent deadlock when kthread_mod_delayed_work() races with kthread_cancel_delayed_work_sync() (bsc#1187867). - kyber: fix out of bounds access when preempted (bsc#1187403). - lib: vdso: Remove CROSS_COMPILE_COMPAT_VDSO (bsc#1164648,jsc#SLE-11493). - media: mtk-mdp: Check return value of of_clk_get (git-fixes). - media: mtk-mdp: Fix a refcounting bug on error in init (git-fixes). - media: s5p-g2d: Fix a memory leak in an error handling path in 'g2d_probe()' (git-fixes). - mlxsw: reg: Spectrum-3: Enforce lowest max-shaper burst size of 11 (bsc#1176774). - mmc: meson-gx: use memcpy_to/fromio for dram-access-quirk (git-fixes). - module: limit enabling module.sig_enforce (git-fixes). - net: mvpp2: add mvpp2_phylink_to_port() helper (bsc#1187171). - net/mlx5: Consider RoCE cap before init RDMA resources (git-fixes). - net/mlx5: E-Switch, Allow setting GUID for host PF vport (jsc#SLE-15172). - net/mlx5: E-Switch, Read PF mac address (jsc#SLE-15172). - net/mlx5: Fix PBMC register mapping (git-fixes). - net/mlx5: Fix placement of log_max_flow_counter (git-fixes). - net/mlx5: Fix sleep while atomic in mlx5_eswitch_get_vepa (git-fixes). - net/mlx5: Reset mkey index on creation (jsc#SLE-15172). - net/mlx5e: Block offload of outer header csum for UDP tunnels (git-fixes). - net/mlx5e: Fix page reclaim for dead peer hairpin (git-fixes). - net/mlx5e: Remove dependency in IPsec initialization flows (git-fixes). - net/nfc/rawsock.c: fix a permission check bug (git-fixes). - net/sched: act_ct: handle DNAT tuple collision (bsc#1154353). - net/x25: Return the correct errno code (git-fixes). - netxen_nic: Fix an error handling path in 'netxen_nic_probe()' (git-fixes). - NFS: Fix a potential NULL dereference in nfs_get_client() (git-fixes). - NFS: Fix use-after-free in nfs4_init_client() (git-fixes). - NFS: Fix deadlock between nfs4_evict_inode() and nfs4_opendata_get_inode() (git-fixes). - nvmem: rmem: fix undefined reference to memremap (git-fixes). - ocfs2: fix data corruption by fallocate (bsc#1187412). - PCI: aardvark: Do not rely on jiffies while holding spinlock (git-fixes). - PCI: aardvark: Fix kernel panic during PIO transfer (git-fixes). - PCI: Add ACS quirk for Broadcom BCM57414 NIC (git-fixes). - PCI: Mark some NVIDIA GPUs to avoid bus reset (git-fixes). - PCI: Mark TI C667X to avoid bus reset (git-fixes). - PCI: Work around Huawei Intelligent NIC VF FLR erratum (git-fixes). - perf/x86/intel/uncore: Fix a kernel WARNING triggered by maxcpus=1 (git-fixes). - perf/x86/intel/uncore: Remove uncore extra PCI dev HSWEP_PCI_PCU_3 (bsc#1184685). - powerpc/perf: Fix crash in perf_instruction_pointer() when ppmu is not set (jsc#SLE-13513 bsc#1176919 ltc#186162 git-fixes). - qla2xxx: synchronize rport dev_loss_tmo setting (bsc#1182470 bsc#1185486). - qlcnic: Fix an error handling path in 'qlcnic_probe()' (git-fixes). - radeon: use memcpy_to/fromio for UVD fw upload (git-fixes). - regulator: bd70528: Fix off-by-one for buck123 .n_voltages setting (git-fixes). - Removed patch that was incorrectly added to SLE15-SP2 (bsc#1186949) - Revert "ecryptfs: replace BUG_ON with error handling code" (bsc#1187413). - Revert "ibmvnic: simplify reset_long_term_buff function" (bsc#1186206 ltc#191041). - Revert "PCI: PM: Do not read power state in pci_enable_device_flags()" (git-fixes). - Revert "video: hgafb: fix potential NULL pointer dereference" (git-fixes). - Revert "video: imsttfb: fix potential NULL pointer dereferences" (bsc#1152489) - s390/dasd: add missing discipline function (git-fixes). - s390/stack: fix possible register corruption with stack switch helper (bsc#1185677). - sched/debug: Fix cgroup_path[] serialization (git-fixes) - sched/fair: Keep load_avg and load_sum synced (git-fixes) - scsi: core: Fix race between handling STS_RESOURCE and completion (bsc#1187883). - scsi: fcoe: Fix mismatched fcoe_wwn_from_mac declaration (bsc#1187886). - scsi: ufs: Fix imprecise load calculation in devfreq window (bsc#1187795). - SCSI: ufs: fix ktime_t kabi change (bsc#1187795). - scsi: ufs: ufshcd-pltfrm depends on HAS_IOMEM (bsc#1187980). - spi: spi-nxp-fspi: move the register operation after the clock enable (git-fixes). - spi: sprd: Add missing MODULE_DEVICE_TABLE (git-fixes). - spi: stm32-qspi: Always wait BUSY bit to be cleared in stm32_qspi_wait_cmd() (git-fixes). - SUNRPC: Handle major timeout in xprt_adjust_timeout() (git-fixes). - SUNRPC: Handle major timeout in xprt_adjust_timeout() (git-fixes). - tracing: Correct the length check which causes memory corruption (git-fixes). - tracing: Do no increment trace_clock_global() by one (git-fixes). - tracing: Do not stop recording cmdlines when tracing is off (git-fixes). - tracing: Do not stop recording comms if the trace file is being read (git-fixes). - tracing: Restructure trace_clock_global() to never block (git-fixes). - USB: core: hub: Disable autosuspend for Cypress CY7C65632 (git-fixes). - USB: dwc3: core: fix kernel panic when do reboot (git-fixes). - USB: dwc3: core: fix kernel panic when do reboot (git-fixes). - USB: dwc3: debugfs: Add and remove endpoint dirs dynamically (git-fixes). - USB: dwc3: ep0: fix NULL pointer exception (git-fixes). - USB: f_ncm: only first packet of aggregate needs to start timer (git-fixes). - USB: f_ncm: only first packet of aggregate needs to start timer (git-fixes). - USB: fix various gadget panics on 10gbps cabling (git-fixes). - USB: fix various gadget panics on 10gbps cabling (git-fixes). - USB: gadget: eem: fix wrong eem header operation (git-fixes). - USB: gadget: eem: fix wrong eem header operation (git-fixes). - USB: gadget: f_fs: Ensure io_completion_wq is idle during unbind (git-fixes). - USB: gadget: f_fs: Ensure io_completion_wq is idle during unbind (git-fixes). - USB: serial: ftdi_sio: add NovaTech OrionMX product ID (git-fixes). - USB: serial: ftdi_sio: add NovaTech OrionMX product ID (git-fixes). - USB: serial: omninet: add device id for Zyxel Omni 56K Plus (git-fixes). - USB: serial: omninet: add device id for Zyxel Omni 56K Plus (git-fixes). - video: hgafb: correctly handle card detect failure during probe (git-fixes). - video: hgafb: fix potential NULL pointer dereference (git-fixes). - vrf: fix maximum MTU (git-fixes). - x86/elf: Use _BITUL() macro in UAPI headers (bsc#1178134). - x86/fpu: Preserve supervisor states in sanitize_restored_user_xstate() (bsc#1178134). - x86/pkru: Write hardware init value to PKRU when xstate is init (bsc#1152489). - x86/process: Check PF_KTHREAD and not current->mm for kernel threads (bsc#1152489). - xen-blkback: fix compatibility bug with single page rings (git-fixes). - xen-pciback: reconfigure also from backend watch handler (git-fixes). - xen-pciback: redo VF placement in the virtual topology (git-fixes). - xen/evtchn: Change irq_info lock to raw_spinlock_t (git-fixes). - xfrm: policy: Read seqcount outside of rcu-read side in xfrm_policy_lookup_bytype (bsc#1185675). cluster-md-kmp-default-5.3.18-59.13.1.x86_64.rpm True cluster-md-kmp-preempt-5.3.18-59.13.1.x86_64.rpm True dlm-kmp-default-5.3.18-59.13.1.x86_64.rpm True dlm-kmp-preempt-5.3.18-59.13.1.x86_64.rpm True gfs2-kmp-default-5.3.18-59.13.1.x86_64.rpm True gfs2-kmp-preempt-5.3.18-59.13.1.x86_64.rpm True kernel-debug-5.3.18-59.13.1.nosrc.rpm True kernel-debug-5.3.18-59.13.1.x86_64.rpm True kernel-debug-devel-5.3.18-59.13.1.x86_64.rpm True kernel-debug-livepatch-devel-5.3.18-59.13.1.x86_64.rpm True kernel-default-5.3.18-59.13.1.nosrc.rpm True kernel-default-5.3.18-59.13.1.x86_64.rpm True kernel-default-base-5.3.18-59.13.1.18.6.1.src.rpm True kernel-default-base-5.3.18-59.13.1.18.6.1.x86_64.rpm True kernel-default-base-rebuild-5.3.18-59.13.1.18.6.1.x86_64.rpm True kernel-default-devel-5.3.18-59.13.1.x86_64.rpm True kernel-default-extra-5.3.18-59.13.1.x86_64.rpm True kernel-default-livepatch-5.3.18-59.13.1.x86_64.rpm True kernel-default-livepatch-devel-5.3.18-59.13.1.x86_64.rpm True kernel-default-optional-5.3.18-59.13.1.x86_64.rpm True kernel-devel-5.3.18-59.13.1.noarch.rpm True kernel-docs-5.3.18-59.13.1.noarch.rpm True kernel-docs-5.3.18-59.13.1.nosrc.rpm True kernel-docs-html-5.3.18-59.13.1.noarch.rpm True kernel-kvmsmall-5.3.18-59.13.1.nosrc.rpm True kernel-kvmsmall-5.3.18-59.13.1.x86_64.rpm True kernel-kvmsmall-devel-5.3.18-59.13.1.x86_64.rpm True kernel-kvmsmall-livepatch-devel-5.3.18-59.13.1.x86_64.rpm True kernel-macros-5.3.18-59.13.1.noarch.rpm True kernel-obs-build-5.3.18-59.13.1.src.rpm True kernel-obs-build-5.3.18-59.13.1.x86_64.rpm True kernel-obs-qa-5.3.18-59.13.1.src.rpm True kernel-obs-qa-5.3.18-59.13.1.x86_64.rpm True kernel-preempt-5.3.18-59.13.1.nosrc.rpm True kernel-preempt-5.3.18-59.13.1.x86_64.rpm True kernel-preempt-devel-5.3.18-59.13.1.x86_64.rpm True kernel-preempt-extra-5.3.18-59.13.1.x86_64.rpm True kernel-preempt-livepatch-devel-5.3.18-59.13.1.x86_64.rpm True kernel-preempt-optional-5.3.18-59.13.1.x86_64.rpm True kernel-source-5.3.18-59.13.1.noarch.rpm True kernel-source-5.3.18-59.13.1.src.rpm True kernel-source-vanilla-5.3.18-59.13.1.noarch.rpm True kernel-syms-5.3.18-59.13.1.src.rpm True kernel-syms-5.3.18-59.13.1.x86_64.rpm True kselftests-kmp-default-5.3.18-59.13.1.x86_64.rpm True kselftests-kmp-preempt-5.3.18-59.13.1.x86_64.rpm True ocfs2-kmp-default-5.3.18-59.13.1.x86_64.rpm True ocfs2-kmp-preempt-5.3.18-59.13.1.x86_64.rpm True reiserfs-kmp-default-5.3.18-59.13.1.x86_64.rpm True reiserfs-kmp-preempt-5.3.18-59.13.1.x86_64.rpm True cluster-md-kmp-default-5.3.18-59.13.1.s390x.rpm True dlm-kmp-default-5.3.18-59.13.1.s390x.rpm True gfs2-kmp-default-5.3.18-59.13.1.s390x.rpm True kernel-default-5.3.18-59.13.1.s390x.rpm True kernel-default-base-5.3.18-59.13.1.18.6.1.s390x.rpm True kernel-default-base-rebuild-5.3.18-59.13.1.18.6.1.s390x.rpm True kernel-default-devel-5.3.18-59.13.1.s390x.rpm True kernel-default-extra-5.3.18-59.13.1.s390x.rpm True kernel-default-livepatch-5.3.18-59.13.1.s390x.rpm True kernel-default-livepatch-devel-5.3.18-59.13.1.s390x.rpm True kernel-default-optional-5.3.18-59.13.1.s390x.rpm True kernel-obs-build-5.3.18-59.13.1.s390x.rpm True kernel-obs-qa-5.3.18-59.13.1.s390x.rpm True kernel-syms-5.3.18-59.13.1.s390x.rpm True kernel-zfcpdump-5.3.18-59.13.1.nosrc.rpm True kernel-zfcpdump-5.3.18-59.13.1.s390x.rpm True kselftests-kmp-default-5.3.18-59.13.1.s390x.rpm True ocfs2-kmp-default-5.3.18-59.13.1.s390x.rpm True reiserfs-kmp-default-5.3.18-59.13.1.s390x.rpm True cluster-md-kmp-default-5.3.18-59.13.1.ppc64le.rpm True dlm-kmp-default-5.3.18-59.13.1.ppc64le.rpm True gfs2-kmp-default-5.3.18-59.13.1.ppc64le.rpm True kernel-debug-5.3.18-59.13.1.ppc64le.rpm True kernel-debug-devel-5.3.18-59.13.1.ppc64le.rpm True kernel-debug-livepatch-devel-5.3.18-59.13.1.ppc64le.rpm True kernel-default-5.3.18-59.13.1.ppc64le.rpm True kernel-default-base-5.3.18-59.13.1.18.6.1.ppc64le.rpm True kernel-default-base-rebuild-5.3.18-59.13.1.18.6.1.ppc64le.rpm True kernel-default-devel-5.3.18-59.13.1.ppc64le.rpm True kernel-default-extra-5.3.18-59.13.1.ppc64le.rpm True kernel-default-livepatch-5.3.18-59.13.1.ppc64le.rpm True kernel-default-livepatch-devel-5.3.18-59.13.1.ppc64le.rpm True kernel-default-optional-5.3.18-59.13.1.ppc64le.rpm True kernel-kvmsmall-5.3.18-59.13.1.ppc64le.rpm True kernel-kvmsmall-devel-5.3.18-59.13.1.ppc64le.rpm True kernel-kvmsmall-livepatch-devel-5.3.18-59.13.1.ppc64le.rpm True kernel-obs-build-5.3.18-59.13.1.ppc64le.rpm True kernel-obs-qa-5.3.18-59.13.1.ppc64le.rpm True kernel-syms-5.3.18-59.13.1.ppc64le.rpm True kselftests-kmp-default-5.3.18-59.13.1.ppc64le.rpm True ocfs2-kmp-default-5.3.18-59.13.1.ppc64le.rpm True reiserfs-kmp-default-5.3.18-59.13.1.ppc64le.rpm True cluster-md-kmp-64kb-5.3.18-59.13.1.aarch64.rpm True cluster-md-kmp-default-5.3.18-59.13.1.aarch64.rpm True cluster-md-kmp-preempt-5.3.18-59.13.1.aarch64.rpm True dlm-kmp-64kb-5.3.18-59.13.1.aarch64.rpm True dlm-kmp-default-5.3.18-59.13.1.aarch64.rpm True dlm-kmp-preempt-5.3.18-59.13.1.aarch64.rpm True gfs2-kmp-64kb-5.3.18-59.13.1.aarch64.rpm True gfs2-kmp-default-5.3.18-59.13.1.aarch64.rpm True gfs2-kmp-preempt-5.3.18-59.13.1.aarch64.rpm True kernel-64kb-5.3.18-59.13.1.aarch64.rpm True kernel-64kb-5.3.18-59.13.1.nosrc.rpm True kernel-64kb-devel-5.3.18-59.13.1.aarch64.rpm True kernel-64kb-extra-5.3.18-59.13.1.aarch64.rpm True kernel-64kb-livepatch-devel-5.3.18-59.13.1.aarch64.rpm True kernel-64kb-optional-5.3.18-59.13.1.aarch64.rpm True kernel-default-5.3.18-59.13.1.aarch64.rpm True kernel-default-base-5.3.18-59.13.1.18.6.1.aarch64.rpm True kernel-default-base-rebuild-5.3.18-59.13.1.18.6.1.aarch64.rpm True kernel-default-devel-5.3.18-59.13.1.aarch64.rpm True kernel-default-extra-5.3.18-59.13.1.aarch64.rpm True kernel-default-livepatch-5.3.18-59.13.1.aarch64.rpm True kernel-default-livepatch-devel-5.3.18-59.13.1.aarch64.rpm True kernel-default-optional-5.3.18-59.13.1.aarch64.rpm True kernel-obs-build-5.3.18-59.13.1.aarch64.rpm True kernel-obs-qa-5.3.18-59.13.1.aarch64.rpm True kernel-preempt-5.3.18-59.13.1.aarch64.rpm True kernel-preempt-devel-5.3.18-59.13.1.aarch64.rpm True kernel-preempt-extra-5.3.18-59.13.1.aarch64.rpm True kernel-preempt-livepatch-devel-5.3.18-59.13.1.aarch64.rpm True kernel-preempt-optional-5.3.18-59.13.1.aarch64.rpm True kernel-syms-5.3.18-59.13.1.aarch64.rpm True kselftests-kmp-64kb-5.3.18-59.13.1.aarch64.rpm True kselftests-kmp-default-5.3.18-59.13.1.aarch64.rpm True kselftests-kmp-preempt-5.3.18-59.13.1.aarch64.rpm True ocfs2-kmp-64kb-5.3.18-59.13.1.aarch64.rpm True ocfs2-kmp-default-5.3.18-59.13.1.aarch64.rpm True ocfs2-kmp-preempt-5.3.18-59.13.1.aarch64.rpm True reiserfs-kmp-64kb-5.3.18-59.13.1.aarch64.rpm True reiserfs-kmp-default-5.3.18-59.13.1.aarch64.rpm True reiserfs-kmp-preempt-5.3.18-59.13.1.aarch64.rpm True openSUSE-SLE-15.3-2021-2427 Security update for the Linux Kernel important SUSE Updates openSUSE-SLE 15.3 The SUSE Linux Enterprise 15 SP3 kernel was updated to receive various security and bugfixes. The following security bugs were fixed: - CVE-2021-22555: Fixed an heap out-of-bounds write in net/netfilter/x_tables.c that could allow local provilege escalation. (bsc#1188116) - CVE-2021-33624: Fixed a bug which allows unprivileged BPF program to leak the contents of arbitrary kernel memory (and therefore, of all physical memory) via a side-channel. (bsc#1187554) - CVE-2021-0605: Fixed an out-of-bounds read which could lead to local information disclosure in the kernel with System execution privileges needed. (bsc#1187601) - CVE-2021-0512: Fixed a possible out-of-bounds write which could lead to local escalation of privilege with no additional execution privileges needed. (bsc#1187595) - CVE-2020-26558: Fixed a flaw in the Bluetooth LE and BR/EDR secure pairing that could permit a nearby man-in-the-middle attacker to identify the Passkey used during pairing. (bnc#1179610) - CVE-2021-34693: Fixed a bug in net/can/bcm.c which could allow local users to obtain sensitive information from kernel stack memory because parts of a data structure are uninitialized. (bsc#1187452) - CVE-2021-0129: Fixed an improper access control in BlueZ that may have allowed an authenticated user to potentially enable information disclosure via adjacent access. (bnc#1186463) - CVE-2020-36386: Fixed an out-of-bounds read in hci_extended_inquiry_result_evt. (bsc#1187038) - CVE-2020-24588: Fixed a bug that could allow an adversary to abuse devices that support receiving non-SSP A-MSDU frames to inject arbitrary network packets. (bsc#1185861 bsc#1185863) - CVE-2021-33909: Fixed an out-of-bounds write in the filesystem layer that allows to andobtain full root privileges. (bsc#1188062) - CVE-2021-3609: Fixed a race condition in the CAN BCM networking protocol which allows for local privilege escalation. (bsc#1187215) - CVE-2020-36385: Fixed a use-after-free flaw in ucma.c which allows for local privilege escalation. (bsc#1187050) - CVE-2021-33200: Fix leakage of uninitialized bpf stack under speculation. (bsc#1186484) The following non-security bugs were fixed: - af_packet: fix the tx skb protocol in raw sockets with ETH_P_ALL (bsc#1176081). - kabi: preserve struct header_ops after bsc#1176081 fix (bsc#1176081). - net: Do not set transport offset to invalid value (bsc#1176081). - net: Introduce parse_protocol header_ops callback (bsc#1176081). - net/ethernet: Add parse_protocol header_ops support (bsc#1176081). - net/mlx5e: Remove the wrong assumption about transport offset (bsc#1176081). - net/mlx5e: Trust kernel regarding transport offset (bsc#1176081). - net/packet: Ask driver for protocol if not provided by user (bsc#1176081). - net/packet: Remove redundant skb->protocol set (bsc#1176081). - resource: Fix find_next_iomem_res() iteration issue (bsc#1181193). - scsi: scsi_dh_alua: Retry RTPG on a different path after failure (bsc#1174978 bsc#1185701). - SUNRPC in case of backlog, hand free slots directly to waiting task (bsc#1185428). - SUNRPC: More fixes for backlog congestion (bsc#1185428). - x86/crash: Add e820 reserved ranges to kdump kernel's e820 table (bsc#1181193). - x86/debug: Extend the lower bound of crash kernel low reservations (bsc#1153720). - x86/e820, ioport: Add a new I/O resource descriptor IORES_DESC_RESERVED (bsc#1181193). - x86/mm: Rework ioremap resource mapping determination (bsc#1181193). kernel-debug-4.12.14-197.99.1.nosrc.rpm True kernel-debug-base-4.12.14-197.99.1.x86_64.rpm True kernel-default-4.12.14-197.99.1.nosrc.rpm True kernel-kvmsmall-4.12.14-197.99.1.nosrc.rpm True kernel-kvmsmall-base-4.12.14-197.99.1.x86_64.rpm True kernel-vanilla-4.12.14-197.99.1.nosrc.rpm True kernel-vanilla-4.12.14-197.99.1.x86_64.rpm True kernel-vanilla-base-4.12.14-197.99.1.x86_64.rpm True kernel-vanilla-devel-4.12.14-197.99.1.x86_64.rpm True kernel-vanilla-livepatch-devel-4.12.14-197.99.1.x86_64.rpm True kernel-default-man-4.12.14-197.99.1.s390x.rpm True kernel-vanilla-4.12.14-197.99.1.s390x.rpm True kernel-vanilla-base-4.12.14-197.99.1.s390x.rpm True kernel-vanilla-devel-4.12.14-197.99.1.s390x.rpm True kernel-vanilla-livepatch-devel-4.12.14-197.99.1.s390x.rpm True kernel-zfcpdump-4.12.14-197.99.1.nosrc.rpm True kernel-zfcpdump-man-4.12.14-197.99.1.s390x.rpm True kernel-debug-base-4.12.14-197.99.1.ppc64le.rpm True kernel-vanilla-4.12.14-197.99.1.ppc64le.rpm True kernel-vanilla-base-4.12.14-197.99.1.ppc64le.rpm True kernel-vanilla-devel-4.12.14-197.99.1.ppc64le.rpm True kernel-vanilla-livepatch-devel-4.12.14-197.99.1.ppc64le.rpm True kernel-vanilla-4.12.14-197.99.1.aarch64.rpm True kernel-vanilla-base-4.12.14-197.99.1.aarch64.rpm True kernel-vanilla-devel-4.12.14-197.99.1.aarch64.rpm True kernel-vanilla-livepatch-devel-4.12.14-197.99.1.aarch64.rpm True openSUSE-SLE-15.3-2021-2327 Security update for nodejs12 important SUSE Updates openSUSE-SLE 15.3 This update for nodejs12 fixes the following issues: - update to 12.22.2: - CVE-2021-22918: Out of bounds read (bsc#1187973) - CVE-2021-23362: ssri Regular Expression Denial of Service and hosted-git-info (bsc#1187977) - CVE-2021-27290: Regular Expression Denial of Service (bsc#1187976) - CVE-2021-3450: OpenSSL - CA certificate check bypass with X509_V_FLAG_X509_STRICT (bsc#1183851) - CVE-2021-3449: OpenSSL - NULL pointer deref in signature_algorithms processing (bsc#1183852) - CVE-2020-7774: npm - Update y18n to fix Prototype-Pollution (bsc#1184450) nodejs12-12.22.2-4.16.1.src.rpm nodejs12-12.22.2-4.16.1.x86_64.rpm nodejs12-devel-12.22.2-4.16.1.x86_64.rpm nodejs12-docs-12.22.2-4.16.1.noarch.rpm npm12-12.22.2-4.16.1.x86_64.rpm nodejs12-12.22.2-4.16.1.s390x.rpm nodejs12-devel-12.22.2-4.16.1.s390x.rpm npm12-12.22.2-4.16.1.s390x.rpm nodejs12-12.22.2-4.16.1.ppc64le.rpm nodejs12-devel-12.22.2-4.16.1.ppc64le.rpm npm12-12.22.2-4.16.1.ppc64le.rpm nodejs12-12.22.2-4.16.1.aarch64.rpm nodejs12-devel-12.22.2-4.16.1.aarch64.rpm npm12-12.22.2-4.16.1.aarch64.rpm openSUSE-SLE-15.3-2021-2463 Recommended update for python-pyzmq moderate SUSE Updates openSUSE-SLE 15.3 This update for python-pyzmq fixes the following issues: - Update to version 17.1.2 (bsc#1186945) * Fix possible hang when working with asyncio * Remove some outdated workarounds for old Cython versions * Fix some compilation with custom compilers * Remove unneeded link of libstdc++ on PyPy python-pyzmq-17.1.2-3.3.1.src.rpm python2-pyzmq-17.1.2-3.3.1.x86_64.rpm python2-pyzmq-devel-17.1.2-3.3.1.x86_64.rpm python3-pyzmq-17.1.2-3.3.1.x86_64.rpm python3-pyzmq-devel-17.1.2-3.3.1.x86_64.rpm python2-pyzmq-17.1.2-3.3.1.s390x.rpm python2-pyzmq-devel-17.1.2-3.3.1.s390x.rpm python3-pyzmq-17.1.2-3.3.1.s390x.rpm python3-pyzmq-devel-17.1.2-3.3.1.s390x.rpm python2-pyzmq-17.1.2-3.3.1.ppc64le.rpm python2-pyzmq-devel-17.1.2-3.3.1.ppc64le.rpm python3-pyzmq-17.1.2-3.3.1.ppc64le.rpm python3-pyzmq-devel-17.1.2-3.3.1.ppc64le.rpm python2-pyzmq-17.1.2-3.3.1.aarch64.rpm python2-pyzmq-devel-17.1.2-3.3.1.aarch64.rpm python3-pyzmq-17.1.2-3.3.1.aarch64.rpm python3-pyzmq-devel-17.1.2-3.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-2481 Recommended update for sysconfig moderate SUSE Updates openSUSE-SLE 15.3 This update for sysconfig fixes the following issues: - Link as Position Independent Executable (bsc#1184124). sysconfig-0.85.6-9.1.src.rpm sysconfig-0.85.6-9.1.x86_64.rpm sysconfig-netconfig-0.85.6-9.1.x86_64.rpm sysconfig-0.85.6-9.1.s390x.rpm sysconfig-netconfig-0.85.6-9.1.s390x.rpm sysconfig-0.85.6-9.1.ppc64le.rpm sysconfig-netconfig-0.85.6-9.1.ppc64le.rpm sysconfig-0.85.6-9.1.aarch64.rpm sysconfig-netconfig-0.85.6-9.1.aarch64.rpm openSUSE-SLE-15.3-2021-2892 Security update for dovecot23 moderate SUSE Updates openSUSE-SLE 15.3 This update for dovecot23 fixes the following issues: Update dovecot to version 2.3.15 (jsc#SLE-19970): Security issues fixed: - CVE-2021-29157: Dovecot does not correctly escape kid and azp fields in JWT tokens. This may be used to supply attacker controlled keys to validate tokens, if attacker has local access. (bsc#1187418) Local attacker can login as any user and access their emails - CVE-2021-33515: On-path attacker could have injected plaintext commands before STARTTLS negotiation that would be executed after STARTTLS finished with the client. (bsc#1187419) Attacker can potentially steal user credentials and mails * Disconnection log messages are now more standardized across services. They also always now start with "Disconnected" prefix. * Dovecot now depends on libsystemd for systemd integration. * Removed support for Lua 5.2. Use version 5.1 or 5.3 instead. * config: Some settings are now marked as "hidden". It's discouraged to change these settings. They will no longer be visible in doveconf output, except if they have been changed or if doveconf -s parameter is used. See https://doc.dovecot.org/settings/advanced/ for details. * imap-compress: Compression level is now algorithm specific. See https://doc.dovecot.org/settings/plugin/compress-plugin/ * indexer-worker: Convert "Indexed" info logs to an event named "indexer_worker_indexing_finished". See https://doc.dovecot.org/admin_manual/list_of_events/#indexer-worker-indexing-finished + Add TSLv1.3 support to min_protocols. + Allow configuring ssl_cipher_suites. (for TLSv1.3+) + acl: Add acl_ignore_namespace setting which allows to entirely ignore ACLs for the listed namespaces. + imap: Support official RFC8970 preview/snippet syntax. Old methods of retrieving preview information via IMAP commands ("SNIPPET and PREVIEW with explicit algorithm selection") have been deprecated. + imapc: Support INDEXPVT for imapc storage to enable private message flags for cluster wide shared mailboxes. + lib-storage: Add new events: mail_opened, mail_expunge_requested, mail_expunged, mail_cache_lookup_finished. See https://doc.dovecot.org/admin_manual/list_of_events/#mail + zlib, imap-compression, fs-compress: Support compression levels that the algorithm supports. Before, we would allow hardcoded value between 1 to 9 and would default to 6. Now we allow using per-algorithm value range and default to whatever default the algorithm specifies. - *-login: Commands pipelined together with and just after the authenticate command cause these commands to be executed twice. This applies to all protocols that involve user login, which currently comprises of imap, pop3, submisision and managesieve. - *-login: Processes are supposed to disconnect the oldest non-logged in connection when process_limit was reached. This didn't actually happen with the default "high-security mode" (with service_count=1) where each connection is handled by a separate process. - *-login: When login process reaches client/process limits, oldest client connections are disconnected. If one of these was still doing anvil lookup, this caused a crash. This could happen only if the login process limits were very low or if the server was overloaded. - Fixed building with link time optimizations (-flto). - auth: Userdb iteration with passwd driver does not always return all users with some nss drivers. - dsync: Shared INBOX not synced when "mail_shared_explicit_inbox" was disabled. If a user has a shared mailbox which is another user's INBOX, dsync didn't include the mailbox in syncing unless explicit naming is enabled with "mail_shared_explicit_inbox" set to "yes". - dsync: Shared namespaces were not synced with "-n" flag. - dsync: Syncing shared INBOX failed if mail_attribute_dict was not set. If a user has a shared mailbox that is another user's INBOX, dsync failed to export the mailbox if mail attributes are disabled. - fts-solr, fts-tika: Using both Solr FTS and Tika may have caused HTTP requests to assert-crash: Panic: file http-client-request.c: line 1232 (http_client_request_send_more): assertion failed: (req->payload_input != NULL) - fts-tika: 5xx errors returned by Tika server as indexing failures. However, Tika can return 5xx for some attachments every time. So the 5xx error should be retried once, but treated as success if it happens on the retry as well. v2.3 regression. - fts-tika: v2.3.11 regression: Indexing messages with fts-tika may have resulted in Panic: file message-parser.c: line 802 (message_parser_deinit_from_parts): assertion failed: (ctx->nested_parts_count == 0 || i_stream_have_bytes_left(ctx->input)) - imap: SETMETADATA could not be used to unset metadata values. Instead NIL was handled as a "NIL" string. v2.3.14 regression. - imap: IMAP BINARY FETCH crashes at least on empty base64 body: Panic: file index-mail-binary.c: line 358 (blocks_count_lines): assertion failed: (block_count == 0 || block_idx+1 == block_count) - imap: If IMAP client using the NOTIFY command was disconnected while sending FETCH notifications to the client, imap could crash with Panic: Trying to close mailbox INBOX with open transactions. - imap: Using IMAP COMPRESS extension can cause IMAP connection to hang when IMAP commands are >8 kB long. - imapc: If remote server sent BYE but didn't immediately disconnect, it could cause infinite busy-loop. - lib-index: Corrupted cache record size in dovecot.index.cache file could have caused a crash (segfault) when accessing it. - lib-oauth2: JWT token time validation now works correctly with 32-bit systems. - lib-ssl-iostream: Checking hostnames against an SSL certificate was case-sensitive. - lib-storage: Corrupted mime.parts in dovecot.index.cache may have resulted in Panic: file imap-bodystructure.c: line 206 (part_write_body): assertion failed: (text == ((part->flags & MESSAGE_PART_FLAG_TEXT) != 0)) - lib-storage: Index rebuilding (e.g. via doveadm force-resync) didn't preserve the "hdr-pop3-uidl" header. Because of this, the next pop3 session could have accessed all of the emails' metadata to read their POP3 UIDL (opening dbox files). - listescape: When using the listescape plugin and a shared namespace the plugin didn't work properly anymore resulting in errors like: "Invalid mailbox name: Name must not have '/' character." - lmtp: Connection crashes if connection gets disconnected due to multiple bad commands and the last bad command is BDAT. - lmtp: The Dovecot-specific LMTP parameter XRCPTFORWARD was blindly forwarded by LMTP proxy without checking that the backend has support. This caused a command parameter error from the backend if it was running an older Dovecot release. This could only occur in more complex setups where the message was proxied twice; when the proxy generated the XRCPTFORWARD parameter itself the problem did not occur, so this only happened when it was forwarded. - lmtp: The LMTP proxy crashes with a panic when the remote server replies with an error while the mail is still being forwarded through a DATA/BDAT command. - lmtp: Username may have been missing from lmtp log line prefixes when it was performing autoexpunging. - master: Dovecot would incorrectly fail with haproxy 2.0.14 service checks. - master: Systemd service: Dovecot announces readiness for accepting connections earlier than it should. The following environment variables are now imported automatically and can be omitted from import_environment setting: NOTIFY_SOCKET LISTEN_FDS LISTEN_PID. - master: service { process_min_avail } was launching processes too slowly when master was forking a lot of processes. - util: Make the health-check.sh example script POSIX shell compatible. * Added new aliases for some variables. Usage of the old ones is possible, but discouraged. (These were partially added already to v2.3.13.) See https://doc.dovecot.org/configuration_manual/config_file/config_variables/ for more information. * Optimize imap/pop3/submission/managesieve proxies to use less CPU at the cost of extra memory usage. * Remove autocreate, expire, snarf and mail-filter plugins. * Remove cydir storage driver. * Remove XZ/LZMA write support. Read support will be removed in future release. * doveadm -D: Add timestamps to debug output even when LOG_STDERR_TIMESTAMP environment variable is not set. Timestamp format is taken from log_timestamp setting. * If BROKENCHAR or listescape plugin is used, the escaped folder names may be slightly different from before in some situations. This is unlikely to cause issues, although caching clients may redownload the folders. * imapc: It now enables BROKENCHAR=~ by default to escape remote folder names if necessary. This also means that if there are any '~' characters in the remote folder names, they will be visible as "~7e". * imapc: When using local index files folder names were escaped on filesystem a bit differently. This affects only if there are folder names that actually require escaping, which isn't so common. The old style folders will be automatically deleted from filesystem. * stats: Update exported metrics to be compliant with OpenMetrics standard. + doveadm: Add an optional '-p' parameter to metadata list command. If enabled, "/private", and "/shared" metadata prefixes will be prepended to the keys in the list output. + doveconf: Support environment variables in config files. See https://doc.dovecot.org/configuration_manual/config_file/config_file_syntax/#environment-variables for more details. + indexer-worker: Change indexer to disconnect from indexer-worker after each request. This allows service indexer-worker's service_count & idle_kill settings to work. These can be used to restart indexer-worker processes once in a while to reduce their memory usage. - auth: "nodelay" with various authentication mechanisms such as apop and digest-md5 crashed AUTH process if authentication failed. - auth: Auth lua script generating an error triggered an assertion failure: Panic: file db-lua.c: line 630 (auth_lua_call_password_verify): assertion failed: (lua_gettop(script->L) == 0). - configure: Fix libunwind detection to work on other than x86_64 systems. - doveadm-server: Process could crash if logging was done outside command handling. For example http-client could have done debug logging afterwards, resulting in either segfault or Panic: file http-client.c: line 642 (http_client_context_close): assertion failed: (cctx->clients_list == NULL). - dsync: Folder name escaping with BROKENCHAR didn't work completely correctly. This especially caused problems with dsync-migrations using imapc where some of the remote folder names may not have been accessible. - dsync: doveadm sync + imapc doesn't always sync all mails when doing an incremental sync (-1), which could lead to mail loss when it's used for migration. This happens only when GUIDs aren't used (i.e. imapc without imapc_features=guid-forced). - fts-tika: When tika server returns error, some mails cause Panic: file message-parser.c: line 802 (message_parser_deinit_from_parts): assertion failed: (ctx->nested_parts_count == 0 || i_stream_have_bytes_left(ctx->input)) - lib-imap: imapc parsing illegal BODYSTRUCTUREs with NILs could have resulted in crashes. This exposed that Dovecot was wrongly accepting atoms in "nstring" handling. Changed the IMAP parsing to be more strict about this now. - lib-index: If dovecot.index.cache has corrupted message size, fetching BODY/BODYSTRUCTURE may cause assert-crash: Panic: file index-mail.c: line 1140 (index_mail_parse_body_finish): assertion failed: (mail->data.parts != NULL). - lib-index: Minor error handling and race condition fixes related to rotating dovecot.index.log. These didn't usually cause problems, unless the log files were rotated rapidly. - lib-lua: Lua scripts using coroutines or lua libraries using coroutines (e.g., cqueues) panicked. - Message PREVIEW handled whitespace wrong so first space would get eaten from between words. - FTS and message PREVIEW (snippet) parsed HTML &entities case-sensitively. - lib-mail: When max nested MIME parts were reached, IMAP BODYSTRUCTURE was written in a way that may have caused confusion for IMAP clients and also Dovecot itself when parsing it. The truncated part is now written out using application/octet-stream MIME type. - lib-oauth2: HS512 and HS384 JWT token algorithms crash when you try to use them: Panic: file hmac.c: line 26 (hmac_init): assertion failed: (meth->context_size <= MAC_MAX_CONTEXT_SIZE). - event filters: NOT keyword did not have the correct associativity. - Ignore ECONNRESET when closing socket. This avoids logging useless errors on systems like FreeBSD. - event filters: event filter syntax error may lead to Panic: file event-filter.c: line 137 (event_filter_parse): assertion failed: (state.output == NULL) - lib: timeval_cmp_margin() was broken on 32-bit systems. This could potentially have caused HTTP timeouts to be handled incorrectly. - log: instance_name wasn't used as syslog ident by the log process. - master: After a service reached process_limit and client_limit, it could have taken up to 1 second to realize that more client connections became available. During this time client connections could have been unnecessarily rejected and a warning logged: Warning: service(...): process_limit (...) reached, client connections are being dropped - stats: Crash would occur when generating openmetrics data for metrics using aggregating functions. - stats: Event filters comparing against empty strings crash the stats process. * CVE-2020-24386: Specially crafted command can cause IMAP hibernate to allow logged in user to access other people's emails and filesystem information. * Metric filter and global event filter variable syntax changed to a SQL-like format. See https://doc.dovecot.org/configuration_manual/event_filter/ * auth: Added new aliases for %{variables}. Usage of the old ones is possible, but discouraged. * auth: Removed RPA auth mechanism, SKEY auth mechanism, NTLM auth mechanism and related password schemes. * auth: Removed passdb-sia, passdb-vpopmail and userdb-vpopmail. * auth: Removed postfix postmap socket + auth: Added new fields for auth server events. These fields are now also available for all auth events. See https://doc.dovecot.org/admin_manual/list_of_events/#authentication-server for details. + imap-hibernate: Added imap_client_hibernated, imap_client_unhibernated and imap_client_unhibernate_retried events. See https://doc.dovecot.org/admin_manual/list_of_events/ for details. + lib-index: Added new mail_index_recreated event. See https://doc.dovecot.org/admin_manual/list_of_events/#mail-index-recreated + lib-sql: Support TLS options for cassandra driver. This requires cpp-driver v2.15 (or later) to work reliably. + lib-storage: Missing $HasAttachment / $HasNoAttachment flags are now added to existing mails if mail_attachment_detection_option=add-flags and it can be done inexpensively. + login proxy: Added login_proxy_max_reconnects setting (default 3) to control how many reconnections are attempted. + login proxy: imap/pop3/submission/managesieve proxying now supports reconnection retrying on more than just connect() failure. Any error except a non-temporary authentication failure will result in reconnect attempts. - auth: Lua passdb/userdb leaks stack elements per call, eventually causing the stack to become too deep and crashing the auth or auth-worker process. - auth: SASL authentication PLAIN mechanism could be used to trigger read buffer overflow. However, this doesn't seem to be exploitable in any way. - auth: v2.3.11 regression: GSSAPI authentication fails because dovecot disallows NUL bytes for it. - dict: Process used too much CPU when iterating keys, because each key used a separate write() syscall. - doveadm-server: Crash could occur if logging was done outside command handling. For example http-client could have done debug logging afterwards, resulting in either segfault or Panic: file http-client.c: line 642 (http_client_context_close): assertion failed: (cctx->clients_list == NULL). - doveadm-server: v2.3.11 regression: Trying to connect to doveadm server process via starttls assert-crashed if there were no ssl=yes listeners: Panic: file master-service-ssl.c: line 22 (master_service_ssl_init): assertion failed: (service->ssl_ctx_initialized). - fts-solr: HTTP requests may have assert-crashed: Panic: file http-client-request.c: line 1232 (http_client_request_send_more): assertion failed: (req->payload_input != NULL) - imap: IMAP NOTIFY could crash with a segmentation fault due to a bad configuration that causes errors. Sending the error responses to the client can cause the segmentation fault. This can for example happen when several namespaces use the same mail storage location. - imap: IMAP NOTIFY used on a shared namespace that doesn't actually exist (e.g. public namespace for a nonexistent user) can crash with a panic: Panic: Leaked view for index /tmp/home/asdf/mdbox/dovecot.list.index: Opened in (null):0 - imap: IMAP session can crash with QRESYNC extension if many changes are done before asking for expunged mails since last sync. - imap: Process might hang indefinitely if client disconnects after sending some long-running commands pipelined, for example FETCH+LOGOUT. - lib-compress: Mitigate crashes when configuring a not compiled in compression. Errors with compression configuration now distinguish between not supported and unknown. - lib-compression: Using xz/lzma compression in v2.3.11 could have written truncated output in some situations. This would result in "Broken pipe" read errors when trying to read it back. - lib-compression: zstd compression could have crashed in some situations: Panic: file ostream.c: line 287 (o_stream_sendv_int): assertion failed: (!stream->blocking) - lib-dict: dict client could have crashed in some rare situations when iterating keys. - lib-http: Fix several assert-crashes in HTTP client. - lib-index: v2.3.11 regression: When mails were expunged at the same time as lots of new content was being saved to the cache (e.g. cache file was lost and is being re-filled) a deadlock could occur with dovecot.index.cache / dovecot.index.log. - lib-index: v2.3.11 regression: dovecot.index.cache file was being purged (rewritten) too often when it had a field that hadn't been accessed for over 1 month, but less than 2 months. Every cache file change caused a purging in this situation. - lib-mail: MIME parts were not returned correctly by Dovecot MIME parser. Regression caused by fixing CVE-2020-12100. - lib-mail: When max nested MIME parts were reached, IMAP BODYSTRUCTURE was written in a way that may have caused confusion for both IMAP clients and Dovecot itself when parsing it. The truncated part is now written out using application/octet-stream MIME type. - lib-mail: v2.3.11 regression: Mail delivery / parsing crashed when the 10000th MIME part was message/rfc822 (or if parent was multipart/digest): Panic: file message-parser.c: line 167 (message_part_append): assertion failed: (ctx->total_parts_count <= ctx->max_total_mime_parts). - lib-oauth2: Dovecot incorrectly required oauth2 server introspection reply to contain username with invalid token. - lib-ssl-iostream, lib-dcrypt: Fix building with OpenSSL that has deprecated APIs disabled. - lib-storage: When mail's size is different from the cached one (in dovecot.index.cache or Maildir S=size in the filename), this is handled by logging "Cached message size smaller/larger than expected" error. However, in some situations this also ended up crashing with: Panic: file istream.c: line 315 (i_stream_read_memarea): assertion failed: (old_size <= _stream->pos - _stream->skip). - lib-storage: v2.3 regression: Copying/moving mails was taking much more memory than before. This was mainly visible when copying/moving thousands of mails in a single transaction. - lib-storage: v2.3.11 regression: Searching messages assert-crashed (without FTS): Panic: file message-parser.c: line 174 (message_part_finish): assertion failed: (ctx->nested_parts_count > 0). - lib: Dovecot v2.3 moved signal handlers around in ioloops, causing more CPU usage than in v2.2. - lib: Fixed JSON parsing: '\' escape sequence may have wrongly resulted in error if it happened to be at read boundary. Any NUL characters and '\u0000' will now result in parsing error instead of silently truncating the data. - lmtp, submission: Server may hang if SSL client connection disconnects during the delivery. If this happened repeated, it could have ended up reaching process_limit and preventing any further lmtp/submission deliveries. - lmtp: Proxy does not always properly log TLS connection problems as errors; in some cases, only a debug message is logged if enabled. - lmtp: The LMTP service can hang when commands are pipelined. This can particularly occur when one command in the middle of the pipeline fails. One example of this occurs for proxied LMTP transactions in which the final DATA or BDAT command is pipelined after a failing RCPT command. - login-proxy: The login_source_ips setting has no effect, and therefore the proxy source IPs are not cycled through as they should be. - master: Process was using 100% CPU in some situations when a broken service was being throttled. - pop3-login: POP3 login would fail with "Input buffer full" if the initial response for SASL was too long. - stats: Crash would occur when generating openmetrics data for metrics using aggregating functions. Update pigeonhole to version 0.5.15 * CVE-2020-28200: Sieve interpreter is not protected against abusive scripts that claim excessive resource usage. Fixed by limiting the user CPU time per single script execution and cumulatively over several script runs within a configurable timeout period. Sufficiently large CPU time usage is summed in the Sieve script binary and execution is blocked when the sum exceeds the limit within that time. The block is lifted when the script is updated after the resource usage times out. (bsc#1187420) Attacker can DoS the mail delivery system (jsc#PM-2746) ECO: Dovecot 2.3.15 version upgrade * Disconnection log messages are now more standardized across services. They also always now start with "Disconnected" prefix. * managesieve: Commands pipelined together with and just after the authenticate command cause these commands to be executed twice. * duplicate: The test was handled badly in a multiscript (sieve_before, sieve_after) scenario in which an earlier script in the sequence with a duplicate test succeeded, while a later script caused a runtime failure. In that case, the message is recorded for duplicate tracking, while the message may not actually have been delivered in the end. * editheader: Sieve interpreter entered infinite loop at startup when the "editheader" configuration listed an invalid header name. This problem can only be triggered by the administrator. * relational: The Sieve relational extension can cause a segfault at compile time. This is triggered by invalid script syntax. The segfault happens when this match type is the last argument of the test command. This situation is not possible in a valid script; positional arguments are normally present after that, which would prevent the segfault. * sieve: For some Sieve commands the provided mailbox name is not properly checked for UTF-8 validity, which can cause assert crashes at runtime when an invalid mailbox name is encountered. This can be caused by the user by writing a bad Sieve script involving the affected commands ("mailboxexists", "specialuse_exists"). This can be triggered by the remote sender only when the user has written a Sieve script that passes message content to one of the affected commands. * sieve: Large sequences of 8-bit octets passed to certain Sieve commands that create or modify message headers that allow UTF-8 text (vacation, notify and addheader) can cause the delivery or IMAP process (when IMAPSieve is used) to enter a memory-consuming semi-infinite loop that ends when the process exceeds its memory limits. Logged in users can cause these hangs only for their own processes. dovecot23-2.3.15-58.3.src.rpm dovecot23-2.3.15-58.3.x86_64.rpm dovecot23-backend-mysql-2.3.15-58.3.x86_64.rpm dovecot23-backend-pgsql-2.3.15-58.3.x86_64.rpm dovecot23-backend-sqlite-2.3.15-58.3.x86_64.rpm dovecot23-devel-2.3.15-58.3.x86_64.rpm dovecot23-fts-2.3.15-58.3.x86_64.rpm dovecot23-fts-lucene-2.3.15-58.3.x86_64.rpm dovecot23-fts-solr-2.3.15-58.3.x86_64.rpm dovecot23-fts-squat-2.3.15-58.3.x86_64.rpm dovecot23-2.3.15-58.3.s390x.rpm dovecot23-backend-mysql-2.3.15-58.3.s390x.rpm dovecot23-backend-pgsql-2.3.15-58.3.s390x.rpm dovecot23-backend-sqlite-2.3.15-58.3.s390x.rpm dovecot23-devel-2.3.15-58.3.s390x.rpm dovecot23-fts-2.3.15-58.3.s390x.rpm dovecot23-fts-lucene-2.3.15-58.3.s390x.rpm dovecot23-fts-solr-2.3.15-58.3.s390x.rpm dovecot23-fts-squat-2.3.15-58.3.s390x.rpm dovecot23-2.3.15-58.3.ppc64le.rpm dovecot23-backend-mysql-2.3.15-58.3.ppc64le.rpm dovecot23-backend-pgsql-2.3.15-58.3.ppc64le.rpm dovecot23-backend-sqlite-2.3.15-58.3.ppc64le.rpm dovecot23-devel-2.3.15-58.3.ppc64le.rpm dovecot23-fts-2.3.15-58.3.ppc64le.rpm dovecot23-fts-lucene-2.3.15-58.3.ppc64le.rpm dovecot23-fts-solr-2.3.15-58.3.ppc64le.rpm dovecot23-fts-squat-2.3.15-58.3.ppc64le.rpm dovecot23-2.3.15-58.3.aarch64.rpm dovecot23-backend-mysql-2.3.15-58.3.aarch64.rpm dovecot23-backend-pgsql-2.3.15-58.3.aarch64.rpm dovecot23-backend-sqlite-2.3.15-58.3.aarch64.rpm dovecot23-devel-2.3.15-58.3.aarch64.rpm dovecot23-fts-2.3.15-58.3.aarch64.rpm dovecot23-fts-lucene-2.3.15-58.3.aarch64.rpm dovecot23-fts-solr-2.3.15-58.3.aarch64.rpm dovecot23-fts-squat-2.3.15-58.3.aarch64.rpm openSUSE-SLE-15.3-2021-2602 Recommended update for amazon-ecs-init moderate SUSE Updates openSUSE-SLE 15.3 This update for amazon-ecs-init fixes the following issues: - Update to version 1.53.0-1 (bsc#1187662) * Cache Agent version 1.53.0 - from version 1.52.2-2 * Cache Agent version 1.52.2 * ecs-anywhere-install: fix incorrect download url when running in cn region - from version 1.52.2-1 * Cache Agent version 1.52.2 * ecs-anywhere-install: remove dependency on gpg key server * ecs-anywhere-install: allow sandboxed apt installations amazon-ecs-init-1.53.0-4.11.1.src.rpm amazon-ecs-init-1.53.0-4.11.1.x86_64.rpm amazon-ecs-init-1.53.0-4.11.1.aarch64.rpm openSUSE-SLE-15.3-2021-3013 Recommended update for patterns-base, patterns-server-enterprise, sles15-image moderate SUSE Updates openSUSE-SLE 15.3 This update for patterns-base, patterns-server-enterprise, sles15-image fixes the following issues: - Add pattern to install necessary packages for FIPS (bsc#1183154) - Add patterns-base-fips to work also in FIPS environments (bsc#1183154) - Use the same icon in the fips pattern as the previous pattern had (bsc#1189550) patterns-base-20200124-10.5.1.src.rpm patterns-base-32bit-20200124-10.5.1.x86_64.rpm patterns-base-apparmor-20200124-10.5.1.x86_64.rpm patterns-base-apparmor-32bit-20200124-10.5.1.x86_64.rpm patterns-base-base-20200124-10.5.1.x86_64.rpm patterns-base-base-32bit-20200124-10.5.1.x86_64.rpm patterns-base-basesystem-20200124-10.5.1.x86_64.rpm patterns-base-basic_desktop-20200124-10.5.1.x86_64.rpm patterns-base-documentation-20200124-10.5.1.x86_64.rpm patterns-base-enhanced_base-20200124-10.5.1.x86_64.rpm patterns-base-enhanced_base-32bit-20200124-10.5.1.x86_64.rpm patterns-base-fips-20200124-10.5.1.x86_64.rpm patterns-base-minimal_base-20200124-10.5.1.x86_64.rpm patterns-base-minimal_base-32bit-20200124-10.5.1.x86_64.rpm patterns-base-sw_management-20200124-10.5.1.x86_64.rpm patterns-base-sw_management-32bit-20200124-10.5.1.x86_64.rpm patterns-base-transactional_base-20200124-10.5.1.x86_64.rpm patterns-base-x11-20200124-10.5.1.x86_64.rpm patterns-base-x11-32bit-20200124-10.5.1.x86_64.rpm patterns-base-x11_enhanced-20200124-10.5.1.x86_64.rpm patterns-base-x11_enhanced-32bit-20200124-10.5.1.x86_64.rpm patterns-base-apparmor-20200124-10.5.1.s390x.rpm patterns-base-apparmor-32bit-20200124-10.5.1.s390x.rpm patterns-base-base-20200124-10.5.1.s390x.rpm patterns-base-base-32bit-20200124-10.5.1.s390x.rpm patterns-base-basesystem-20200124-10.5.1.s390x.rpm patterns-base-basic_desktop-20200124-10.5.1.s390x.rpm patterns-base-documentation-20200124-10.5.1.s390x.rpm patterns-base-enhanced_base-20200124-10.5.1.s390x.rpm patterns-base-enhanced_base-32bit-20200124-10.5.1.s390x.rpm patterns-base-fips-20200124-10.5.1.s390x.rpm patterns-base-minimal_base-20200124-10.5.1.s390x.rpm patterns-base-minimal_base-32bit-20200124-10.5.1.s390x.rpm patterns-base-sw_management-20200124-10.5.1.s390x.rpm patterns-base-sw_management-32bit-20200124-10.5.1.s390x.rpm patterns-base-transactional_base-20200124-10.5.1.s390x.rpm patterns-base-x11-20200124-10.5.1.s390x.rpm patterns-base-x11-32bit-20200124-10.5.1.s390x.rpm patterns-base-x11_enhanced-20200124-10.5.1.s390x.rpm patterns-base-x11_enhanced-32bit-20200124-10.5.1.s390x.rpm patterns-base-32bit-20200124-10.5.1.ppc64le.rpm patterns-base-apparmor-20200124-10.5.1.ppc64le.rpm patterns-base-apparmor-32bit-20200124-10.5.1.ppc64le.rpm patterns-base-base-20200124-10.5.1.ppc64le.rpm patterns-base-base-32bit-20200124-10.5.1.ppc64le.rpm patterns-base-basesystem-20200124-10.5.1.ppc64le.rpm patterns-base-basic_desktop-20200124-10.5.1.ppc64le.rpm patterns-base-documentation-20200124-10.5.1.ppc64le.rpm patterns-base-enhanced_base-20200124-10.5.1.ppc64le.rpm patterns-base-enhanced_base-32bit-20200124-10.5.1.ppc64le.rpm patterns-base-fips-20200124-10.5.1.ppc64le.rpm patterns-base-minimal_base-20200124-10.5.1.ppc64le.rpm patterns-base-minimal_base-32bit-20200124-10.5.1.ppc64le.rpm patterns-base-sw_management-20200124-10.5.1.ppc64le.rpm patterns-base-sw_management-32bit-20200124-10.5.1.ppc64le.rpm patterns-base-transactional_base-20200124-10.5.1.ppc64le.rpm patterns-base-x11-20200124-10.5.1.ppc64le.rpm patterns-base-x11-32bit-20200124-10.5.1.ppc64le.rpm patterns-base-x11_enhanced-20200124-10.5.1.ppc64le.rpm patterns-base-x11_enhanced-32bit-20200124-10.5.1.ppc64le.rpm patterns-base-32bit-20200124-10.5.1.aarch64.rpm patterns-base-apparmor-20200124-10.5.1.aarch64.rpm patterns-base-apparmor-32bit-20200124-10.5.1.aarch64.rpm patterns-base-base-20200124-10.5.1.aarch64.rpm patterns-base-base-32bit-20200124-10.5.1.aarch64.rpm patterns-base-basesystem-20200124-10.5.1.aarch64.rpm patterns-base-basic_desktop-20200124-10.5.1.aarch64.rpm patterns-base-documentation-20200124-10.5.1.aarch64.rpm patterns-base-enhanced_base-20200124-10.5.1.aarch64.rpm patterns-base-enhanced_base-32bit-20200124-10.5.1.aarch64.rpm patterns-base-fips-20200124-10.5.1.aarch64.rpm patterns-base-minimal_base-20200124-10.5.1.aarch64.rpm patterns-base-minimal_base-32bit-20200124-10.5.1.aarch64.rpm patterns-base-sw_management-20200124-10.5.1.aarch64.rpm patterns-base-sw_management-32bit-20200124-10.5.1.aarch64.rpm patterns-base-transactional_base-20200124-10.5.1.aarch64.rpm patterns-base-x11-20200124-10.5.1.aarch64.rpm patterns-base-x11-32bit-20200124-10.5.1.aarch64.rpm patterns-base-x11_enhanced-20200124-10.5.1.aarch64.rpm patterns-base-x11_enhanced-32bit-20200124-10.5.1.aarch64.rpm patterns-base-x11_raspberrypi-20200124-10.5.1.aarch64.rpm openSUSE-SLE-15.3-2021-2688 Recommended update for patterns-base, patterns-server-enterprise, sles15-image moderate SUSE Updates openSUSE-SLE 15.3 This update for patterns-base, patterns-server-enterprise, sles15-image fixes the following issues: - Add pattern to install necessary packages for FIPS (bsc#1183154) - Add patterns-base-fips to work also in FIPS environments (bsc#1183154) patterns-server-enterprise-20171206-12.6.1.src.rpm patterns-server-enterprise-oracle_server-20171206-12.6.1.x86_64.rpm patterns-server-enterprise-oracle_server-32bit-20171206-12.6.1.x86_64.rpm patterns-server-enterprise-sap_server-20171206-12.6.1.x86_64.rpm patterns-server-enterprise-sap_server-32bit-20171206-12.6.1.x86_64.rpm patterns-server-enterprise-hwcrypto-20171206-12.6.1.s390x.rpm patterns-server-enterprise-oracle_server-20171206-12.6.1.s390x.rpm patterns-server-enterprise-oracle_server-32bit-20171206-12.6.1.s390x.rpm patterns-server-enterprise-sap_server-20171206-12.6.1.s390x.rpm patterns-server-enterprise-sap_server-32bit-20171206-12.6.1.s390x.rpm patterns-server-enterprise-oracle_server-20171206-12.6.1.ppc64le.rpm patterns-server-enterprise-oracle_server-32bit-20171206-12.6.1.ppc64le.rpm patterns-server-enterprise-sap_server-20171206-12.6.1.ppc64le.rpm patterns-server-enterprise-sap_server-32bit-20171206-12.6.1.ppc64le.rpm patterns-server-enterprise-oracle_server-20171206-12.6.1.aarch64.rpm patterns-server-enterprise-oracle_server-32bit-20171206-12.6.1.aarch64.rpm patterns-server-enterprise-sap_server-20171206-12.6.1.aarch64.rpm patterns-server-enterprise-sap_server-32bit-20171206-12.6.1.aarch64.rpm openSUSE-SLE-15.3-2021-2575 Security update for php7 moderate SUSE Updates openSUSE-SLE 15.3 This update for php7 fixes the following issues: - CVE-2021-21705 [bsc#1188037]: SSRF bypass in FILTER_VALIDATE_URL php7-7.2.5-4.76.5.src.rpm php7-pear-Archive_Tar-7.2.5-4.76.5.noarch.rpm php7-wddx-7.2.5-4.76.5.x86_64.rpm php7-wddx-7.2.5-4.76.5.s390x.rpm php7-wddx-7.2.5-4.76.5.ppc64le.rpm php7-wddx-7.2.5-4.76.5.aarch64.rpm openSUSE-SLE-15.3-2021-2637 Security update for php7 important SUSE Updates openSUSE-SLE 15.3 This update for php7 fixes the following issues: - CVE-2021-21704: Fixed security issues in pdo_firebase module (bsc#1188035). - CVE-2021-21705: Fixed SSRF bypass in FILTER_VALIDATE_URL (bsc#1188037). apache2-mod_php7-7.4.6-3.22.1.x86_64.rpm php7-7.4.6-3.22.1.src.rpm php7-7.4.6-3.22.1.x86_64.rpm php7-bcmath-7.4.6-3.22.1.x86_64.rpm php7-bz2-7.4.6-3.22.1.x86_64.rpm php7-calendar-7.4.6-3.22.1.x86_64.rpm php7-ctype-7.4.6-3.22.1.x86_64.rpm php7-curl-7.4.6-3.22.1.x86_64.rpm php7-dba-7.4.6-3.22.1.x86_64.rpm php7-devel-7.4.6-3.22.1.x86_64.rpm php7-dom-7.4.6-3.22.1.x86_64.rpm php7-embed-7.4.6-3.22.1.x86_64.rpm php7-enchant-7.4.6-3.22.1.x86_64.rpm php7-exif-7.4.6-3.22.1.x86_64.rpm php7-fastcgi-7.4.6-3.22.1.x86_64.rpm php7-fileinfo-7.4.6-3.22.1.x86_64.rpm php7-firebird-7.4.6-3.22.1.x86_64.rpm php7-fpm-7.4.6-3.22.1.x86_64.rpm php7-ftp-7.4.6-3.22.1.x86_64.rpm php7-gd-7.4.6-3.22.1.x86_64.rpm php7-gettext-7.4.6-3.22.1.x86_64.rpm php7-gmp-7.4.6-3.22.1.x86_64.rpm php7-iconv-7.4.6-3.22.1.x86_64.rpm php7-intl-7.4.6-3.22.1.x86_64.rpm php7-json-7.4.6-3.22.1.x86_64.rpm php7-ldap-7.4.6-3.22.1.x86_64.rpm php7-mbstring-7.4.6-3.22.1.x86_64.rpm php7-mysql-7.4.6-3.22.1.x86_64.rpm php7-odbc-7.4.6-3.22.1.x86_64.rpm php7-opcache-7.4.6-3.22.1.x86_64.rpm php7-openssl-7.4.6-3.22.1.x86_64.rpm php7-pcntl-7.4.6-3.22.1.x86_64.rpm php7-pdo-7.4.6-3.22.1.x86_64.rpm php7-pgsql-7.4.6-3.22.1.x86_64.rpm php7-phar-7.4.6-3.22.1.x86_64.rpm php7-posix-7.4.6-3.22.1.x86_64.rpm php7-readline-7.4.6-3.22.1.x86_64.rpm php7-shmop-7.4.6-3.22.1.x86_64.rpm php7-snmp-7.4.6-3.22.1.x86_64.rpm php7-soap-7.4.6-3.22.1.x86_64.rpm php7-sockets-7.4.6-3.22.1.x86_64.rpm php7-sodium-7.4.6-3.22.1.x86_64.rpm php7-sqlite-7.4.6-3.22.1.x86_64.rpm php7-sysvmsg-7.4.6-3.22.1.x86_64.rpm php7-sysvsem-7.4.6-3.22.1.x86_64.rpm php7-sysvshm-7.4.6-3.22.1.x86_64.rpm php7-tidy-7.4.6-3.22.1.x86_64.rpm php7-tokenizer-7.4.6-3.22.1.x86_64.rpm php7-xmlreader-7.4.6-3.22.1.x86_64.rpm php7-xmlrpc-7.4.6-3.22.1.x86_64.rpm php7-xmlwriter-7.4.6-3.22.1.x86_64.rpm php7-xsl-7.4.6-3.22.1.x86_64.rpm php7-zip-7.4.6-3.22.1.x86_64.rpm php7-zlib-7.4.6-3.22.1.x86_64.rpm apache2-mod_php7-7.4.6-3.22.1.s390x.rpm php7-7.4.6-3.22.1.s390x.rpm php7-bcmath-7.4.6-3.22.1.s390x.rpm php7-bz2-7.4.6-3.22.1.s390x.rpm php7-calendar-7.4.6-3.22.1.s390x.rpm php7-ctype-7.4.6-3.22.1.s390x.rpm php7-curl-7.4.6-3.22.1.s390x.rpm php7-dba-7.4.6-3.22.1.s390x.rpm php7-devel-7.4.6-3.22.1.s390x.rpm php7-dom-7.4.6-3.22.1.s390x.rpm php7-embed-7.4.6-3.22.1.s390x.rpm php7-enchant-7.4.6-3.22.1.s390x.rpm php7-exif-7.4.6-3.22.1.s390x.rpm php7-fastcgi-7.4.6-3.22.1.s390x.rpm php7-fileinfo-7.4.6-3.22.1.s390x.rpm php7-firebird-7.4.6-3.22.1.s390x.rpm php7-fpm-7.4.6-3.22.1.s390x.rpm php7-ftp-7.4.6-3.22.1.s390x.rpm php7-gd-7.4.6-3.22.1.s390x.rpm php7-gettext-7.4.6-3.22.1.s390x.rpm php7-gmp-7.4.6-3.22.1.s390x.rpm php7-iconv-7.4.6-3.22.1.s390x.rpm php7-intl-7.4.6-3.22.1.s390x.rpm php7-json-7.4.6-3.22.1.s390x.rpm php7-ldap-7.4.6-3.22.1.s390x.rpm php7-mbstring-7.4.6-3.22.1.s390x.rpm php7-mysql-7.4.6-3.22.1.s390x.rpm php7-odbc-7.4.6-3.22.1.s390x.rpm php7-opcache-7.4.6-3.22.1.s390x.rpm php7-openssl-7.4.6-3.22.1.s390x.rpm php7-pcntl-7.4.6-3.22.1.s390x.rpm php7-pdo-7.4.6-3.22.1.s390x.rpm php7-pgsql-7.4.6-3.22.1.s390x.rpm php7-phar-7.4.6-3.22.1.s390x.rpm php7-posix-7.4.6-3.22.1.s390x.rpm php7-readline-7.4.6-3.22.1.s390x.rpm php7-shmop-7.4.6-3.22.1.s390x.rpm php7-snmp-7.4.6-3.22.1.s390x.rpm php7-soap-7.4.6-3.22.1.s390x.rpm php7-sockets-7.4.6-3.22.1.s390x.rpm php7-sodium-7.4.6-3.22.1.s390x.rpm php7-sqlite-7.4.6-3.22.1.s390x.rpm php7-sysvmsg-7.4.6-3.22.1.s390x.rpm php7-sysvsem-7.4.6-3.22.1.s390x.rpm php7-sysvshm-7.4.6-3.22.1.s390x.rpm php7-tidy-7.4.6-3.22.1.s390x.rpm php7-tokenizer-7.4.6-3.22.1.s390x.rpm php7-xmlreader-7.4.6-3.22.1.s390x.rpm php7-xmlrpc-7.4.6-3.22.1.s390x.rpm php7-xmlwriter-7.4.6-3.22.1.s390x.rpm php7-xsl-7.4.6-3.22.1.s390x.rpm php7-zip-7.4.6-3.22.1.s390x.rpm php7-zlib-7.4.6-3.22.1.s390x.rpm apache2-mod_php7-7.4.6-3.22.1.ppc64le.rpm php7-7.4.6-3.22.1.ppc64le.rpm php7-bcmath-7.4.6-3.22.1.ppc64le.rpm php7-bz2-7.4.6-3.22.1.ppc64le.rpm php7-calendar-7.4.6-3.22.1.ppc64le.rpm php7-ctype-7.4.6-3.22.1.ppc64le.rpm php7-curl-7.4.6-3.22.1.ppc64le.rpm php7-dba-7.4.6-3.22.1.ppc64le.rpm php7-devel-7.4.6-3.22.1.ppc64le.rpm php7-dom-7.4.6-3.22.1.ppc64le.rpm php7-embed-7.4.6-3.22.1.ppc64le.rpm php7-enchant-7.4.6-3.22.1.ppc64le.rpm php7-exif-7.4.6-3.22.1.ppc64le.rpm php7-fastcgi-7.4.6-3.22.1.ppc64le.rpm php7-fileinfo-7.4.6-3.22.1.ppc64le.rpm php7-firebird-7.4.6-3.22.1.ppc64le.rpm php7-fpm-7.4.6-3.22.1.ppc64le.rpm php7-ftp-7.4.6-3.22.1.ppc64le.rpm php7-gd-7.4.6-3.22.1.ppc64le.rpm php7-gettext-7.4.6-3.22.1.ppc64le.rpm php7-gmp-7.4.6-3.22.1.ppc64le.rpm php7-iconv-7.4.6-3.22.1.ppc64le.rpm php7-intl-7.4.6-3.22.1.ppc64le.rpm php7-json-7.4.6-3.22.1.ppc64le.rpm php7-ldap-7.4.6-3.22.1.ppc64le.rpm php7-mbstring-7.4.6-3.22.1.ppc64le.rpm php7-mysql-7.4.6-3.22.1.ppc64le.rpm php7-odbc-7.4.6-3.22.1.ppc64le.rpm php7-opcache-7.4.6-3.22.1.ppc64le.rpm php7-openssl-7.4.6-3.22.1.ppc64le.rpm php7-pcntl-7.4.6-3.22.1.ppc64le.rpm php7-pdo-7.4.6-3.22.1.ppc64le.rpm php7-pgsql-7.4.6-3.22.1.ppc64le.rpm php7-phar-7.4.6-3.22.1.ppc64le.rpm php7-posix-7.4.6-3.22.1.ppc64le.rpm php7-readline-7.4.6-3.22.1.ppc64le.rpm php7-shmop-7.4.6-3.22.1.ppc64le.rpm php7-snmp-7.4.6-3.22.1.ppc64le.rpm php7-soap-7.4.6-3.22.1.ppc64le.rpm php7-sockets-7.4.6-3.22.1.ppc64le.rpm php7-sodium-7.4.6-3.22.1.ppc64le.rpm php7-sqlite-7.4.6-3.22.1.ppc64le.rpm php7-sysvmsg-7.4.6-3.22.1.ppc64le.rpm php7-sysvsem-7.4.6-3.22.1.ppc64le.rpm php7-sysvshm-7.4.6-3.22.1.ppc64le.rpm php7-tidy-7.4.6-3.22.1.ppc64le.rpm php7-tokenizer-7.4.6-3.22.1.ppc64le.rpm php7-xmlreader-7.4.6-3.22.1.ppc64le.rpm php7-xmlrpc-7.4.6-3.22.1.ppc64le.rpm php7-xmlwriter-7.4.6-3.22.1.ppc64le.rpm php7-xsl-7.4.6-3.22.1.ppc64le.rpm php7-zip-7.4.6-3.22.1.ppc64le.rpm php7-zlib-7.4.6-3.22.1.ppc64le.rpm apache2-mod_php7-7.4.6-3.22.1.aarch64.rpm php7-7.4.6-3.22.1.aarch64.rpm php7-bcmath-7.4.6-3.22.1.aarch64.rpm php7-bz2-7.4.6-3.22.1.aarch64.rpm php7-calendar-7.4.6-3.22.1.aarch64.rpm php7-ctype-7.4.6-3.22.1.aarch64.rpm php7-curl-7.4.6-3.22.1.aarch64.rpm php7-dba-7.4.6-3.22.1.aarch64.rpm php7-devel-7.4.6-3.22.1.aarch64.rpm php7-dom-7.4.6-3.22.1.aarch64.rpm php7-embed-7.4.6-3.22.1.aarch64.rpm php7-enchant-7.4.6-3.22.1.aarch64.rpm php7-exif-7.4.6-3.22.1.aarch64.rpm php7-fastcgi-7.4.6-3.22.1.aarch64.rpm php7-fileinfo-7.4.6-3.22.1.aarch64.rpm php7-firebird-7.4.6-3.22.1.aarch64.rpm php7-fpm-7.4.6-3.22.1.aarch64.rpm php7-ftp-7.4.6-3.22.1.aarch64.rpm php7-gd-7.4.6-3.22.1.aarch64.rpm php7-gettext-7.4.6-3.22.1.aarch64.rpm php7-gmp-7.4.6-3.22.1.aarch64.rpm php7-iconv-7.4.6-3.22.1.aarch64.rpm php7-intl-7.4.6-3.22.1.aarch64.rpm php7-json-7.4.6-3.22.1.aarch64.rpm php7-ldap-7.4.6-3.22.1.aarch64.rpm php7-mbstring-7.4.6-3.22.1.aarch64.rpm php7-mysql-7.4.6-3.22.1.aarch64.rpm php7-odbc-7.4.6-3.22.1.aarch64.rpm php7-opcache-7.4.6-3.22.1.aarch64.rpm php7-openssl-7.4.6-3.22.1.aarch64.rpm php7-pcntl-7.4.6-3.22.1.aarch64.rpm php7-pdo-7.4.6-3.22.1.aarch64.rpm php7-pgsql-7.4.6-3.22.1.aarch64.rpm php7-phar-7.4.6-3.22.1.aarch64.rpm php7-posix-7.4.6-3.22.1.aarch64.rpm php7-readline-7.4.6-3.22.1.aarch64.rpm php7-shmop-7.4.6-3.22.1.aarch64.rpm php7-snmp-7.4.6-3.22.1.aarch64.rpm php7-soap-7.4.6-3.22.1.aarch64.rpm php7-sockets-7.4.6-3.22.1.aarch64.rpm php7-sodium-7.4.6-3.22.1.aarch64.rpm php7-sqlite-7.4.6-3.22.1.aarch64.rpm php7-sysvmsg-7.4.6-3.22.1.aarch64.rpm php7-sysvsem-7.4.6-3.22.1.aarch64.rpm php7-sysvshm-7.4.6-3.22.1.aarch64.rpm php7-tidy-7.4.6-3.22.1.aarch64.rpm php7-tokenizer-7.4.6-3.22.1.aarch64.rpm php7-xmlreader-7.4.6-3.22.1.aarch64.rpm php7-xmlrpc-7.4.6-3.22.1.aarch64.rpm php7-xmlwriter-7.4.6-3.22.1.aarch64.rpm php7-xsl-7.4.6-3.22.1.aarch64.rpm php7-zip-7.4.6-3.22.1.aarch64.rpm php7-zlib-7.4.6-3.22.1.aarch64.rpm openSUSE-SLE-15.3-2021-2447 Recommended update for hwdata moderate SUSE Updates openSUSE-SLE 15.3 This update for hwdata fixes the following issue: - Version 0.349: Updated pci, usb and vendor ids (bsc#1187948). hwdata-0.349-3.24.1.noarch.rpm hwdata-0.349-3.24.1.src.rpm openSUSE-SLE-15.3-2021-2354 Security update for nodejs14 important SUSE Updates openSUSE-SLE 15.3 This update for nodejs14 fixes the following issues: Update nodejs14 to 14.17.2. Including fixes for: - CVE-2021-22918: libuv upgrade - Out of bounds read (bsc#1187973) - CVE-2021-27290: ssri Regular Expression Denial of Service (bsc#1187976) - CVE-2021-23362: hosted-git-info Regular Expression Denial of Service (bsc#1187977) - CVE-2020-7774: y18n Prototype Pollution (bsc#1184450) nodejs14-14.17.2-5.12.1.src.rpm nodejs14-14.17.2-5.12.1.x86_64.rpm nodejs14-devel-14.17.2-5.12.1.x86_64.rpm nodejs14-docs-14.17.2-5.12.1.noarch.rpm npm14-14.17.2-5.12.1.x86_64.rpm nodejs14-14.17.2-5.12.1.s390x.rpm nodejs14-devel-14.17.2-5.12.1.s390x.rpm npm14-14.17.2-5.12.1.s390x.rpm nodejs14-14.17.2-5.12.1.ppc64le.rpm nodejs14-devel-14.17.2-5.12.1.ppc64le.rpm npm14-14.17.2-5.12.1.ppc64le.rpm nodejs14-14.17.2-5.12.1.aarch64.rpm nodejs14-devel-14.17.2-5.12.1.aarch64.rpm npm14-14.17.2-5.12.1.aarch64.rpm openSUSE-SLE-15.3-2021-2353 Security update for nodejs10 important SUSE Updates openSUSE-SLE 15.3 This update for nodejs10 fixes the following issues: Update nodejs10 to 10.24.1. Including fixes for - CVE-2021-22918: libuv upgrade - Out of bounds read (bsc#1187973) - CVE-2021-27290: ssri Regular Expression Denial of Service (bsc#1187976) - CVE-2021-23362: hosted-git-info Regular Expression Denial of Service (bsc#1187977) - CVE-2020-7774: y18n Prototype Pollution (bsc#1184450) - CVE-2021-3450: OpenSSL - CA certificate check bypass with X509_V_FLAG_X509_STRICT (bsc#1183851) - CVE-2021-3449: OpenSSL - NULL pointer deref in signature_algorithms processing (bsc#1183852) - reduce memory footprint of test-worker-stdio (bsc#1183155) nodejs10-10.24.1-1.36.1.src.rpm nodejs10-10.24.1-1.36.1.x86_64.rpm nodejs10-devel-10.24.1-1.36.1.x86_64.rpm nodejs10-docs-10.24.1-1.36.1.noarch.rpm npm10-10.24.1-1.36.1.x86_64.rpm nodejs10-10.24.1-1.36.1.s390x.rpm nodejs10-devel-10.24.1-1.36.1.s390x.rpm npm10-10.24.1-1.36.1.s390x.rpm nodejs10-10.24.1-1.36.1.ppc64le.rpm nodejs10-devel-10.24.1-1.36.1.ppc64le.rpm npm10-10.24.1-1.36.1.ppc64le.rpm nodejs10-10.24.1-1.36.1.aarch64.rpm nodejs10-devel-10.24.1-1.36.1.aarch64.rpm npm10-10.24.1-1.36.1.aarch64.rpm openSUSE-SLE-15.3-2021-2404 Security update for systemd moderate SUSE Updates openSUSE-SLE 15.3 This update for systemd fixes the following issues: - CVE-2021-33910: Fixed a denial of service in systemd via unit_name_path_escape() (bsc#1188063) - Skip udev rules if 'elevator=' is used (bsc#1184994) systemd-234-24.90.1.src.rpm True systemd-bash-completion-234-24.90.1.noarch.rpm True openSUSE-SLE-15.3-2021-2457 Security update for wireshark moderate SUSE Updates openSUSE-SLE 15.3 This update for wireshark fixes the following issues: Update wireshark to 3.4.6. Including a fix for: - DVB-S2-BB dissector infinite loop (bsc#1186790). libwireshark14-3.4.6-3.56.1.x86_64.rpm libwiretap11-3.4.6-3.56.1.x86_64.rpm libwsutil12-3.4.6-3.56.1.x86_64.rpm wireshark-3.4.6-3.56.1.src.rpm wireshark-3.4.6-3.56.1.x86_64.rpm wireshark-devel-3.4.6-3.56.1.x86_64.rpm wireshark-ui-qt-3.4.6-3.56.1.x86_64.rpm libwireshark14-3.4.6-3.56.1.s390x.rpm libwiretap11-3.4.6-3.56.1.s390x.rpm libwsutil12-3.4.6-3.56.1.s390x.rpm wireshark-3.4.6-3.56.1.s390x.rpm wireshark-devel-3.4.6-3.56.1.s390x.rpm wireshark-ui-qt-3.4.6-3.56.1.s390x.rpm libwireshark14-3.4.6-3.56.1.ppc64le.rpm libwiretap11-3.4.6-3.56.1.ppc64le.rpm libwsutil12-3.4.6-3.56.1.ppc64le.rpm wireshark-3.4.6-3.56.1.ppc64le.rpm wireshark-devel-3.4.6-3.56.1.ppc64le.rpm wireshark-ui-qt-3.4.6-3.56.1.ppc64le.rpm libwireshark14-3.4.6-3.56.1.aarch64.rpm libwiretap11-3.4.6-3.56.1.aarch64.rpm libwsutil12-3.4.6-3.56.1.aarch64.rpm wireshark-3.4.6-3.56.1.aarch64.rpm wireshark-devel-3.4.6-3.56.1.aarch64.rpm wireshark-ui-qt-3.4.6-3.56.1.aarch64.rpm openSUSE-SLE-15.3-2021-2610 Recommended update for powerpc-utils moderate SUSE Updates openSUSE-SLE 15.3 This update for powerpc-utils fixes the following issues: - Bring up the members of HNV interface together with the HNV link. (bsc#1187182 ltc#192954) powerpc-utils-1.3.8-9.6.1.ppc64le.rpm powerpc-utils-1.3.8-9.6.1.src.rpm openSUSE-SLE-15.3-2021-2629 Recommended update for libreoffice moderate SUSE Updates openSUSE-SLE 15.3 This update for libreoffice fixes the following issues: Update to version 7.1.4.2 (bsc#1178806) - Fix external URL connections issues when WebDav is built using 'libserf'. (bsc#1187173, bsc#1186871) - Fix a regression caused by "Multi column textbox in editengine". - Improve the build time on aarch64 to select only powerful buildhosts. - Fix an issue with PPTX where one column becomes two within one text frame. (bsc#1182969) libreoffice-7.1.4.2-14.22.10.1.src.rpm libreoffice-7.1.4.2-14.22.10.1.x86_64.rpm libreoffice-base-7.1.4.2-14.22.10.1.x86_64.rpm libreoffice-base-drivers-postgresql-7.1.4.2-14.22.10.1.x86_64.rpm libreoffice-branding-upstream-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-calc-7.1.4.2-14.22.10.1.x86_64.rpm libreoffice-calc-extensions-7.1.4.2-14.22.10.1.x86_64.rpm libreoffice-draw-7.1.4.2-14.22.10.1.x86_64.rpm libreoffice-filters-optional-7.1.4.2-14.22.10.1.x86_64.rpm libreoffice-gdb-pretty-printers-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-glade-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-gnome-7.1.4.2-14.22.10.1.x86_64.rpm libreoffice-gtk3-7.1.4.2-14.22.10.1.x86_64.rpm libreoffice-icon-themes-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-impress-7.1.4.2-14.22.10.1.x86_64.rpm libreoffice-l10n-af-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-am-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-ar-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-as-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-ast-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-be-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-bg-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-bn-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-bn_IN-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-bo-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-br-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-brx-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-bs-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-ca-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-ca_valencia-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-ckb-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-cs-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-cy-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-da-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-de-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-dgo-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-dsb-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-dz-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-el-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-en-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-en_GB-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-en_ZA-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-eo-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-es-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-et-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-eu-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-fa-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-fi-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-fr-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-fur-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-fy-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-ga-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-gd-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-gl-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-gu-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-gug-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-he-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-hi-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-hr-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-hsb-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-hu-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-id-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-is-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-it-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-ja-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-ka-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-kab-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-kk-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-km-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-kmr_Latn-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-kn-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-ko-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-kok-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-ks-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-lb-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-lo-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-lt-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-lv-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-mai-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-mk-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-ml-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-mn-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-mni-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-mr-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-my-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-nb-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-ne-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-nl-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-nn-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-nr-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-nso-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-oc-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-om-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-or-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-pa-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-pl-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-pt_BR-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-pt_PT-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-ro-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-ru-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-rw-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-sa_IN-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-sat-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-sd-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-si-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-sid-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-sk-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-sl-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-sq-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-sr-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-ss-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-st-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-sv-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-sw_TZ-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-szl-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-ta-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-te-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-tg-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-th-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-tn-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-tr-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-ts-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-tt-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-ug-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-uk-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-uz-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-ve-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-vec-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-vi-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-xh-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-zh_CN-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-zh_TW-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-zu-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-librelogo-7.1.4.2-14.22.10.1.x86_64.rpm libreoffice-mailmerge-7.1.4.2-14.22.10.1.x86_64.rpm libreoffice-math-7.1.4.2-14.22.10.1.x86_64.rpm libreoffice-officebean-7.1.4.2-14.22.10.1.x86_64.rpm libreoffice-pyuno-7.1.4.2-14.22.10.1.x86_64.rpm libreoffice-qt5-7.1.4.2-14.22.10.1.x86_64.rpm libreoffice-sdk-7.1.4.2-14.22.10.1.x86_64.rpm libreoffice-sdk-doc-7.1.4.2-14.22.10.1.x86_64.rpm libreoffice-writer-7.1.4.2-14.22.10.1.x86_64.rpm libreoffice-writer-extensions-7.1.4.2-14.22.10.1.x86_64.rpm libreofficekit-7.1.4.2-14.22.10.1.x86_64.rpm libreofficekit-devel-7.1.4.2-14.22.10.1.x86_64.rpm libreoffice-7.1.4.2-14.22.10.1.ppc64le.rpm libreoffice-base-7.1.4.2-14.22.10.1.ppc64le.rpm libreoffice-base-drivers-postgresql-7.1.4.2-14.22.10.1.ppc64le.rpm libreoffice-calc-7.1.4.2-14.22.10.1.ppc64le.rpm libreoffice-calc-extensions-7.1.4.2-14.22.10.1.ppc64le.rpm libreoffice-draw-7.1.4.2-14.22.10.1.ppc64le.rpm libreoffice-filters-optional-7.1.4.2-14.22.10.1.ppc64le.rpm libreoffice-gnome-7.1.4.2-14.22.10.1.ppc64le.rpm libreoffice-gtk3-7.1.4.2-14.22.10.1.ppc64le.rpm libreoffice-impress-7.1.4.2-14.22.10.1.ppc64le.rpm libreoffice-librelogo-7.1.4.2-14.22.10.1.ppc64le.rpm libreoffice-mailmerge-7.1.4.2-14.22.10.1.ppc64le.rpm libreoffice-math-7.1.4.2-14.22.10.1.ppc64le.rpm libreoffice-officebean-7.1.4.2-14.22.10.1.ppc64le.rpm libreoffice-pyuno-7.1.4.2-14.22.10.1.ppc64le.rpm libreoffice-qt5-7.1.4.2-14.22.10.1.ppc64le.rpm libreoffice-sdk-7.1.4.2-14.22.10.1.ppc64le.rpm libreoffice-sdk-doc-7.1.4.2-14.22.10.1.ppc64le.rpm libreoffice-writer-7.1.4.2-14.22.10.1.ppc64le.rpm libreoffice-writer-extensions-7.1.4.2-14.22.10.1.ppc64le.rpm libreofficekit-7.1.4.2-14.22.10.1.ppc64le.rpm libreofficekit-devel-7.1.4.2-14.22.10.1.ppc64le.rpm libreoffice-7.1.4.2-14.22.10.1.aarch64.rpm libreoffice-base-7.1.4.2-14.22.10.1.aarch64.rpm libreoffice-base-drivers-postgresql-7.1.4.2-14.22.10.1.aarch64.rpm libreoffice-calc-7.1.4.2-14.22.10.1.aarch64.rpm libreoffice-calc-extensions-7.1.4.2-14.22.10.1.aarch64.rpm libreoffice-draw-7.1.4.2-14.22.10.1.aarch64.rpm libreoffice-filters-optional-7.1.4.2-14.22.10.1.aarch64.rpm libreoffice-gnome-7.1.4.2-14.22.10.1.aarch64.rpm libreoffice-gtk3-7.1.4.2-14.22.10.1.aarch64.rpm libreoffice-impress-7.1.4.2-14.22.10.1.aarch64.rpm libreoffice-librelogo-7.1.4.2-14.22.10.1.aarch64.rpm libreoffice-mailmerge-7.1.4.2-14.22.10.1.aarch64.rpm libreoffice-math-7.1.4.2-14.22.10.1.aarch64.rpm libreoffice-officebean-7.1.4.2-14.22.10.1.aarch64.rpm libreoffice-pyuno-7.1.4.2-14.22.10.1.aarch64.rpm libreoffice-qt5-7.1.4.2-14.22.10.1.aarch64.rpm libreoffice-sdk-7.1.4.2-14.22.10.1.aarch64.rpm libreoffice-sdk-doc-7.1.4.2-14.22.10.1.aarch64.rpm libreoffice-writer-7.1.4.2-14.22.10.1.aarch64.rpm libreoffice-writer-extensions-7.1.4.2-14.22.10.1.aarch64.rpm libreofficekit-7.1.4.2-14.22.10.1.aarch64.rpm libreofficekit-devel-7.1.4.2-14.22.10.1.aarch64.rpm openSUSE-SLE-15.3-2021-3023 Recommended update for pidgin moderate SUSE Updates openSUSE-SLE 15.3 This update for pidgin fixes the following issue: - Add support for the 'no_proxy' environment variable. (jsc#SLE-17111) finch-2.13.0-12.3.1.x86_64.rpm finch-devel-2.13.0-12.3.1.x86_64.rpm libpurple-2.13.0-12.3.1.x86_64.rpm libpurple-branding-upstream-2.13.0-12.3.1.noarch.rpm libpurple-devel-2.13.0-12.3.1.x86_64.rpm libpurple-lang-2.13.0-12.3.1.noarch.rpm libpurple-plugin-sametime-2.13.0-12.3.1.x86_64.rpm libpurple-tcl-2.13.0-12.3.1.x86_64.rpm pidgin-2.13.0-12.3.1.src.rpm pidgin-2.13.0-12.3.1.x86_64.rpm pidgin-devel-2.13.0-12.3.1.x86_64.rpm finch-2.13.0-12.3.1.s390x.rpm finch-devel-2.13.0-12.3.1.s390x.rpm libpurple-2.13.0-12.3.1.s390x.rpm libpurple-devel-2.13.0-12.3.1.s390x.rpm libpurple-plugin-sametime-2.13.0-12.3.1.s390x.rpm libpurple-tcl-2.13.0-12.3.1.s390x.rpm pidgin-2.13.0-12.3.1.s390x.rpm pidgin-devel-2.13.0-12.3.1.s390x.rpm finch-2.13.0-12.3.1.ppc64le.rpm finch-devel-2.13.0-12.3.1.ppc64le.rpm libpurple-2.13.0-12.3.1.ppc64le.rpm libpurple-devel-2.13.0-12.3.1.ppc64le.rpm libpurple-plugin-sametime-2.13.0-12.3.1.ppc64le.rpm libpurple-tcl-2.13.0-12.3.1.ppc64le.rpm pidgin-2.13.0-12.3.1.ppc64le.rpm pidgin-devel-2.13.0-12.3.1.ppc64le.rpm finch-2.13.0-12.3.1.aarch64.rpm finch-devel-2.13.0-12.3.1.aarch64.rpm libpurple-2.13.0-12.3.1.aarch64.rpm libpurple-devel-2.13.0-12.3.1.aarch64.rpm libpurple-plugin-sametime-2.13.0-12.3.1.aarch64.rpm libpurple-tcl-2.13.0-12.3.1.aarch64.rpm pidgin-2.13.0-12.3.1.aarch64.rpm pidgin-devel-2.13.0-12.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-2436 Recommended update for libgweather important SUSE Updates openSUSE-SLE 15.3 This update for libgweather fixes the following issues: - Fix memory issues backported from "gnome-3-34". - Use new 'metno' 2.0 API. The version 1.9 was deprecated and will be removed soon. (bsc#1185651) gweather-data-3.34.0-4.3.1.noarch.rpm libgweather-3-16-3.34.0-4.3.1.x86_64.rpm libgweather-3-16-32bit-3.34.0-4.3.1.x86_64.rpm libgweather-3.34.0-4.3.1.src.rpm libgweather-devel-3.34.0-4.3.1.x86_64.rpm libgweather-lang-3.34.0-4.3.1.noarch.rpm typelib-1_0-GWeather-3_0-3.34.0-4.3.1.x86_64.rpm libgweather-3-16-3.34.0-4.3.1.s390x.rpm libgweather-devel-3.34.0-4.3.1.s390x.rpm typelib-1_0-GWeather-3_0-3.34.0-4.3.1.s390x.rpm libgweather-3-16-3.34.0-4.3.1.ppc64le.rpm libgweather-devel-3.34.0-4.3.1.ppc64le.rpm typelib-1_0-GWeather-3_0-3.34.0-4.3.1.ppc64le.rpm libgweather-3-16-3.34.0-4.3.1.aarch64.rpm libgweather-devel-3.34.0-4.3.1.aarch64.rpm typelib-1_0-GWeather-3_0-3.34.0-4.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-2772 Recommended update for linuxrc moderate SUSE Updates openSUSE-SLE 15.3 This update for linuxrc fixes the following issues: - Read 'rules.xml' if autoyast option indicates a rules-based setup. (bsc#1187235) linuxrc-7.0.30.5-3.6.1.src.rpm linuxrc-7.0.30.5-3.6.1.x86_64.rpm linuxrc-7.0.30.5-3.6.1.s390x.rpm linuxrc-7.0.30.5-3.6.1.ppc64le.rpm linuxrc-7.0.30.5-3.6.1.aarch64.rpm openSUSE-SLE-15.3-2021-2791 Security update for fetchmail moderate SUSE Updates openSUSE-SLE 15.3 This update for fetchmail fixes the following issues: - CVE-2021-36386: Fixed a missing variable initialization that can cause read from bad memory locations. (bsc#1188875) - Change PASSWORDLEN from 64 to 256 (bsc#1188034) fetchmail-6.3.26-20.14.1.src.rpm fetchmail-6.3.26-20.14.1.x86_64.rpm fetchmailconf-6.3.26-20.14.1.x86_64.rpm fetchmail-6.3.26-20.14.1.s390x.rpm fetchmailconf-6.3.26-20.14.1.s390x.rpm fetchmail-6.3.26-20.14.1.ppc64le.rpm fetchmailconf-6.3.26-20.14.1.ppc64le.rpm fetchmail-6.3.26-20.14.1.aarch64.rpm fetchmailconf-6.3.26-20.14.1.aarch64.rpm openSUSE-SLE-15.3-2021-2623 Recommended update for samba moderate SUSE Updates openSUSE-SLE 15.3 This update for samba fixes the following issues: - Add 'msDS-AdditionalDnsHostName' to the keytab. (bsc#1185420) - Add 'net-ads-join dnshostname' option. (bsc#1185420) - Fix adding 'msDS-AdditionalDnsHostName' to keytab with Windows DC. (bsc#1185420) libndr0-32bit-4.11.14+git.260.32282693e40-4.22.2.x86_64.rpm libndr0-4.11.14+git.260.32282693e40-4.22.2.x86_64.rpm samba-4.11.14+git.260.32282693e40-4.22.2.src.rpm libndr0-4.11.14+git.260.32282693e40-4.22.2.s390x.rpm libndr0-4.11.14+git.260.32282693e40-4.22.2.ppc64le.rpm libndr0-4.11.14+git.260.32282693e40-4.22.2.aarch64.rpm openSUSE-SLE-15.3-2021-2392 Security update for go1.16 important SUSE Updates openSUSE-SLE 15.3 This update for go1.16 fixes the following issues: go1.16.6 (released 2021-07-12, bsc#1182345) includes a security fix to the crypto/tls package, as well as bug fixes to the compiler, and the net and net/http packages. Security issue fixed: CVE-2021-34558: Fixed crypto/tls: clients can panic when provided a certificate of the wrong type for the negotiated parameters (bsc#1188229) go1.16 release: * bsc#1188229 go#47143 CVE-2021-34558 * go#47145 security: fix CVE-2021-34558 * go#46999 net: LookupMX behaviour broken * go#46981 net: TestCVE202133195 fails if /etc/resolv.conf specifies ndots larger than 3 * go#46769 syscall: TestGroupCleanupUserNamespace test failure on Fedora * go#46657 runtime: deeply nested struct initialized with non-zero values * go#44984 net/http: server not setting Content-Length in certain cases go1.16-1.16.6-1.20.1.src.rpm go1.16-1.16.6-1.20.1.x86_64.rpm go1.16-doc-1.16.6-1.20.1.x86_64.rpm go1.16-race-1.16.6-1.20.1.x86_64.rpm go1.16-1.16.6-1.20.1.s390x.rpm go1.16-doc-1.16.6-1.20.1.s390x.rpm go1.16-1.16.6-1.20.1.ppc64le.rpm go1.16-doc-1.16.6-1.20.1.ppc64le.rpm go1.16-1.16.6-1.20.1.aarch64.rpm go1.16-doc-1.16.6-1.20.1.aarch64.rpm go1.16-race-1.16.6-1.20.1.aarch64.rpm openSUSE-SLE-15.3-2021-2573 Recommended update for timezone moderate SUSE Updates openSUSE-SLE 15.3 This update for timezone fixes the following issue: - From systemd v249: when enumerating time zones the timedatectl tool will now consult the 'tzdata.zi' file shipped by the IANA time zone database package, in addition to 'zone1970.tab', as before. This makes sure time zone aliases are now correctly supported. This update adds the 'tzdata.zi' file (bsc#1188127). timezone-2021a-3.47.1.src.rpm timezone-2021a-3.47.1.x86_64.rpm timezone-java-2021a-3.47.1.noarch.rpm timezone-java-2021a-3.47.1.src.rpm timezone-2021a-3.47.1.s390x.rpm timezone-2021a-3.47.1.ppc64le.rpm timezone-2021a-3.47.1.aarch64.rpm openSUSE-SLE-15.3-2021-2812 Security update for libvirt moderate SUSE Updates openSUSE-SLE 15.3 This update for libvirt fixes the following issues: Security issues fixed: - CVE-2021-3631: fix SELinux label generation logic (bsc#1187871) - CVE-2021-3667: Unlock object on ACL fail in storagePoolLookupByTargetPath (bsc#1188843) Non-security issues fixed: - virtlockd: Don't report error if lockspace exists (bsc#1184253) - Don't forcibly remove '--listen' arg from /etc/sysconfig/libvirtd. Add '--timeout 120' if '--listen' is not specified. (bsc#1188232) libvirt-7.1.0-6.5.1.src.rpm libvirt-7.1.0-6.5.1.x86_64.rpm libvirt-admin-7.1.0-6.5.1.x86_64.rpm libvirt-bash-completion-7.1.0-6.5.1.noarch.rpm libvirt-client-7.1.0-6.5.1.x86_64.rpm libvirt-daemon-7.1.0-6.5.1.x86_64.rpm libvirt-daemon-config-network-7.1.0-6.5.1.x86_64.rpm libvirt-daemon-config-nwfilter-7.1.0-6.5.1.x86_64.rpm libvirt-daemon-driver-interface-7.1.0-6.5.1.x86_64.rpm libvirt-daemon-driver-libxl-7.1.0-6.5.1.x86_64.rpm libvirt-daemon-driver-lxc-7.1.0-6.5.1.x86_64.rpm libvirt-daemon-driver-network-7.1.0-6.5.1.x86_64.rpm libvirt-daemon-driver-nodedev-7.1.0-6.5.1.x86_64.rpm libvirt-daemon-driver-nwfilter-7.1.0-6.5.1.x86_64.rpm libvirt-daemon-driver-qemu-7.1.0-6.5.1.x86_64.rpm libvirt-daemon-driver-secret-7.1.0-6.5.1.x86_64.rpm libvirt-daemon-driver-storage-7.1.0-6.5.1.x86_64.rpm libvirt-daemon-driver-storage-core-7.1.0-6.5.1.x86_64.rpm libvirt-daemon-driver-storage-disk-7.1.0-6.5.1.x86_64.rpm libvirt-daemon-driver-storage-gluster-7.1.0-6.5.1.x86_64.rpm libvirt-daemon-driver-storage-iscsi-7.1.0-6.5.1.x86_64.rpm libvirt-daemon-driver-storage-iscsi-direct-7.1.0-6.5.1.x86_64.rpm libvirt-daemon-driver-storage-logical-7.1.0-6.5.1.x86_64.rpm libvirt-daemon-driver-storage-mpath-7.1.0-6.5.1.x86_64.rpm libvirt-daemon-driver-storage-rbd-7.1.0-6.5.1.x86_64.rpm libvirt-daemon-driver-storage-scsi-7.1.0-6.5.1.x86_64.rpm libvirt-daemon-hooks-7.1.0-6.5.1.x86_64.rpm libvirt-daemon-lxc-7.1.0-6.5.1.x86_64.rpm libvirt-daemon-qemu-7.1.0-6.5.1.x86_64.rpm libvirt-daemon-xen-7.1.0-6.5.1.x86_64.rpm libvirt-devel-32bit-7.1.0-6.5.1.x86_64.rpm libvirt-devel-7.1.0-6.5.1.x86_64.rpm libvirt-doc-7.1.0-6.5.1.noarch.rpm libvirt-libs-7.1.0-6.5.1.x86_64.rpm libvirt-lock-sanlock-7.1.0-6.5.1.x86_64.rpm libvirt-nss-7.1.0-6.5.1.x86_64.rpm wireshark-plugin-libvirt-7.1.0-6.5.1.x86_64.rpm libvirt-7.1.0-6.5.1.s390x.rpm libvirt-admin-7.1.0-6.5.1.s390x.rpm libvirt-client-7.1.0-6.5.1.s390x.rpm libvirt-daemon-7.1.0-6.5.1.s390x.rpm libvirt-daemon-config-network-7.1.0-6.5.1.s390x.rpm libvirt-daemon-config-nwfilter-7.1.0-6.5.1.s390x.rpm libvirt-daemon-driver-interface-7.1.0-6.5.1.s390x.rpm libvirt-daemon-driver-lxc-7.1.0-6.5.1.s390x.rpm libvirt-daemon-driver-network-7.1.0-6.5.1.s390x.rpm libvirt-daemon-driver-nodedev-7.1.0-6.5.1.s390x.rpm libvirt-daemon-driver-nwfilter-7.1.0-6.5.1.s390x.rpm libvirt-daemon-driver-qemu-7.1.0-6.5.1.s390x.rpm libvirt-daemon-driver-secret-7.1.0-6.5.1.s390x.rpm libvirt-daemon-driver-storage-7.1.0-6.5.1.s390x.rpm libvirt-daemon-driver-storage-core-7.1.0-6.5.1.s390x.rpm libvirt-daemon-driver-storage-disk-7.1.0-6.5.1.s390x.rpm libvirt-daemon-driver-storage-gluster-7.1.0-6.5.1.s390x.rpm libvirt-daemon-driver-storage-iscsi-7.1.0-6.5.1.s390x.rpm libvirt-daemon-driver-storage-iscsi-direct-7.1.0-6.5.1.s390x.rpm libvirt-daemon-driver-storage-logical-7.1.0-6.5.1.s390x.rpm libvirt-daemon-driver-storage-mpath-7.1.0-6.5.1.s390x.rpm libvirt-daemon-driver-storage-scsi-7.1.0-6.5.1.s390x.rpm libvirt-daemon-hooks-7.1.0-6.5.1.s390x.rpm libvirt-daemon-lxc-7.1.0-6.5.1.s390x.rpm libvirt-daemon-qemu-7.1.0-6.5.1.s390x.rpm libvirt-devel-7.1.0-6.5.1.s390x.rpm libvirt-libs-7.1.0-6.5.1.s390x.rpm libvirt-lock-sanlock-7.1.0-6.5.1.s390x.rpm libvirt-nss-7.1.0-6.5.1.s390x.rpm wireshark-plugin-libvirt-7.1.0-6.5.1.s390x.rpm libvirt-7.1.0-6.5.1.ppc64le.rpm libvirt-admin-7.1.0-6.5.1.ppc64le.rpm libvirt-client-7.1.0-6.5.1.ppc64le.rpm libvirt-daemon-7.1.0-6.5.1.ppc64le.rpm libvirt-daemon-config-network-7.1.0-6.5.1.ppc64le.rpm libvirt-daemon-config-nwfilter-7.1.0-6.5.1.ppc64le.rpm libvirt-daemon-driver-interface-7.1.0-6.5.1.ppc64le.rpm libvirt-daemon-driver-lxc-7.1.0-6.5.1.ppc64le.rpm libvirt-daemon-driver-network-7.1.0-6.5.1.ppc64le.rpm libvirt-daemon-driver-nodedev-7.1.0-6.5.1.ppc64le.rpm libvirt-daemon-driver-nwfilter-7.1.0-6.5.1.ppc64le.rpm libvirt-daemon-driver-qemu-7.1.0-6.5.1.ppc64le.rpm libvirt-daemon-driver-secret-7.1.0-6.5.1.ppc64le.rpm libvirt-daemon-driver-storage-7.1.0-6.5.1.ppc64le.rpm libvirt-daemon-driver-storage-core-7.1.0-6.5.1.ppc64le.rpm libvirt-daemon-driver-storage-disk-7.1.0-6.5.1.ppc64le.rpm libvirt-daemon-driver-storage-gluster-7.1.0-6.5.1.ppc64le.rpm libvirt-daemon-driver-storage-iscsi-7.1.0-6.5.1.ppc64le.rpm libvirt-daemon-driver-storage-iscsi-direct-7.1.0-6.5.1.ppc64le.rpm libvirt-daemon-driver-storage-logical-7.1.0-6.5.1.ppc64le.rpm libvirt-daemon-driver-storage-mpath-7.1.0-6.5.1.ppc64le.rpm libvirt-daemon-driver-storage-scsi-7.1.0-6.5.1.ppc64le.rpm libvirt-daemon-hooks-7.1.0-6.5.1.ppc64le.rpm libvirt-daemon-lxc-7.1.0-6.5.1.ppc64le.rpm libvirt-daemon-qemu-7.1.0-6.5.1.ppc64le.rpm libvirt-devel-7.1.0-6.5.1.ppc64le.rpm libvirt-libs-7.1.0-6.5.1.ppc64le.rpm libvirt-lock-sanlock-7.1.0-6.5.1.ppc64le.rpm libvirt-nss-7.1.0-6.5.1.ppc64le.rpm wireshark-plugin-libvirt-7.1.0-6.5.1.ppc64le.rpm libvirt-7.1.0-6.5.1.aarch64.rpm libvirt-admin-7.1.0-6.5.1.aarch64.rpm libvirt-client-7.1.0-6.5.1.aarch64.rpm libvirt-daemon-7.1.0-6.5.1.aarch64.rpm libvirt-daemon-config-network-7.1.0-6.5.1.aarch64.rpm libvirt-daemon-config-nwfilter-7.1.0-6.5.1.aarch64.rpm libvirt-daemon-driver-interface-7.1.0-6.5.1.aarch64.rpm libvirt-daemon-driver-lxc-7.1.0-6.5.1.aarch64.rpm libvirt-daemon-driver-network-7.1.0-6.5.1.aarch64.rpm libvirt-daemon-driver-nodedev-7.1.0-6.5.1.aarch64.rpm libvirt-daemon-driver-nwfilter-7.1.0-6.5.1.aarch64.rpm libvirt-daemon-driver-qemu-7.1.0-6.5.1.aarch64.rpm libvirt-daemon-driver-secret-7.1.0-6.5.1.aarch64.rpm libvirt-daemon-driver-storage-7.1.0-6.5.1.aarch64.rpm libvirt-daemon-driver-storage-core-7.1.0-6.5.1.aarch64.rpm libvirt-daemon-driver-storage-disk-7.1.0-6.5.1.aarch64.rpm libvirt-daemon-driver-storage-gluster-7.1.0-6.5.1.aarch64.rpm libvirt-daemon-driver-storage-iscsi-7.1.0-6.5.1.aarch64.rpm libvirt-daemon-driver-storage-iscsi-direct-7.1.0-6.5.1.aarch64.rpm libvirt-daemon-driver-storage-logical-7.1.0-6.5.1.aarch64.rpm libvirt-daemon-driver-storage-mpath-7.1.0-6.5.1.aarch64.rpm libvirt-daemon-driver-storage-rbd-7.1.0-6.5.1.aarch64.rpm libvirt-daemon-driver-storage-scsi-7.1.0-6.5.1.aarch64.rpm libvirt-daemon-hooks-7.1.0-6.5.1.aarch64.rpm libvirt-daemon-lxc-7.1.0-6.5.1.aarch64.rpm libvirt-daemon-qemu-7.1.0-6.5.1.aarch64.rpm libvirt-devel-7.1.0-6.5.1.aarch64.rpm libvirt-libs-7.1.0-6.5.1.aarch64.rpm libvirt-lock-sanlock-7.1.0-6.5.1.aarch64.rpm libvirt-nss-7.1.0-6.5.1.aarch64.rpm wireshark-plugin-libvirt-7.1.0-6.5.1.aarch64.rpm openSUSE-SLE-15.3-2021-2398 Security update for go1.15 moderate SUSE Updates openSUSE-SLE 15.3 This update for go1.15 fixes the following issues: - go1.15.14 (released 2021-07-12) includes a security fix to the crypto/tls package, as well as bug fixes to the linker, and the net package. CVE-2021-34558 Refs bsc#1175132 go1.15 release tracking * bsc#1188229 go#47143 CVE-2021-34558 * go#47144 security: fix CVE-2021-34558 * go#47012 net: LookupMX behaviour broken * go#46994 net: TestCVE202133195 fails if /etc/resolv.conf specifies ndots larger than 3 * go#46768 syscall: TestGroupCleanupUserNamespace test failure on Fedora * go#46684 x/build/cmd/release: linux-armv6l release tests aren't passing * go#46656 runtime: deeply nested struct initialized with non-zero values - Fix extraneous trailing percent character %endif% in spec file. go1.15-1.15.14-1.36.1.src.rpm go1.15-1.15.14-1.36.1.x86_64.rpm go1.15-doc-1.15.14-1.36.1.x86_64.rpm go1.15-race-1.15.14-1.36.1.x86_64.rpm go1.15-1.15.14-1.36.1.s390x.rpm go1.15-doc-1.15.14-1.36.1.s390x.rpm go1.15-1.15.14-1.36.1.ppc64le.rpm go1.15-doc-1.15.14-1.36.1.ppc64le.rpm go1.15-1.15.14-1.36.1.aarch64.rpm go1.15-doc-1.15.14-1.36.1.aarch64.rpm go1.15-race-1.15.14-1.36.1.aarch64.rpm openSUSE-SLE-15.3-2021-2611 Recommended update for resource-agents moderate SUSE Updates openSUSE-SLE 15.3 This update for resource-agents fixes the following issues: - Adapt the makefile to the new 'GCP Load Balancer Resource Agent'. (bsc#1186652) ldirectord-4.8.0+git30.d0077df0-8.8.1.x86_64.rpm monitoring-plugins-metadata-4.8.0+git30.d0077df0-8.8.1.noarch.rpm resource-agents-4.8.0+git30.d0077df0-8.8.1.src.rpm resource-agents-4.8.0+git30.d0077df0-8.8.1.x86_64.rpm ldirectord-4.8.0+git30.d0077df0-8.8.1.s390x.rpm resource-agents-4.8.0+git30.d0077df0-8.8.1.s390x.rpm ldirectord-4.8.0+git30.d0077df0-8.8.1.ppc64le.rpm resource-agents-4.8.0+git30.d0077df0-8.8.1.ppc64le.rpm ldirectord-4.8.0+git30.d0077df0-8.8.1.aarch64.rpm resource-agents-4.8.0+git30.d0077df0-8.8.1.aarch64.rpm openSUSE-SLE-15.3-2021-2442 Security update for qemu important SUSE Updates openSUSE-SLE 15.3 This update for qemu fixes the following issues: - CVE-2021-3582: Fix possible mremap overflow in the pvrdma (bsc#1187499) - CVE-2021-3607: Ensure correct input on ring init (bsc#1187539) - CVE-2021-3608: Fix the ring init error flow (bsc#1187538) - CVE-2021-3611: Fix intel-hda segmentation fault due to stack overflow (bsc#1187529) qemu-5.2.0-23.1.src.rpm qemu-5.2.0-23.1.x86_64.rpm qemu-arm-5.2.0-23.1.x86_64.rpm qemu-audio-alsa-5.2.0-23.1.x86_64.rpm qemu-audio-pa-5.2.0-23.1.x86_64.rpm qemu-audio-spice-5.2.0-23.1.x86_64.rpm qemu-block-curl-5.2.0-23.1.x86_64.rpm qemu-block-dmg-5.2.0-23.1.x86_64.rpm qemu-block-gluster-5.2.0-23.1.x86_64.rpm qemu-block-iscsi-5.2.0-23.1.x86_64.rpm qemu-block-nfs-5.2.0-23.1.x86_64.rpm qemu-block-rbd-5.2.0-23.1.x86_64.rpm qemu-block-ssh-5.2.0-23.1.x86_64.rpm qemu-chardev-baum-5.2.0-23.1.x86_64.rpm qemu-chardev-spice-5.2.0-23.1.x86_64.rpm qemu-extra-5.2.0-23.1.x86_64.rpm qemu-guest-agent-5.2.0-23.1.x86_64.rpm qemu-hw-display-qxl-5.2.0-23.1.x86_64.rpm qemu-hw-display-virtio-gpu-5.2.0-23.1.x86_64.rpm qemu-hw-display-virtio-gpu-pci-5.2.0-23.1.x86_64.rpm qemu-hw-display-virtio-vga-5.2.0-23.1.x86_64.rpm qemu-hw-s390x-virtio-gpu-ccw-5.2.0-23.1.x86_64.rpm qemu-hw-usb-redirect-5.2.0-23.1.x86_64.rpm qemu-hw-usb-smartcard-5.2.0-23.1.x86_64.rpm qemu-ipxe-1.0.0+-23.1.noarch.rpm qemu-ivshmem-tools-5.2.0-23.1.x86_64.rpm qemu-ksm-5.2.0-23.1.x86_64.rpm qemu-kvm-5.2.0-23.1.x86_64.rpm qemu-lang-5.2.0-23.1.x86_64.rpm qemu-microvm-5.2.0-23.1.noarch.rpm qemu-ppc-5.2.0-23.1.x86_64.rpm qemu-s390x-5.2.0-23.1.x86_64.rpm qemu-seabios-1.14.0_0_g155821a-23.1.noarch.rpm qemu-sgabios-8-23.1.noarch.rpm qemu-skiboot-5.2.0-23.1.noarch.rpm qemu-tools-5.2.0-23.1.x86_64.rpm qemu-ui-curses-5.2.0-23.1.x86_64.rpm qemu-ui-gtk-5.2.0-23.1.x86_64.rpm qemu-ui-opengl-5.2.0-23.1.x86_64.rpm qemu-ui-spice-app-5.2.0-23.1.x86_64.rpm qemu-ui-spice-core-5.2.0-23.1.x86_64.rpm qemu-vgabios-1.14.0_0_g155821a-23.1.noarch.rpm qemu-vhost-user-gpu-5.2.0-23.1.x86_64.rpm qemu-x86-5.2.0-23.1.x86_64.rpm qemu-5.2.0-23.1.s390x.rpm qemu-arm-5.2.0-23.1.s390x.rpm qemu-audio-alsa-5.2.0-23.1.s390x.rpm qemu-audio-pa-5.2.0-23.1.s390x.rpm qemu-audio-spice-5.2.0-23.1.s390x.rpm qemu-block-curl-5.2.0-23.1.s390x.rpm qemu-block-dmg-5.2.0-23.1.s390x.rpm qemu-block-gluster-5.2.0-23.1.s390x.rpm qemu-block-iscsi-5.2.0-23.1.s390x.rpm qemu-block-nfs-5.2.0-23.1.s390x.rpm qemu-block-rbd-5.2.0-23.1.s390x.rpm qemu-block-ssh-5.2.0-23.1.s390x.rpm qemu-chardev-baum-5.2.0-23.1.s390x.rpm qemu-chardev-spice-5.2.0-23.1.s390x.rpm qemu-extra-5.2.0-23.1.s390x.rpm qemu-guest-agent-5.2.0-23.1.s390x.rpm qemu-hw-display-qxl-5.2.0-23.1.s390x.rpm qemu-hw-display-virtio-gpu-5.2.0-23.1.s390x.rpm qemu-hw-display-virtio-gpu-pci-5.2.0-23.1.s390x.rpm qemu-hw-display-virtio-vga-5.2.0-23.1.s390x.rpm qemu-hw-s390x-virtio-gpu-ccw-5.2.0-23.1.s390x.rpm qemu-hw-usb-redirect-5.2.0-23.1.s390x.rpm qemu-hw-usb-smartcard-5.2.0-23.1.s390x.rpm qemu-ivshmem-tools-5.2.0-23.1.s390x.rpm qemu-ksm-5.2.0-23.1.s390x.rpm qemu-kvm-5.2.0-23.1.s390x.rpm qemu-lang-5.2.0-23.1.s390x.rpm qemu-ppc-5.2.0-23.1.s390x.rpm qemu-s390x-5.2.0-23.1.s390x.rpm qemu-tools-5.2.0-23.1.s390x.rpm qemu-ui-curses-5.2.0-23.1.s390x.rpm qemu-ui-gtk-5.2.0-23.1.s390x.rpm qemu-ui-opengl-5.2.0-23.1.s390x.rpm qemu-ui-spice-app-5.2.0-23.1.s390x.rpm qemu-ui-spice-core-5.2.0-23.1.s390x.rpm qemu-vhost-user-gpu-5.2.0-23.1.s390x.rpm qemu-x86-5.2.0-23.1.s390x.rpm qemu-5.2.0-23.1.ppc64le.rpm qemu-arm-5.2.0-23.1.ppc64le.rpm qemu-audio-alsa-5.2.0-23.1.ppc64le.rpm qemu-audio-pa-5.2.0-23.1.ppc64le.rpm qemu-audio-spice-5.2.0-23.1.ppc64le.rpm qemu-block-curl-5.2.0-23.1.ppc64le.rpm qemu-block-dmg-5.2.0-23.1.ppc64le.rpm qemu-block-gluster-5.2.0-23.1.ppc64le.rpm qemu-block-iscsi-5.2.0-23.1.ppc64le.rpm qemu-block-nfs-5.2.0-23.1.ppc64le.rpm qemu-block-rbd-5.2.0-23.1.ppc64le.rpm qemu-block-ssh-5.2.0-23.1.ppc64le.rpm qemu-chardev-baum-5.2.0-23.1.ppc64le.rpm qemu-chardev-spice-5.2.0-23.1.ppc64le.rpm qemu-extra-5.2.0-23.1.ppc64le.rpm qemu-guest-agent-5.2.0-23.1.ppc64le.rpm qemu-hw-display-qxl-5.2.0-23.1.ppc64le.rpm qemu-hw-display-virtio-gpu-5.2.0-23.1.ppc64le.rpm qemu-hw-display-virtio-gpu-pci-5.2.0-23.1.ppc64le.rpm qemu-hw-display-virtio-vga-5.2.0-23.1.ppc64le.rpm qemu-hw-s390x-virtio-gpu-ccw-5.2.0-23.1.ppc64le.rpm qemu-hw-usb-redirect-5.2.0-23.1.ppc64le.rpm qemu-hw-usb-smartcard-5.2.0-23.1.ppc64le.rpm qemu-ivshmem-tools-5.2.0-23.1.ppc64le.rpm qemu-ksm-5.2.0-23.1.ppc64le.rpm qemu-lang-5.2.0-23.1.ppc64le.rpm qemu-ppc-5.2.0-23.1.ppc64le.rpm qemu-s390x-5.2.0-23.1.ppc64le.rpm qemu-tools-5.2.0-23.1.ppc64le.rpm qemu-ui-curses-5.2.0-23.1.ppc64le.rpm qemu-ui-gtk-5.2.0-23.1.ppc64le.rpm qemu-ui-opengl-5.2.0-23.1.ppc64le.rpm qemu-ui-spice-app-5.2.0-23.1.ppc64le.rpm qemu-ui-spice-core-5.2.0-23.1.ppc64le.rpm qemu-vhost-user-gpu-5.2.0-23.1.ppc64le.rpm qemu-x86-5.2.0-23.1.ppc64le.rpm qemu-5.2.0-23.1.aarch64.rpm qemu-arm-5.2.0-23.1.aarch64.rpm qemu-audio-alsa-5.2.0-23.1.aarch64.rpm qemu-audio-pa-5.2.0-23.1.aarch64.rpm qemu-audio-spice-5.2.0-23.1.aarch64.rpm qemu-block-curl-5.2.0-23.1.aarch64.rpm qemu-block-dmg-5.2.0-23.1.aarch64.rpm qemu-block-gluster-5.2.0-23.1.aarch64.rpm qemu-block-iscsi-5.2.0-23.1.aarch64.rpm qemu-block-nfs-5.2.0-23.1.aarch64.rpm qemu-block-rbd-5.2.0-23.1.aarch64.rpm qemu-block-ssh-5.2.0-23.1.aarch64.rpm qemu-chardev-baum-5.2.0-23.1.aarch64.rpm qemu-chardev-spice-5.2.0-23.1.aarch64.rpm qemu-extra-5.2.0-23.1.aarch64.rpm qemu-guest-agent-5.2.0-23.1.aarch64.rpm qemu-hw-display-qxl-5.2.0-23.1.aarch64.rpm qemu-hw-display-virtio-gpu-5.2.0-23.1.aarch64.rpm qemu-hw-display-virtio-gpu-pci-5.2.0-23.1.aarch64.rpm qemu-hw-display-virtio-vga-5.2.0-23.1.aarch64.rpm qemu-hw-s390x-virtio-gpu-ccw-5.2.0-23.1.aarch64.rpm qemu-hw-usb-redirect-5.2.0-23.1.aarch64.rpm qemu-hw-usb-smartcard-5.2.0-23.1.aarch64.rpm qemu-ivshmem-tools-5.2.0-23.1.aarch64.rpm qemu-ksm-5.2.0-23.1.aarch64.rpm qemu-lang-5.2.0-23.1.aarch64.rpm qemu-ppc-5.2.0-23.1.aarch64.rpm qemu-s390x-5.2.0-23.1.aarch64.rpm qemu-tools-5.2.0-23.1.aarch64.rpm qemu-ui-curses-5.2.0-23.1.aarch64.rpm qemu-ui-gtk-5.2.0-23.1.aarch64.rpm qemu-ui-opengl-5.2.0-23.1.aarch64.rpm qemu-ui-spice-app-5.2.0-23.1.aarch64.rpm qemu-ui-spice-core-5.2.0-23.1.aarch64.rpm qemu-vhost-user-gpu-5.2.0-23.1.aarch64.rpm qemu-x86-5.2.0-23.1.aarch64.rpm openSUSE-SLE-15.3-2021-2474 Security update for qemu important SUSE Updates openSUSE-SLE 15.3 This update for qemu fixes the following issues: Security issues fixed: - CVE-2021-3595: Fixed slirp: invalid pointer initialization may lead to information disclosure (tftp) (bsc#1187366) - CVE-2021-3592: Fix for slirp: invalid pointer initialization may lead to information disclosure (bootp) (bsc#1187364) - CVE-2021-3594: Fix for slirp: invalid pointer initialization may lead to information disclosure (udp) (bsc#1187367) - CVE-2021-3593: Fix for slirp: invalid pointer initialization may lead to information disclosure (udp6) (bsc#1187365) - CVE-2021-3582: Fix possible mremap overflow in the pvrdma (bsc#1187499) - CVE-2021-3607: Ensure correct input on ring init (bsc#1187539) - CVE-2021-3608: Fix the ring init error flow (bsc#1187538) - CVE-2021-3611: Fix intel-hda segmentation fault due to stack overflow (bsc#1187529) qemu-4.2.1-11.25.2.src.rpm qemu-s390-4.2.1-11.25.2.x86_64.rpm qemu-s390-4.2.1-11.25.2.s390x.rpm qemu-s390-4.2.1-11.25.2.ppc64le.rpm qemu-s390-4.2.1-11.25.2.aarch64.rpm openSUSE-SLE-15.3-2021-2591 Security update for qemu important SUSE Updates openSUSE-SLE 15.3 This update for qemu fixes the following issues: Security issues fixed: - CVE-2021-3595: Fixed slirp: invalid pointer initialization may lead to information disclosure (tftp) (bsc#1187366) - CVE-2021-3592: Fix for slirp: invalid pointer initialization may lead to information disclosure (bootp) (bsc#1187364) - CVE-2021-3594: Fix for slirp: invalid pointer initialization may lead to information disclosure (udp) (bsc#1187367) - CVE-2021-3593: Fix for slirp: invalid pointer initialization may lead to information disclosure (udp6) (bsc#1187365) - CVE-2021-3582: Fix possible mremap overflow in the pvrdma (bsc#1187499) - CVE-2021-3607: Ensure correct input on ring init (bsc#1187539) - CVE-2021-3608: Fix the ring init error flow (bsc#1187538) - CVE-2021-3611: Fix intel-hda segmentation fault due to stack overflow (bsc#1187529) - CVE-2020-25085: Fix out-of-bounds access issue while doing multi block SDMA (bsc#1176681) Other issues fixed: - QEMU BIOS fails to read stage2 loader (on s390x)(bsc#1186290) - Fix qemu hang while cancelling migrating hugepage vm (bsc#1185591) qemu-3.1.1.1-9.30.2.src.rpm qemu-audio-oss-3.1.1.1-9.30.2.x86_64.rpm openSUSE-SLE-15.3-2021-2439 Security update for curl moderate SUSE Updates openSUSE-SLE 15.3 This update for curl fixes the following issues: - CVE-2021-22925: TELNET stack contents disclosure again. (bsc#1188220) - CVE-2021-22924: Bad connection reuse due to flawed path name checks. (bsc#1188219) - CVE-2021-22923: Insufficiently Protected Credentials. (bsc#1188218) - CVE-2021-22922: Wrong content via metalink not discarded. (bsc#1188217) curl-7.66.0-4.22.1.src.rpm curl-7.66.0-4.22.1.x86_64.rpm libcurl-devel-32bit-7.66.0-4.22.1.x86_64.rpm libcurl-devel-7.66.0-4.22.1.x86_64.rpm libcurl4-32bit-7.66.0-4.22.1.x86_64.rpm libcurl4-7.66.0-4.22.1.x86_64.rpm curl-7.66.0-4.22.1.s390x.rpm libcurl-devel-7.66.0-4.22.1.s390x.rpm libcurl4-7.66.0-4.22.1.s390x.rpm curl-7.66.0-4.22.1.ppc64le.rpm libcurl-devel-7.66.0-4.22.1.ppc64le.rpm libcurl4-7.66.0-4.22.1.ppc64le.rpm curl-7.66.0-4.22.1.aarch64.rpm libcurl-devel-7.66.0-4.22.1.aarch64.rpm libcurl4-7.66.0-4.22.1.aarch64.rpm openSUSE-SLE-15.3-2021-2810 Security update for dbus-1 moderate SUSE Updates openSUSE-SLE 15.3 This update for dbus-1 fixes the following issues: - CVE-2020-12049: truncated messages lead to resource exhaustion. (bsc#1172505) dbus-1-1.12.2-8.11.2.src.rpm True dbus-1-1.12.2-8.11.2.x86_64.rpm True dbus-1-devel-1.12.2-8.11.2.x86_64.rpm True dbus-1-devel-32bit-1.12.2-8.11.2.x86_64.rpm True dbus-1-devel-doc-1.12.2-8.11.2.noarch.rpm True dbus-1-x11-1.12.2-8.11.1.src.rpm True dbus-1-x11-1.12.2-8.11.1.x86_64.rpm True libdbus-1-3-1.12.2-8.11.2.x86_64.rpm True libdbus-1-3-32bit-1.12.2-8.11.2.x86_64.rpm True dbus-1-1.12.2-8.11.2.s390x.rpm True dbus-1-devel-1.12.2-8.11.2.s390x.rpm True dbus-1-x11-1.12.2-8.11.1.s390x.rpm True libdbus-1-3-1.12.2-8.11.2.s390x.rpm True dbus-1-1.12.2-8.11.2.ppc64le.rpm True dbus-1-devel-1.12.2-8.11.2.ppc64le.rpm True dbus-1-x11-1.12.2-8.11.1.ppc64le.rpm True libdbus-1-3-1.12.2-8.11.2.ppc64le.rpm True dbus-1-1.12.2-8.11.2.aarch64.rpm True dbus-1-devel-1.12.2-8.11.2.aarch64.rpm True dbus-1-x11-1.12.2-8.11.1.aarch64.rpm True libdbus-1-3-1.12.2-8.11.2.aarch64.rpm True openSUSE-SLE-15.3-2021-2393 Security update for MozillaFirefox important SUSE Updates openSUSE-SLE 15.3 This update for MozillaFirefox fixes the following issues: Firefox Extended Support Release 78.12.0 ESR * Fixed: Various stability, functionality, and security fixes MFSA 2021-29 (bsc#1188275) * CVE-2021-29970 (bmo#1709976): Use-after-free in accessibility features of a document * CVE-2021-30547 (bmo#1715766): Out of bounds write in ANGLE * CVE-2021-29976 (bmo#1700895, bmo#1703334, bmo#1706910, bmo#1711576, bmo#1714391): Memory safety bugs fixed in Firefox 90 and Firefox ESR 78.12 MozillaFirefox-78.12.0-8.46.1.src.rpm MozillaFirefox-78.12.0-8.46.1.x86_64.rpm MozillaFirefox-branding-upstream-78.12.0-8.46.1.x86_64.rpm MozillaFirefox-buildsymbols-78.12.0-8.46.1.x86_64.rpm MozillaFirefox-devel-78.12.0-8.46.1.x86_64.rpm MozillaFirefox-translations-common-78.12.0-8.46.1.x86_64.rpm MozillaFirefox-translations-other-78.12.0-8.46.1.x86_64.rpm MozillaFirefox-78.12.0-8.46.1.s390x.rpm MozillaFirefox-branding-upstream-78.12.0-8.46.1.s390x.rpm MozillaFirefox-devel-78.12.0-8.46.1.s390x.rpm MozillaFirefox-translations-common-78.12.0-8.46.1.s390x.rpm MozillaFirefox-translations-other-78.12.0-8.46.1.s390x.rpm MozillaFirefox-78.12.0-8.46.1.ppc64le.rpm MozillaFirefox-branding-upstream-78.12.0-8.46.1.ppc64le.rpm MozillaFirefox-devel-78.12.0-8.46.1.ppc64le.rpm MozillaFirefox-translations-common-78.12.0-8.46.1.ppc64le.rpm MozillaFirefox-translations-other-78.12.0-8.46.1.ppc64le.rpm MozillaFirefox-78.12.0-8.46.1.aarch64.rpm MozillaFirefox-branding-upstream-78.12.0-8.46.1.aarch64.rpm MozillaFirefox-devel-78.12.0-8.46.1.aarch64.rpm MozillaFirefox-translations-common-78.12.0-8.46.1.aarch64.rpm MozillaFirefox-translations-other-78.12.0-8.46.1.aarch64.rpm openSUSE-SLE-15.3-2021-2412 Security update for containerd moderate SUSE Updates openSUSE-SLE 15.3 This update for containerd fixes the following issues: - CVE-2021-32760: Fixed a bug which allows untrusted container images to change permissions in the host's filesystem. (bsc#1188282) containerd-1.4.4-5.36.1.src.rpm containerd-1.4.4-5.36.1.x86_64.rpm containerd-ctr-1.4.4-5.36.1.x86_64.rpm containerd-1.4.4-5.36.1.s390x.rpm containerd-ctr-1.4.4-5.36.1.s390x.rpm containerd-1.4.4-5.36.1.ppc64le.rpm containerd-ctr-1.4.4-5.36.1.ppc64le.rpm containerd-1.4.4-5.36.1.aarch64.rpm containerd-ctr-1.4.4-5.36.1.aarch64.rpm openSUSE-SLE-15.3-2021-2477 Recommended update for growpart-rootgrow important SUSE Updates openSUSE-SLE 15.3 This update for growpart-rootgrow fixes the following issues: - Change the logic to determine the partition ID of the root filesystem (bsc#1188179) + Previously the algorithm depended on the order of the output from lsblk using an index to keep track of the known partitions. The new implementation is order independent, it depends on the partition ID being numerical in nature and at the end of the device string. - Add coverage config. Omit version module from coverage check. - Fix string formatting for flake8 formatting. - Replace travis testing with GitHub actions. Add ci testing workflow action. - Switch implementation to use Popen for Python 3.4 compatibility (bsc#1165198) - Bump version: 1.0.2 → 1.0.3 - Fixed unit tests and style This clobbers several fixes into one. Sorry about it but I started on already made changes done by other people. This commit includes several pep8 style fixes mostly on the indentation level. In addition it fixes the unit tests to really cover all code and to make the exception tests really effective. - Switch to use Popen instead of run The run() fuction in the subprocess module was implemented after Python 3.4. However, we need to support Python 3.4 for SLES 12 - Bump version: 1.0.1 → 1.0.2 - Package LICENSE file The LICENSE file is part of the source repo but was not packaged with the rpm package growpart-rootgrow-1.0.4-1.6.1.noarch.rpm growpart-rootgrow-1.0.4-1.6.1.src.rpm openSUSE-SLE-15.3-2021-2654 Recommended update for system-config-printer moderate SUSE Updates openSUSE-SLE 15.3 This update for system-config-printer fixes the following issues: - Require python3-requests to avoid printer installation failure due to missing python module. (bsc#1116867) python3-cupshelpers-1.5.7-8.3.1.noarch.rpm system-config-printer-1.5.7-8.3.1.src.rpm system-config-printer-1.5.7-8.3.1.x86_64.rpm system-config-printer-applet-1.5.7-8.3.1.noarch.rpm system-config-printer-common-1.5.7-8.3.1.noarch.rpm system-config-printer-common-lang-1.5.7-8.3.1.noarch.rpm system-config-printer-dbus-service-1.5.7-8.3.1.noarch.rpm udev-configure-printer-1.5.7-8.3.1.x86_64.rpm system-config-printer-1.5.7-8.3.1.s390x.rpm udev-configure-printer-1.5.7-8.3.1.s390x.rpm system-config-printer-1.5.7-8.3.1.ppc64le.rpm udev-configure-printer-1.5.7-8.3.1.ppc64le.rpm system-config-printer-1.5.7-8.3.1.aarch64.rpm udev-configure-printer-1.5.7-8.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-2458 Security update for MozillaThunderbird important SUSE Updates openSUSE-SLE 15.3 This update for MozillaThunderbird fixes the following issues: Mozilla Thunderbird 78.12 * fixed: Sending an email containing HTML links with spaces in the URL sometimes resulted in broken links * fixed: Folder Pane display theme fixes for macOS * fixed: Chat account settings did not always save as expected * fixed: RSS feed subscriptions sometimes lost * fixed: Calendar: A parsing error for alarm triggers of type "DURATION" caused sync problems for some users * fixed: Various security fixes MFSA 2021-30 (bsc#1188275) * CVE-2021-29969: IMAP server responses sent by a MITM prior to STARTTLS could be processed * CVE-2021-29970: Use-after-free in accessibility features of a document * CVE-2021-30547: Out of bounds write in ANGLE * CVE-2021-29976: Memory safety bugs fixed in Thunderbird 78.12 MozillaThunderbird-78.12.0-8.33.1.src.rpm MozillaThunderbird-78.12.0-8.33.1.x86_64.rpm MozillaThunderbird-translations-common-78.12.0-8.33.1.x86_64.rpm MozillaThunderbird-translations-other-78.12.0-8.33.1.x86_64.rpm MozillaThunderbird-78.12.0-8.33.1.s390x.rpm MozillaThunderbird-translations-common-78.12.0-8.33.1.s390x.rpm MozillaThunderbird-translations-other-78.12.0-8.33.1.s390x.rpm MozillaThunderbird-78.12.0-8.33.1.ppc64le.rpm MozillaThunderbird-translations-common-78.12.0-8.33.1.ppc64le.rpm MozillaThunderbird-translations-other-78.12.0-8.33.1.ppc64le.rpm MozillaThunderbird-78.12.0-8.33.1.aarch64.rpm MozillaThunderbird-translations-common-78.12.0-8.33.1.aarch64.rpm MozillaThunderbird-translations-other-78.12.0-8.33.1.aarch64.rpm openSUSE-SLE-15.3-2021-2618 Security update for nodejs8 important SUSE Updates openSUSE-SLE 15.3 This update for nodejs8 fixes the following issues: - update to npm 6.14.13 - CVE-2021-27290: Fixed ssri Regular Expression Denial of Service. (bsc#1187976) - CVE-2021-23362: Fixed hosted-git-info Regular Expression Denial of Service. (bsc#1187977) - CVE-2020-7774: fixes y18n Prototype Pollution. (bsc#1184450) nodejs8-8.17.0-10.12.2.src.rpm nodejs8-8.17.0-10.12.2.x86_64.rpm nodejs8-devel-8.17.0-10.12.2.x86_64.rpm nodejs8-docs-8.17.0-10.12.2.noarch.rpm npm8-8.17.0-10.12.2.x86_64.rpm nodejs8-8.17.0-10.12.2.s390x.rpm nodejs8-devel-8.17.0-10.12.2.s390x.rpm npm8-8.17.0-10.12.2.s390x.rpm nodejs8-8.17.0-10.12.2.ppc64le.rpm nodejs8-devel-8.17.0-10.12.2.ppc64le.rpm npm8-8.17.0-10.12.2.ppc64le.rpm nodejs8-8.17.0-10.12.2.aarch64.rpm nodejs8-devel-8.17.0-10.12.2.aarch64.rpm npm8-8.17.0-10.12.2.aarch64.rpm openSUSE-SLE-15.3-2021-2410 Security update for systemd important SUSE Updates openSUSE-SLE 15.3 This update for systemd fixes the following issues: - CVE-2021-33910: Fixed a denial of service (stack exhaustion) in systemd (PID 1) (bsc#1188063) libsystemd0-246.13-7.8.1.x86_64.rpm libsystemd0-32bit-246.13-7.8.1.x86_64.rpm libudev-devel-246.13-7.8.1.x86_64.rpm libudev-devel-32bit-246.13-7.8.1.x86_64.rpm libudev1-246.13-7.8.1.x86_64.rpm libudev1-32bit-246.13-7.8.1.x86_64.rpm nss-myhostname-246.13-7.8.1.x86_64.rpm nss-myhostname-32bit-246.13-7.8.1.x86_64.rpm nss-mymachines-246.13-7.8.1.x86_64.rpm nss-mymachines-32bit-246.13-7.8.1.x86_64.rpm nss-resolve-246.13-7.8.1.x86_64.rpm nss-systemd-246.13-7.8.1.x86_64.rpm systemd-246.13-7.8.1.src.rpm systemd-246.13-7.8.1.x86_64.rpm systemd-32bit-246.13-7.8.1.x86_64.rpm systemd-container-246.13-7.8.1.x86_64.rpm systemd-coredump-246.13-7.8.1.x86_64.rpm systemd-devel-246.13-7.8.1.x86_64.rpm systemd-doc-246.13-7.8.1.x86_64.rpm systemd-journal-remote-246.13-7.8.1.x86_64.rpm systemd-lang-246.13-7.8.1.noarch.rpm systemd-logger-246.13-7.8.1.x86_64.rpm systemd-network-246.13-7.8.1.x86_64.rpm systemd-sysvinit-246.13-7.8.1.x86_64.rpm udev-246.13-7.8.1.x86_64.rpm libsystemd0-246.13-7.8.1.s390x.rpm libudev-devel-246.13-7.8.1.s390x.rpm libudev1-246.13-7.8.1.s390x.rpm nss-myhostname-246.13-7.8.1.s390x.rpm nss-mymachines-246.13-7.8.1.s390x.rpm nss-resolve-246.13-7.8.1.s390x.rpm nss-systemd-246.13-7.8.1.s390x.rpm systemd-246.13-7.8.1.s390x.rpm systemd-container-246.13-7.8.1.s390x.rpm systemd-coredump-246.13-7.8.1.s390x.rpm systemd-devel-246.13-7.8.1.s390x.rpm systemd-doc-246.13-7.8.1.s390x.rpm systemd-journal-remote-246.13-7.8.1.s390x.rpm systemd-logger-246.13-7.8.1.s390x.rpm systemd-network-246.13-7.8.1.s390x.rpm systemd-sysvinit-246.13-7.8.1.s390x.rpm udev-246.13-7.8.1.s390x.rpm libsystemd0-246.13-7.8.1.ppc64le.rpm libudev-devel-246.13-7.8.1.ppc64le.rpm libudev1-246.13-7.8.1.ppc64le.rpm nss-myhostname-246.13-7.8.1.ppc64le.rpm nss-mymachines-246.13-7.8.1.ppc64le.rpm nss-resolve-246.13-7.8.1.ppc64le.rpm nss-systemd-246.13-7.8.1.ppc64le.rpm systemd-246.13-7.8.1.ppc64le.rpm systemd-container-246.13-7.8.1.ppc64le.rpm systemd-coredump-246.13-7.8.1.ppc64le.rpm systemd-devel-246.13-7.8.1.ppc64le.rpm systemd-doc-246.13-7.8.1.ppc64le.rpm systemd-journal-remote-246.13-7.8.1.ppc64le.rpm systemd-logger-246.13-7.8.1.ppc64le.rpm systemd-network-246.13-7.8.1.ppc64le.rpm systemd-sysvinit-246.13-7.8.1.ppc64le.rpm udev-246.13-7.8.1.ppc64le.rpm libsystemd0-246.13-7.8.1.aarch64.rpm libudev-devel-246.13-7.8.1.aarch64.rpm libudev1-246.13-7.8.1.aarch64.rpm nss-myhostname-246.13-7.8.1.aarch64.rpm nss-mymachines-246.13-7.8.1.aarch64.rpm nss-resolve-246.13-7.8.1.aarch64.rpm nss-systemd-246.13-7.8.1.aarch64.rpm systemd-246.13-7.8.1.aarch64.rpm systemd-container-246.13-7.8.1.aarch64.rpm systemd-coredump-246.13-7.8.1.aarch64.rpm systemd-devel-246.13-7.8.1.aarch64.rpm systemd-doc-246.13-7.8.1.aarch64.rpm systemd-journal-remote-246.13-7.8.1.aarch64.rpm systemd-logger-246.13-7.8.1.aarch64.rpm systemd-network-246.13-7.8.1.aarch64.rpm systemd-sysvinit-246.13-7.8.1.aarch64.rpm udev-246.13-7.8.1.aarch64.rpm openSUSE-SLE-15.3-2021-2758 Recommended update for jeos-firstboot moderate SUSE Updates openSUSE-SLE 15.3 This update for jeos-firstboot fixes the following issues: - Update to version 1.0.1: * Always show manual SSID option * Call dialog with --backtitle everywhere * Calculate the height of menus dynamically (bsc#1177188) jeos-firstboot-1.0.1-3.3.1.noarch.rpm jeos-firstboot-1.0.1-3.3.1.src.rpm jeos-firstboot-rpiwifi-1.0.1-3.3.1.noarch.rpm openSUSE-SLE-15.3-2021-2415 Security update for the Linux Kernel important SUSE Updates openSUSE-SLE 15.3 The SUSE Linux Enterprise 15 SP3 kernel was updated to receive various security and bugfixes. Security issues fixed: - CVE-2021-22555: A heap out-of-bounds write was discovered in net/netfilter/x_tables.c (bnc#1188116). - CVE-2021-33909: Extremely large seq buffer allocations in seq_file could lead to buffer underruns and code execution (bsc#1188062). The following non-security bugs were fixed: - usb: dwc3: Fix debugfs creation flow (git-fixes). cluster-md-kmp-default-5.3.18-59.16.1.x86_64.rpm True cluster-md-kmp-preempt-5.3.18-59.16.1.x86_64.rpm True dlm-kmp-default-5.3.18-59.16.1.x86_64.rpm True dlm-kmp-preempt-5.3.18-59.16.1.x86_64.rpm True gfs2-kmp-default-5.3.18-59.16.1.x86_64.rpm True gfs2-kmp-preempt-5.3.18-59.16.1.x86_64.rpm True kernel-debug-5.3.18-59.16.1.nosrc.rpm True kernel-debug-5.3.18-59.16.1.x86_64.rpm True kernel-debug-devel-5.3.18-59.16.1.x86_64.rpm True kernel-debug-livepatch-devel-5.3.18-59.16.1.x86_64.rpm True kernel-default-5.3.18-59.16.1.nosrc.rpm True kernel-default-5.3.18-59.16.1.x86_64.rpm True kernel-default-base-5.3.18-59.16.1.18.8.1.src.rpm True kernel-default-base-5.3.18-59.16.1.18.8.1.x86_64.rpm True kernel-default-base-rebuild-5.3.18-59.16.1.18.8.1.x86_64.rpm True kernel-default-devel-5.3.18-59.16.1.x86_64.rpm True kernel-default-extra-5.3.18-59.16.1.x86_64.rpm True kernel-default-livepatch-5.3.18-59.16.1.x86_64.rpm True kernel-default-livepatch-devel-5.3.18-59.16.1.x86_64.rpm True kernel-default-optional-5.3.18-59.16.1.x86_64.rpm True kernel-devel-5.3.18-59.16.1.noarch.rpm True kernel-docs-5.3.18-59.16.1.noarch.rpm True kernel-docs-5.3.18-59.16.1.nosrc.rpm True kernel-docs-html-5.3.18-59.16.1.noarch.rpm True kernel-kvmsmall-5.3.18-59.16.1.nosrc.rpm True kernel-kvmsmall-5.3.18-59.16.1.x86_64.rpm True kernel-kvmsmall-devel-5.3.18-59.16.1.x86_64.rpm True kernel-kvmsmall-livepatch-devel-5.3.18-59.16.1.x86_64.rpm True kernel-macros-5.3.18-59.16.1.noarch.rpm True kernel-obs-build-5.3.18-59.16.1.src.rpm True kernel-obs-build-5.3.18-59.16.1.x86_64.rpm True kernel-obs-qa-5.3.18-59.16.1.src.rpm True kernel-obs-qa-5.3.18-59.16.1.x86_64.rpm True kernel-preempt-5.3.18-59.16.1.nosrc.rpm True kernel-preempt-5.3.18-59.16.1.x86_64.rpm True kernel-preempt-devel-5.3.18-59.16.1.x86_64.rpm True kernel-preempt-extra-5.3.18-59.16.1.x86_64.rpm True kernel-preempt-livepatch-devel-5.3.18-59.16.1.x86_64.rpm True kernel-preempt-optional-5.3.18-59.16.1.x86_64.rpm True kernel-source-5.3.18-59.16.1.noarch.rpm True kernel-source-5.3.18-59.16.1.src.rpm True kernel-source-vanilla-5.3.18-59.16.1.noarch.rpm True kernel-syms-5.3.18-59.16.1.src.rpm True kernel-syms-5.3.18-59.16.1.x86_64.rpm True kselftests-kmp-default-5.3.18-59.16.1.x86_64.rpm True kselftests-kmp-preempt-5.3.18-59.16.1.x86_64.rpm True ocfs2-kmp-default-5.3.18-59.16.1.x86_64.rpm True ocfs2-kmp-preempt-5.3.18-59.16.1.x86_64.rpm True reiserfs-kmp-default-5.3.18-59.16.1.x86_64.rpm True reiserfs-kmp-preempt-5.3.18-59.16.1.x86_64.rpm True cluster-md-kmp-default-5.3.18-59.16.1.s390x.rpm True dlm-kmp-default-5.3.18-59.16.1.s390x.rpm True gfs2-kmp-default-5.3.18-59.16.1.s390x.rpm True kernel-default-5.3.18-59.16.1.s390x.rpm True kernel-default-base-5.3.18-59.16.1.18.8.1.s390x.rpm True kernel-default-base-rebuild-5.3.18-59.16.1.18.8.1.s390x.rpm True kernel-default-devel-5.3.18-59.16.1.s390x.rpm True kernel-default-extra-5.3.18-59.16.1.s390x.rpm True kernel-default-livepatch-5.3.18-59.16.1.s390x.rpm True kernel-default-livepatch-devel-5.3.18-59.16.1.s390x.rpm True kernel-default-optional-5.3.18-59.16.1.s390x.rpm True kernel-obs-build-5.3.18-59.16.1.s390x.rpm True kernel-obs-qa-5.3.18-59.16.1.s390x.rpm True kernel-syms-5.3.18-59.16.1.s390x.rpm True kernel-zfcpdump-5.3.18-59.16.1.nosrc.rpm True kernel-zfcpdump-5.3.18-59.16.1.s390x.rpm True kselftests-kmp-default-5.3.18-59.16.1.s390x.rpm True ocfs2-kmp-default-5.3.18-59.16.1.s390x.rpm True reiserfs-kmp-default-5.3.18-59.16.1.s390x.rpm True cluster-md-kmp-default-5.3.18-59.16.1.ppc64le.rpm True dlm-kmp-default-5.3.18-59.16.1.ppc64le.rpm True gfs2-kmp-default-5.3.18-59.16.1.ppc64le.rpm True kernel-debug-5.3.18-59.16.1.ppc64le.rpm True kernel-debug-devel-5.3.18-59.16.1.ppc64le.rpm True kernel-debug-livepatch-devel-5.3.18-59.16.1.ppc64le.rpm True kernel-default-5.3.18-59.16.1.ppc64le.rpm True kernel-default-base-5.3.18-59.16.1.18.8.1.ppc64le.rpm True kernel-default-base-rebuild-5.3.18-59.16.1.18.8.1.ppc64le.rpm True kernel-default-devel-5.3.18-59.16.1.ppc64le.rpm True kernel-default-extra-5.3.18-59.16.1.ppc64le.rpm True kernel-default-livepatch-5.3.18-59.16.1.ppc64le.rpm True kernel-default-livepatch-devel-5.3.18-59.16.1.ppc64le.rpm True kernel-default-optional-5.3.18-59.16.1.ppc64le.rpm True kernel-kvmsmall-5.3.18-59.16.1.ppc64le.rpm True kernel-kvmsmall-devel-5.3.18-59.16.1.ppc64le.rpm True kernel-kvmsmall-livepatch-devel-5.3.18-59.16.1.ppc64le.rpm True kernel-obs-build-5.3.18-59.16.1.ppc64le.rpm True kernel-obs-qa-5.3.18-59.16.1.ppc64le.rpm True kernel-syms-5.3.18-59.16.1.ppc64le.rpm True kselftests-kmp-default-5.3.18-59.16.1.ppc64le.rpm True ocfs2-kmp-default-5.3.18-59.16.1.ppc64le.rpm True reiserfs-kmp-default-5.3.18-59.16.1.ppc64le.rpm True cluster-md-kmp-64kb-5.3.18-59.16.1.aarch64.rpm True cluster-md-kmp-default-5.3.18-59.16.1.aarch64.rpm True cluster-md-kmp-preempt-5.3.18-59.16.1.aarch64.rpm True dlm-kmp-64kb-5.3.18-59.16.1.aarch64.rpm True dlm-kmp-default-5.3.18-59.16.1.aarch64.rpm True dlm-kmp-preempt-5.3.18-59.16.1.aarch64.rpm True gfs2-kmp-64kb-5.3.18-59.16.1.aarch64.rpm True gfs2-kmp-default-5.3.18-59.16.1.aarch64.rpm True gfs2-kmp-preempt-5.3.18-59.16.1.aarch64.rpm True kernel-64kb-5.3.18-59.16.1.aarch64.rpm True kernel-64kb-5.3.18-59.16.1.nosrc.rpm True kernel-64kb-devel-5.3.18-59.16.1.aarch64.rpm True kernel-64kb-extra-5.3.18-59.16.1.aarch64.rpm True kernel-64kb-livepatch-devel-5.3.18-59.16.1.aarch64.rpm True kernel-64kb-optional-5.3.18-59.16.1.aarch64.rpm True kernel-default-5.3.18-59.16.1.aarch64.rpm True kernel-default-base-5.3.18-59.16.1.18.8.1.aarch64.rpm True kernel-default-base-rebuild-5.3.18-59.16.1.18.8.1.aarch64.rpm True kernel-default-devel-5.3.18-59.16.1.aarch64.rpm True kernel-default-extra-5.3.18-59.16.1.aarch64.rpm True kernel-default-livepatch-5.3.18-59.16.1.aarch64.rpm True kernel-default-livepatch-devel-5.3.18-59.16.1.aarch64.rpm True kernel-default-optional-5.3.18-59.16.1.aarch64.rpm True kernel-obs-build-5.3.18-59.16.1.aarch64.rpm True kernel-obs-qa-5.3.18-59.16.1.aarch64.rpm True kernel-preempt-5.3.18-59.16.1.aarch64.rpm True kernel-preempt-devel-5.3.18-59.16.1.aarch64.rpm True kernel-preempt-extra-5.3.18-59.16.1.aarch64.rpm True kernel-preempt-livepatch-devel-5.3.18-59.16.1.aarch64.rpm True kernel-preempt-optional-5.3.18-59.16.1.aarch64.rpm True kernel-syms-5.3.18-59.16.1.aarch64.rpm True kselftests-kmp-64kb-5.3.18-59.16.1.aarch64.rpm True kselftests-kmp-default-5.3.18-59.16.1.aarch64.rpm True kselftests-kmp-preempt-5.3.18-59.16.1.aarch64.rpm True ocfs2-kmp-64kb-5.3.18-59.16.1.aarch64.rpm True ocfs2-kmp-default-5.3.18-59.16.1.aarch64.rpm True ocfs2-kmp-preempt-5.3.18-59.16.1.aarch64.rpm True reiserfs-kmp-64kb-5.3.18-59.16.1.aarch64.rpm True reiserfs-kmp-default-5.3.18-59.16.1.aarch64.rpm True reiserfs-kmp-preempt-5.3.18-59.16.1.aarch64.rpm True openSUSE-SLE-15.3-2021-2409 Security update for the Linux Kernel important SUSE Updates openSUSE-SLE 15.3 The SUSE Linux Enterprise 15 SP3 Azure kernel was updated to receive various security and bugfixes. The following security bugs were fixed: - CVE-2021-22555: A heap out-of-bounds write affecting Linux since v2.6.19-rc1 was discovered in net/netfilter/x_tables.c (bnc#1188116 ). - CVE-2021-33909: Fixed an out-of-bounds write in the filesystem layer that allows to obtain full root privileges (bsc#1188062). The following non-security bugs were fixed: - ceph: must hold snap_rwsem when filling inode for async create (bsc#1187927). - cgroup1: do not allow '\n' in renaming (bsc#1187972). - qla2xxx: synchronize rport dev_loss_tmo setting (bsc#1182470 bsc#1185486). - scsi: ufs: ufshcd-pltfrm depends on HAS_IOMEM (bsc#1187980). - usb: dwc3: Fix debugfs creation flow (git-fixes). - x86/pkru: Write hardware init value to PKRU when xstate is init (bsc#1152489). - x86/process: Check PF_KTHREAD and not current->mm for kernel threads (bsc#1152489). cluster-md-kmp-azure-5.3.18-38.14.1.x86_64.rpm True dlm-kmp-azure-5.3.18-38.14.1.x86_64.rpm True gfs2-kmp-azure-5.3.18-38.14.1.x86_64.rpm True kernel-azure-5.3.18-38.14.1.nosrc.rpm True kernel-azure-5.3.18-38.14.1.x86_64.rpm True kernel-azure-devel-5.3.18-38.14.1.x86_64.rpm True kernel-azure-extra-5.3.18-38.14.1.x86_64.rpm True kernel-azure-livepatch-devel-5.3.18-38.14.1.x86_64.rpm True kernel-azure-optional-5.3.18-38.14.1.x86_64.rpm True kernel-devel-azure-5.3.18-38.14.1.noarch.rpm True kernel-source-azure-5.3.18-38.14.1.noarch.rpm True kernel-source-azure-5.3.18-38.14.1.src.rpm True kernel-syms-azure-5.3.18-38.14.1.src.rpm True kernel-syms-azure-5.3.18-38.14.1.x86_64.rpm True kselftests-kmp-azure-5.3.18-38.14.1.x86_64.rpm True ocfs2-kmp-azure-5.3.18-38.14.1.x86_64.rpm True reiserfs-kmp-azure-5.3.18-38.14.1.x86_64.rpm True openSUSE-SLE-15.3-2021-2579 Recommended update for rust, rust1.43, rust1.53 moderate SUSE Updates openSUSE-SLE 15.3 This update for rust, rust1.43, rust1.53 fixes the following issues: This will ship multiple rust versions. - rust1.43: for Firefox ESR - rust1.53: The current rust release The "rust" package itself will be a wrapper package. cargo-1.53.0-21.3.1.noarch.rpm cargo1.43-1.43.1-7.3.1.i586.rpm cargo1.53-1.53.0-7.3.1.i586.rpm rls-1.53.0-21.3.1.noarch.rpm rust-1.53.0-21.3.1.noarch.rpm rust-1.53.0-21.3.1.src.rpm rust-gdb-1.53.0-21.3.1.noarch.rpm rust1.43-1.43.1-7.3.1.i586.rpm rust1.43-1.43.1-7.3.1.src.rpm rust1.43-gdb-1.43.1-7.3.1.i586.rpm rust1.43-src-1.43.1-7.3.1.noarch.rpm rust1.53-1.53.0-7.3.1.i586.rpm rust1.53-1.53.0-7.3.1.src.rpm rust1.53-gdb-1.53.0-7.3.1.i586.rpm rust1.53-src-1.53.0-7.3.1.noarch.rpm cargo1.43-1.43.1-7.3.1.x86_64.rpm cargo1.43-doc-1.43.1-7.3.1.noarch.rpm cargo1.53-1.53.0-7.3.1.x86_64.rpm cargo1.53-doc-1.53.0-7.3.1.noarch.rpm rls1.43-1.43.1-7.3.1.x86_64.rpm rls1.53-1.53.0-7.3.1.x86_64.rpm rust1.43-1.43.1-7.3.1.x86_64.rpm rust1.43-analysis-1.43.1-7.3.1.x86_64.rpm rust1.43-doc-1.43.1-7.3.1.x86_64.rpm rust1.43-gdb-1.43.1-7.3.1.x86_64.rpm rust1.53-1.53.0-7.3.1.x86_64.rpm rust1.53-analysis-1.53.0-7.3.1.x86_64.rpm rust1.53-doc-1.53.0-7.3.1.x86_64.rpm rust1.53-gdb-1.53.0-7.3.1.x86_64.rpm cargo1.43-1.43.1-7.3.1.s390x.rpm cargo1.53-1.53.0-7.3.1.s390x.rpm rust1.43-1.43.1-7.3.1.s390x.rpm rust1.43-gdb-1.43.1-7.3.1.s390x.rpm rust1.53-1.53.0-7.3.1.s390x.rpm rust1.53-gdb-1.53.0-7.3.1.s390x.rpm cargo1.43-1.43.1-7.3.1.ppc64le.rpm cargo1.53-1.53.0-7.3.1.ppc64le.rpm rust1.43-1.43.1-7.3.1.ppc64le.rpm rust1.43-gdb-1.43.1-7.3.1.ppc64le.rpm rust1.53-1.53.0-7.3.1.ppc64le.rpm rust1.53-gdb-1.53.0-7.3.1.ppc64le.rpm cargo1.43-1.43.1-7.3.1.aarch64.rpm cargo1.53-1.53.0-7.3.1.aarch64.rpm rls1.43-1.43.1-7.3.1.aarch64.rpm rls1.53-1.53.0-7.3.1.aarch64.rpm rust1.43-1.43.1-7.3.1.aarch64.rpm rust1.43-analysis-1.43.1-7.3.1.aarch64.rpm rust1.43-doc-1.43.1-7.3.1.aarch64.rpm rust1.43-gdb-1.43.1-7.3.1.aarch64.rpm rust1.53-1.53.0-7.3.1.aarch64.rpm rust1.53-analysis-1.53.0-7.3.1.aarch64.rpm rust1.53-doc-1.53.0-7.3.1.aarch64.rpm rust1.53-gdb-1.53.0-7.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-2919 Security update for ffmpeg important SUSE Updates openSUSE-SLE 15.3 This update for ffmpeg fixes the following issues: - CVE-2019-9721: Fix denial of service in the subtitle decoder in handle_open_brace from libavcodec/htmlsubtitles.c (bsc#1129714). - CVE-2020-22046: Fix a denial of service vulnerability exists in FFmpeg 4.2 due to a memory leak in the avpriv_float_dsp_allocl function in libavutil/float_dsp.c (bsc#1186849). - CVE-2020-22048: Fix a denial of service vulnerability exists in FFmpeg 4.2 due to a memory leak in the ff_frame_pool_get function in framepool.c (bsc#1186859). - CVE-2020-22049: Fix a denial of service vulnerability exists in FFmpeg 4.2 due to a memory leak in the wtvfile_open_sector function in wtvdec.c (bsc#1186861). - CVE-2020-22054: Fix a denial of service vulnerability exists in FFmpeg 4.2 due to a memory leak in the av_dict_set function in dict.c (bsc#1186863). - CVE-2020-21688: Fixed a heap-use-after-free in the av_freep function in libavutil/mem.c (bsc#1189348). - CVE-2020-21697: Fixed a heap-use-after-free in the mpeg_mux_write_packet function in libavformat/mpegenc.c (bsc#1189350). - CVE-2021-38114: Fixed a not checked return value of the init_vlc function (bsc#1189142). ffmpeg-3.4.2-11.8.2.src.rpm ffmpeg-3.4.2-11.8.2.x86_64.rpm ffmpeg-private-devel-3.4.2-11.8.2.x86_64.rpm libavcodec-devel-3.4.2-11.8.2.x86_64.rpm libavcodec57-3.4.2-11.8.2.x86_64.rpm libavcodec57-32bit-3.4.2-11.8.2.x86_64.rpm libavdevice-devel-3.4.2-11.8.2.x86_64.rpm libavdevice57-3.4.2-11.8.2.x86_64.rpm libavdevice57-32bit-3.4.2-11.8.2.x86_64.rpm libavfilter-devel-3.4.2-11.8.2.x86_64.rpm libavfilter6-3.4.2-11.8.2.x86_64.rpm libavfilter6-32bit-3.4.2-11.8.2.x86_64.rpm libavformat-devel-3.4.2-11.8.2.x86_64.rpm libavformat57-3.4.2-11.8.2.x86_64.rpm libavformat57-32bit-3.4.2-11.8.2.x86_64.rpm libavresample-devel-3.4.2-11.8.2.x86_64.rpm libavresample3-3.4.2-11.8.2.x86_64.rpm libavresample3-32bit-3.4.2-11.8.2.x86_64.rpm libavutil-devel-3.4.2-11.8.2.x86_64.rpm libavutil55-3.4.2-11.8.2.x86_64.rpm libavutil55-32bit-3.4.2-11.8.2.x86_64.rpm libpostproc-devel-3.4.2-11.8.2.x86_64.rpm libpostproc54-3.4.2-11.8.2.x86_64.rpm libpostproc54-32bit-3.4.2-11.8.2.x86_64.rpm libswresample-devel-3.4.2-11.8.2.x86_64.rpm libswresample2-3.4.2-11.8.2.x86_64.rpm libswresample2-32bit-3.4.2-11.8.2.x86_64.rpm libswscale-devel-3.4.2-11.8.2.x86_64.rpm libswscale4-3.4.2-11.8.2.x86_64.rpm libswscale4-32bit-3.4.2-11.8.2.x86_64.rpm ffmpeg-3.4.2-11.8.2.s390x.rpm ffmpeg-private-devel-3.4.2-11.8.2.s390x.rpm libavcodec-devel-3.4.2-11.8.2.s390x.rpm libavcodec57-3.4.2-11.8.2.s390x.rpm libavdevice-devel-3.4.2-11.8.2.s390x.rpm libavdevice57-3.4.2-11.8.2.s390x.rpm libavfilter-devel-3.4.2-11.8.2.s390x.rpm libavfilter6-3.4.2-11.8.2.s390x.rpm libavformat-devel-3.4.2-11.8.2.s390x.rpm libavformat57-3.4.2-11.8.2.s390x.rpm libavresample-devel-3.4.2-11.8.2.s390x.rpm libavresample3-3.4.2-11.8.2.s390x.rpm libavutil-devel-3.4.2-11.8.2.s390x.rpm libavutil55-3.4.2-11.8.2.s390x.rpm libpostproc-devel-3.4.2-11.8.2.s390x.rpm libpostproc54-3.4.2-11.8.2.s390x.rpm libswresample-devel-3.4.2-11.8.2.s390x.rpm libswresample2-3.4.2-11.8.2.s390x.rpm libswscale-devel-3.4.2-11.8.2.s390x.rpm libswscale4-3.4.2-11.8.2.s390x.rpm ffmpeg-3.4.2-11.8.2.ppc64le.rpm ffmpeg-private-devel-3.4.2-11.8.2.ppc64le.rpm libavcodec-devel-3.4.2-11.8.2.ppc64le.rpm libavcodec57-3.4.2-11.8.2.ppc64le.rpm libavdevice-devel-3.4.2-11.8.2.ppc64le.rpm libavdevice57-3.4.2-11.8.2.ppc64le.rpm libavfilter-devel-3.4.2-11.8.2.ppc64le.rpm libavfilter6-3.4.2-11.8.2.ppc64le.rpm libavformat-devel-3.4.2-11.8.2.ppc64le.rpm libavformat57-3.4.2-11.8.2.ppc64le.rpm libavresample-devel-3.4.2-11.8.2.ppc64le.rpm libavresample3-3.4.2-11.8.2.ppc64le.rpm libavutil-devel-3.4.2-11.8.2.ppc64le.rpm libavutil55-3.4.2-11.8.2.ppc64le.rpm libpostproc-devel-3.4.2-11.8.2.ppc64le.rpm libpostproc54-3.4.2-11.8.2.ppc64le.rpm libswresample-devel-3.4.2-11.8.2.ppc64le.rpm libswresample2-3.4.2-11.8.2.ppc64le.rpm libswscale-devel-3.4.2-11.8.2.ppc64le.rpm libswscale4-3.4.2-11.8.2.ppc64le.rpm ffmpeg-3.4.2-11.8.2.aarch64.rpm ffmpeg-private-devel-3.4.2-11.8.2.aarch64.rpm libavcodec-devel-3.4.2-11.8.2.aarch64.rpm libavcodec57-3.4.2-11.8.2.aarch64.rpm libavdevice-devel-3.4.2-11.8.2.aarch64.rpm libavdevice57-3.4.2-11.8.2.aarch64.rpm libavfilter-devel-3.4.2-11.8.2.aarch64.rpm libavfilter6-3.4.2-11.8.2.aarch64.rpm libavformat-devel-3.4.2-11.8.2.aarch64.rpm libavformat57-3.4.2-11.8.2.aarch64.rpm libavresample-devel-3.4.2-11.8.2.aarch64.rpm libavresample3-3.4.2-11.8.2.aarch64.rpm libavutil-devel-3.4.2-11.8.2.aarch64.rpm libavutil55-3.4.2-11.8.2.aarch64.rpm libpostproc-devel-3.4.2-11.8.2.aarch64.rpm libpostproc54-3.4.2-11.8.2.aarch64.rpm libswresample-devel-3.4.2-11.8.2.aarch64.rpm libswresample2-3.4.2-11.8.2.aarch64.rpm libswscale-devel-3.4.2-11.8.2.aarch64.rpm libswscale4-3.4.2-11.8.2.aarch64.rpm openSUSE-SLE-15.3-2021-2459 Security update for bluez moderate SUSE Updates openSUSE-SLE 15.3 This update for bluez fixes the following issues: - CVE-2021-3588: Fixed a missing bounds checks inside cli_feat_read_cb() function in src/gatt-database.c (bsc#1187165) bluez-5.55-3.6.1.src.rpm bluez-5.55-3.6.1.x86_64.rpm bluez-auto-enable-devices-5.55-3.6.1.noarch.rpm bluez-cups-5.55-3.6.1.x86_64.rpm bluez-deprecated-5.55-3.6.1.x86_64.rpm bluez-devel-32bit-5.55-3.6.1.x86_64.rpm bluez-devel-5.55-3.6.1.x86_64.rpm bluez-test-5.55-3.6.1.x86_64.rpm libbluetooth3-32bit-5.55-3.6.1.x86_64.rpm libbluetooth3-5.55-3.6.1.x86_64.rpm bluez-5.55-3.6.1.s390x.rpm bluez-cups-5.55-3.6.1.s390x.rpm bluez-deprecated-5.55-3.6.1.s390x.rpm bluez-devel-5.55-3.6.1.s390x.rpm bluez-test-5.55-3.6.1.s390x.rpm libbluetooth3-5.55-3.6.1.s390x.rpm bluez-5.55-3.6.1.ppc64le.rpm bluez-cups-5.55-3.6.1.ppc64le.rpm bluez-deprecated-5.55-3.6.1.ppc64le.rpm bluez-devel-5.55-3.6.1.ppc64le.rpm bluez-test-5.55-3.6.1.ppc64le.rpm libbluetooth3-5.55-3.6.1.ppc64le.rpm bluez-5.55-3.6.1.aarch64.rpm bluez-cups-5.55-3.6.1.aarch64.rpm bluez-deprecated-5.55-3.6.1.aarch64.rpm bluez-devel-5.55-3.6.1.aarch64.rpm bluez-test-5.55-3.6.1.aarch64.rpm libbluetooth3-5.55-3.6.1.aarch64.rpm openSUSE-SLE-15.3-2021-2838 Security update for jetty-minimal moderate SUSE Updates openSUSE-SLE 15.3 This update for jetty-minimal fixes the following issues: - Update to version 9.4.43.v20210629 - CVE-2021-34429: URIs can be crafted using some encoded characters to access the content of the WEB-INF directory and/or bypass some security constraints. (bsc#1188438) jetty-annotations-9.4.43-3.12.2.noarch.rpm jetty-client-9.4.43-3.12.2.noarch.rpm jetty-continuation-9.4.43-3.12.2.noarch.rpm jetty-http-9.4.43-3.12.2.noarch.rpm jetty-io-9.4.43-3.12.2.noarch.rpm jetty-jaas-9.4.43-3.12.2.noarch.rpm jetty-javax-websocket-client-impl-9.4.43-3.12.2.noarch.rpm jetty-javax-websocket-server-impl-9.4.43-3.12.2.noarch.rpm jetty-jmx-9.4.43-3.12.2.noarch.rpm jetty-jndi-9.4.43-3.12.2.noarch.rpm jetty-jsp-9.4.43-3.12.2.noarch.rpm jetty-minimal-9.4.43-3.12.2.src.rpm jetty-minimal-javadoc-9.4.43-3.12.2.noarch.rpm jetty-openid-9.4.43-3.12.2.noarch.rpm jetty-plus-9.4.43-3.12.2.noarch.rpm jetty-proxy-9.4.43-3.12.2.noarch.rpm jetty-security-9.4.43-3.12.2.noarch.rpm jetty-server-9.4.43-3.12.2.noarch.rpm jetty-servlet-9.4.43-3.12.2.noarch.rpm jetty-util-9.4.43-3.12.2.noarch.rpm jetty-util-ajax-9.4.43-3.12.2.noarch.rpm jetty-webapp-9.4.43-3.12.2.noarch.rpm jetty-websocket-9.4.43-3.12.2.src.rpm jetty-websocket-api-9.4.43-3.12.2.noarch.rpm jetty-websocket-client-9.4.43-3.12.2.noarch.rpm jetty-websocket-common-9.4.43-3.12.2.noarch.rpm jetty-websocket-javadoc-9.4.43-3.12.2.noarch.rpm jetty-websocket-server-9.4.43-3.12.2.noarch.rpm jetty-websocket-servlet-9.4.43-3.12.2.noarch.rpm jetty-xml-9.4.43-3.12.2.noarch.rpm openSUSE-SLE-15.3-2021-2802 Security update for libmspack moderate SUSE Updates openSUSE-SLE 15.3 This update for libmspack fixes the following issues: - CVE-2018-14681: Bad KWAJ file header extensions could cause a one or two byte overwrite. (bsc#1103032) - CVE-2018-14682: There is an off-by-one error in the TOLOWER() macro for CHM decompression. (bsc#1103032) - CVE-2018-14679: There is an off-by-one error in the CHM PMGI/PMGL chunk number validity checks, which could lead to denial of service. (bsc#1103032) libmspack-0.6-3.11.1.src.rpm libmspack-devel-0.6-3.11.1.x86_64.rpm libmspack0-0.6-3.11.1.x86_64.rpm libmspack0-32bit-0.6-3.11.1.x86_64.rpm mspack-tools-0.6-3.11.1.x86_64.rpm libmspack-devel-0.6-3.11.1.s390x.rpm libmspack0-0.6-3.11.1.s390x.rpm mspack-tools-0.6-3.11.1.s390x.rpm libmspack-devel-0.6-3.11.1.ppc64le.rpm libmspack0-0.6-3.11.1.ppc64le.rpm mspack-tools-0.6-3.11.1.ppc64le.rpm libmspack-devel-0.6-3.11.1.aarch64.rpm libmspack0-0.6-3.11.1.aarch64.rpm mspack-tools-0.6-3.11.1.aarch64.rpm openSUSE-SLE-15.3-2021-2553 Recommended update for release-notes-sles moderate SUSE Updates openSUSE-SLE 15.3 This update for release-notes-sles fixes the following issues: - 15.3.20210712 (tracked in bsc#933411) - Added note about about Salt 3002 (jsc#SLE-17233) - Added note about kernel changes (bsc#1187615) - Added link to workaround (bsc#1187636) - Updated PostgreSQL 13 note (jsc#SLE-17030) - Updated more links (bsc#1187664) - Updated links (bsc#1187664) - Removed note upon request (bsc#1187608) release-notes-sles-15.3.20210712-3.6.3.noarch.rpm release-notes-sles-15.3.20210712-3.6.3.src.rpm openSUSE-SLE-15.3-2021-2778 Recommended update for compat-libpthread-nonshared moderate SUSE Updates openSUSE-SLE 15.3 This update for compat-libpthread-nonshared fixes the following issues: - Add build for 32-bit version for Oracle client. (bsc#1188004) compat-libpthread-nonshared-0-3.3.1.src.rpm compat-libpthread-nonshared-0-3.3.1.x86_64.rpm openSUSE-SLE-15.3-2021-3244 Security update for shibboleth-sp low SUSE Updates openSUSE-SLE 15.3 This update for shibboleth-sp fixes the following issues: - Template generation allows external parameters to override placeholders (bsc#1184222) libshibsp-lite8-3.1.0-3.3.1.x86_64.rpm libshibsp9-3.1.0-3.3.1.x86_64.rpm shibboleth-sp-3.1.0-3.3.1.src.rpm shibboleth-sp-3.1.0-3.3.1.x86_64.rpm shibboleth-sp-devel-3.1.0-3.3.1.x86_64.rpm libshibsp-lite8-3.1.0-3.3.1.s390x.rpm libshibsp9-3.1.0-3.3.1.s390x.rpm shibboleth-sp-3.1.0-3.3.1.s390x.rpm shibboleth-sp-devel-3.1.0-3.3.1.s390x.rpm libshibsp-lite8-3.1.0-3.3.1.ppc64le.rpm libshibsp9-3.1.0-3.3.1.ppc64le.rpm shibboleth-sp-3.1.0-3.3.1.ppc64le.rpm shibboleth-sp-devel-3.1.0-3.3.1.ppc64le.rpm libshibsp-lite8-3.1.0-3.3.1.aarch64.rpm libshibsp9-3.1.0-3.3.1.aarch64.rpm shibboleth-sp-3.1.0-3.3.1.aarch64.rpm shibboleth-sp-devel-3.1.0-3.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-2475 Recommended update for novnc important SUSE Updates openSUSE-SLE 15.3 This update for novnc fixes the following issues: - Update to 1.2.0: * Quality and compression hints can now be modified dynamically * Added touch gestures to emulate common mouse actions * Support for full Unicode in clipboard * Support for VeNCrypt Plain authentication * Support for TightVNC Unix authentication * Support for alpha cursors * The session name is now updated whilst connected - Update to 1.1.0: Application: * New translations for Russian, Korean, Czech and Chinese (traditional) languages * Fixed an issue where you didn't get scrollbars in your browser on Windows you had a touch screen. * Added the Super/Windows key to the toolbar. * Added an option to show a dot when there otherwise wouldn't be a visible cursor. * View drag is no longer available when in scaling mode. Library: * A large number of coding style changes has been made to make the code easier to read and better to work with. * Many keyboard issues has been fixed. * Local cursor is now available on all platforms. * Fixed a number of crashes related to clipboard. * Fixed issues that occurred if data from the server was being received slowly. * A problem has been fixed where the display module would incorrectly handle high DPI systems causing scrollbars to show when they shouldn't. novnc-1.2.0-3.3.1.noarch.rpm novnc-1.2.0-3.3.1.src.rpm openSUSE-SLE-15.3-2021-2612 Security update for apache-commons-compress important SUSE Updates openSUSE-SLE 15.3 This update for apache-commons-compress fixes the following issues: - Updated to 1.21 - CVE-2021-35515: Fixed an infinite loop when reading a specially crafted 7Z archive. (bsc#1188463) - CVE-2021-35516: Fixed an excessive memory allocation when reading a specially crafted 7Z archive. (bsc#1188464) - CVE-2021-35517: Fixed an excessive memory allocation when reading a specially crafted TAR archive. (bsc#1188465) - CVE-2021-36090: Fixed an excessive memory allocation when reading a specially crafted ZIP archive. (bsc#1188466) apache-commons-compress-1.21-3.3.1.noarch.rpm apache-commons-compress-1.21-3.3.1.src.rpm apache-commons-compress-javadoc-1.21-3.3.1.noarch.rpm openSUSE-SLE-15.3-2021-2801 Security update for 389-ds moderate SUSE Updates openSUSE-SLE 15.3 This update for 389-ds fixes the following issues: - Update to 1.4.4.16 - CVE-2021-3652: Fixed crypt handling of locked accounts. (bsc#1188455) 389-ds-1.4.4.16~git16.c1926dfc6-3.4.1.src.rpm 389-ds-1.4.4.16~git16.c1926dfc6-3.4.1.x86_64.rpm 389-ds-devel-1.4.4.16~git16.c1926dfc6-3.4.1.x86_64.rpm 389-ds-snmp-1.4.4.16~git16.c1926dfc6-3.4.1.x86_64.rpm lib389-1.4.4.16~git16.c1926dfc6-3.4.1.x86_64.rpm libsvrcore0-1.4.4.16~git16.c1926dfc6-3.4.1.x86_64.rpm 389-ds-1.4.4.16~git16.c1926dfc6-3.4.1.s390x.rpm 389-ds-devel-1.4.4.16~git16.c1926dfc6-3.4.1.s390x.rpm 389-ds-snmp-1.4.4.16~git16.c1926dfc6-3.4.1.s390x.rpm lib389-1.4.4.16~git16.c1926dfc6-3.4.1.s390x.rpm libsvrcore0-1.4.4.16~git16.c1926dfc6-3.4.1.s390x.rpm 389-ds-1.4.4.16~git16.c1926dfc6-3.4.1.ppc64le.rpm 389-ds-devel-1.4.4.16~git16.c1926dfc6-3.4.1.ppc64le.rpm 389-ds-snmp-1.4.4.16~git16.c1926dfc6-3.4.1.ppc64le.rpm lib389-1.4.4.16~git16.c1926dfc6-3.4.1.ppc64le.rpm libsvrcore0-1.4.4.16~git16.c1926dfc6-3.4.1.ppc64le.rpm 389-ds-1.4.4.16~git16.c1926dfc6-3.4.1.aarch64.rpm 389-ds-devel-1.4.4.16~git16.c1926dfc6-3.4.1.aarch64.rpm 389-ds-snmp-1.4.4.16~git16.c1926dfc6-3.4.1.aarch64.rpm lib389-1.4.4.16~git16.c1926dfc6-3.4.1.aarch64.rpm libsvrcore0-1.4.4.16~git16.c1926dfc6-3.4.1.aarch64.rpm openSUSE-SLE-15.3-2021-2809 Security update for systemd moderate SUSE Updates openSUSE-SLE 15.3 This update for systemd fixes the following issues: - Updated to version 246.15 - CVE-2021-33910: Fixed a denial of service issue in systemd. (bsc#1188063) - CVE-2020-13529: Fixed an issue that allows crafted DHCP FORCERENEW packet can cause a server running the DHCP client to be vulnerable to a DHCP ACK spoofing attack. (bsc#1185972) libsystemd0-246.15-7.11.1.x86_64.rpm libsystemd0-32bit-246.15-7.11.1.x86_64.rpm libudev-devel-246.15-7.11.1.x86_64.rpm libudev-devel-32bit-246.15-7.11.1.x86_64.rpm libudev1-246.15-7.11.1.x86_64.rpm libudev1-32bit-246.15-7.11.1.x86_64.rpm nss-myhostname-246.15-7.11.1.x86_64.rpm nss-myhostname-32bit-246.15-7.11.1.x86_64.rpm nss-mymachines-246.15-7.11.1.x86_64.rpm nss-mymachines-32bit-246.15-7.11.1.x86_64.rpm nss-resolve-246.15-7.11.1.x86_64.rpm nss-systemd-246.15-7.11.1.x86_64.rpm systemd-246.15-7.11.1.src.rpm systemd-246.15-7.11.1.x86_64.rpm systemd-32bit-246.15-7.11.1.x86_64.rpm systemd-container-246.15-7.11.1.x86_64.rpm systemd-coredump-246.15-7.11.1.x86_64.rpm systemd-devel-246.15-7.11.1.x86_64.rpm systemd-doc-246.15-7.11.1.x86_64.rpm systemd-journal-remote-246.15-7.11.1.x86_64.rpm systemd-lang-246.15-7.11.1.noarch.rpm systemd-logger-246.15-7.11.1.x86_64.rpm systemd-network-246.15-7.11.1.x86_64.rpm systemd-sysvinit-246.15-7.11.1.x86_64.rpm udev-246.15-7.11.1.x86_64.rpm libsystemd0-246.15-7.11.1.s390x.rpm libudev-devel-246.15-7.11.1.s390x.rpm libudev1-246.15-7.11.1.s390x.rpm nss-myhostname-246.15-7.11.1.s390x.rpm nss-mymachines-246.15-7.11.1.s390x.rpm nss-resolve-246.15-7.11.1.s390x.rpm nss-systemd-246.15-7.11.1.s390x.rpm systemd-246.15-7.11.1.s390x.rpm systemd-container-246.15-7.11.1.s390x.rpm systemd-coredump-246.15-7.11.1.s390x.rpm systemd-devel-246.15-7.11.1.s390x.rpm systemd-doc-246.15-7.11.1.s390x.rpm systemd-journal-remote-246.15-7.11.1.s390x.rpm systemd-logger-246.15-7.11.1.s390x.rpm systemd-network-246.15-7.11.1.s390x.rpm systemd-sysvinit-246.15-7.11.1.s390x.rpm udev-246.15-7.11.1.s390x.rpm libsystemd0-246.15-7.11.1.ppc64le.rpm libudev-devel-246.15-7.11.1.ppc64le.rpm libudev1-246.15-7.11.1.ppc64le.rpm nss-myhostname-246.15-7.11.1.ppc64le.rpm nss-mymachines-246.15-7.11.1.ppc64le.rpm nss-resolve-246.15-7.11.1.ppc64le.rpm nss-systemd-246.15-7.11.1.ppc64le.rpm systemd-246.15-7.11.1.ppc64le.rpm systemd-container-246.15-7.11.1.ppc64le.rpm systemd-coredump-246.15-7.11.1.ppc64le.rpm systemd-devel-246.15-7.11.1.ppc64le.rpm systemd-doc-246.15-7.11.1.ppc64le.rpm systemd-journal-remote-246.15-7.11.1.ppc64le.rpm systemd-logger-246.15-7.11.1.ppc64le.rpm systemd-network-246.15-7.11.1.ppc64le.rpm systemd-sysvinit-246.15-7.11.1.ppc64le.rpm udev-246.15-7.11.1.ppc64le.rpm libsystemd0-246.15-7.11.1.aarch64.rpm libudev-devel-246.15-7.11.1.aarch64.rpm libudev1-246.15-7.11.1.aarch64.rpm nss-myhostname-246.15-7.11.1.aarch64.rpm nss-mymachines-246.15-7.11.1.aarch64.rpm nss-resolve-246.15-7.11.1.aarch64.rpm nss-systemd-246.15-7.11.1.aarch64.rpm systemd-246.15-7.11.1.aarch64.rpm systemd-container-246.15-7.11.1.aarch64.rpm systemd-coredump-246.15-7.11.1.aarch64.rpm systemd-devel-246.15-7.11.1.aarch64.rpm systemd-doc-246.15-7.11.1.aarch64.rpm systemd-journal-remote-246.15-7.11.1.aarch64.rpm systemd-logger-246.15-7.11.1.aarch64.rpm systemd-network-246.15-7.11.1.aarch64.rpm systemd-sysvinit-246.15-7.11.1.aarch64.rpm udev-246.15-7.11.1.aarch64.rpm openSUSE-SLE-15.3-2021-2614 Security update for spice-vdagent important SUSE Updates openSUSE-SLE 15.3 This update for spice-vdagent fixes the following issues: - Update to version 0.21.0 - CVE-2020-25650: memory DoS via arbitrary entries in `active_xfers` hash table (bsc#1177780) - CVE-2020-25651: possible file transfer DoS and information leak via `active_xfers` hash map (bsc#1177781) - CVE-2020-25652: possibility to exhaust file descriptors in `vdagentd` (bsc#1177782) - CVE-2020-25653: UNIX domain socket peer PID retrieved via `SO_PEERCRED` is subject to race condition (bsc#1177783) spice-vdagent-0.21.0-3.3.1.src.rpm spice-vdagent-0.21.0-3.3.1.x86_64.rpm spice-vdagent-0.21.0-3.3.1.s390x.rpm spice-vdagent-0.21.0-3.3.1.ppc64le.rpm spice-vdagent-0.21.0-3.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-2839 Recommended update for yast2 moderate SUSE Updates openSUSE-SLE 15.3 This update for yast2 fixes the following issues: - Do not escape "$" in URL paths. (bsc#1187581) - Don't crash with UI exception in 'Progress.rb' if a popup is in the way. (bsc#1187676) yast2-4.3.65-3.11.1.src.rpm yast2-4.3.65-3.11.1.x86_64.rpm yast2-logs-4.3.65-3.11.1.x86_64.rpm yast2-4.3.65-3.11.1.s390x.rpm yast2-logs-4.3.65-3.11.1.s390x.rpm yast2-4.3.65-3.11.1.ppc64le.rpm yast2-logs-4.3.65-3.11.1.ppc64le.rpm yast2-4.3.65-3.11.1.aarch64.rpm yast2-logs-4.3.65-3.11.1.aarch64.rpm openSUSE-SLE-15.3-2021-2558 Recommended update for python-pytz moderate SUSE Updates openSUSE-SLE 15.3 This update for python-pytz fixes the following issues: - Add %pyunittest shim for platforms where it is missing. - Remove real directory of %{python_sitelib}/pytz/zoneinfo when upgrading, before it is replaced by a symlink. (bsc#1185748) - Bump tzdata_version - update to 2021.1: * update to IANA 2021a timezone release python-pytz-2021.1-3.3.1.src.rpm python2-pytz-2021.1-3.3.1.noarch.rpm python3-pytz-2021.1-3.3.1.noarch.rpm openSUSE-SLE-15.3-2021-2670 Recommended update for libmodulemd moderate SUSE Updates openSUSE-SLE 15.3 This recommended update for libmodulemd fixes the following issues: Provide libmodulemd (jsc#ECO-3458) - Make available libmodulemd to Basesystem Module 15 SP2 - Make available libmodulemd to Basesystem Module 15 SP3 - Make the package 'createrepo_c' installable libmodulemd-2.12.0-3.8.1.src.rpm libmodulemd-devel-2.12.0-3.8.1.x86_64.rpm libmodulemd2-2.12.0-3.8.1.x86_64.rpm modulemd-validator-2.12.0-3.8.1.x86_64.rpm python3-libmodulemd-2.12.0-3.8.1.x86_64.rpm typelib-1_0-Modulemd-2_0-2.12.0-3.8.1.x86_64.rpm libmodulemd-devel-2.12.0-3.8.1.s390x.rpm libmodulemd2-2.12.0-3.8.1.s390x.rpm modulemd-validator-2.12.0-3.8.1.s390x.rpm python3-libmodulemd-2.12.0-3.8.1.s390x.rpm typelib-1_0-Modulemd-2_0-2.12.0-3.8.1.s390x.rpm libmodulemd-devel-2.12.0-3.8.1.ppc64le.rpm libmodulemd2-2.12.0-3.8.1.ppc64le.rpm modulemd-validator-2.12.0-3.8.1.ppc64le.rpm python3-libmodulemd-2.12.0-3.8.1.ppc64le.rpm typelib-1_0-Modulemd-2_0-2.12.0-3.8.1.ppc64le.rpm libmodulemd-devel-2.12.0-3.8.1.aarch64.rpm libmodulemd2-2.12.0-3.8.1.aarch64.rpm modulemd-validator-2.12.0-3.8.1.aarch64.rpm python3-libmodulemd-2.12.0-3.8.1.aarch64.rpm typelib-1_0-Modulemd-2_0-2.12.0-3.8.1.aarch64.rpm openSUSE-SLE-15.3-2021-2952 Security update for java-11-openjdk important SUSE Updates openSUSE-SLE 15.3 This update for java-11-openjdk fixes the following issues: - Update to jdk-11.0.12+7 - CVE-2021-2369: Fixed JAR file handling problem containing multiple MANIFEST.MF files. (bsc#1188565) - CVE-2021-2388: Fixed a flaw inside the Hotspot component performed range check elimination. (bsc#1188566) - CVE-2021-2341: Fixed a flaw inside the FtpClient. (bsc#1188564) java-11-openjdk-11.0.12.0-3.59.1.src.rpm java-11-openjdk-11.0.12.0-3.59.1.x86_64.rpm java-11-openjdk-accessibility-11.0.12.0-3.59.1.x86_64.rpm java-11-openjdk-demo-11.0.12.0-3.59.1.x86_64.rpm java-11-openjdk-devel-11.0.12.0-3.59.1.x86_64.rpm java-11-openjdk-headless-11.0.12.0-3.59.1.x86_64.rpm java-11-openjdk-javadoc-11.0.12.0-3.59.1.noarch.rpm java-11-openjdk-jmods-11.0.12.0-3.59.1.x86_64.rpm java-11-openjdk-src-11.0.12.0-3.59.1.x86_64.rpm java-11-openjdk-11.0.12.0-3.59.1.s390x.rpm java-11-openjdk-accessibility-11.0.12.0-3.59.1.s390x.rpm java-11-openjdk-demo-11.0.12.0-3.59.1.s390x.rpm java-11-openjdk-devel-11.0.12.0-3.59.1.s390x.rpm java-11-openjdk-headless-11.0.12.0-3.59.1.s390x.rpm java-11-openjdk-jmods-11.0.12.0-3.59.1.s390x.rpm java-11-openjdk-src-11.0.12.0-3.59.1.s390x.rpm java-11-openjdk-11.0.12.0-3.59.1.ppc64le.rpm java-11-openjdk-accessibility-11.0.12.0-3.59.1.ppc64le.rpm java-11-openjdk-demo-11.0.12.0-3.59.1.ppc64le.rpm java-11-openjdk-devel-11.0.12.0-3.59.1.ppc64le.rpm java-11-openjdk-headless-11.0.12.0-3.59.1.ppc64le.rpm java-11-openjdk-jmods-11.0.12.0-3.59.1.ppc64le.rpm java-11-openjdk-src-11.0.12.0-3.59.1.ppc64le.rpm java-11-openjdk-11.0.12.0-3.59.1.aarch64.rpm java-11-openjdk-accessibility-11.0.12.0-3.59.1.aarch64.rpm java-11-openjdk-demo-11.0.12.0-3.59.1.aarch64.rpm java-11-openjdk-devel-11.0.12.0-3.59.1.aarch64.rpm java-11-openjdk-headless-11.0.12.0-3.59.1.aarch64.rpm java-11-openjdk-jmods-11.0.12.0-3.59.1.aarch64.rpm java-11-openjdk-src-11.0.12.0-3.59.1.aarch64.rpm openSUSE-SLE-15.3-2021-2878 Recommended update for kubevirt, virt-api-container, virt-controller-container, virt-handler-container, virt-launcher-container, virt-operator-container moderate SUSE Updates openSUSE-SLE 15.3 This update for kubevirt, virt-api-container, virt-controller-container, virt-handler-container, virt-launcher-container, virt-operator-container contains the following fixes: Changes in kubevirt: - Generate meta info for containers during rpm build. - Add REGISTRY variable. - Use registry.suse.com as the default fallback for sle. - Rename macro registry_path to kubevirt_registry_path. - Do not package OLM manifests. - Install virt-launcher SELinux policy. (bsc#1185714) - Include release number into docker tag. - Add kubevirt_containers_meta build service. - Set default reg_path='registry.opensuse.org/kubevirt'. - Add _constraints file with disk requirements. - Fix virt-launcher VirDomain double free crash. Changes on the containers: - Include the registry in org.opensuse.reference. - Tag the image with <version>-<release>. - run zypper clean after installation. Changes specific to virt-launcher-container: - Create symlinks for OVMF binaries in expected location. - Sort installed packages alphabetically. kubevirt-0.40.0-5.14.3.src.rpm kubevirt-container-disk-0.40.0-5.14.3.x86_64.rpm kubevirt-manifests-0.40.0-5.14.3.x86_64.rpm kubevirt-tests-0.40.0-5.14.3.x86_64.rpm kubevirt-virt-api-0.40.0-5.14.3.x86_64.rpm kubevirt-virt-controller-0.40.0-5.14.3.x86_64.rpm kubevirt-virt-handler-0.40.0-5.14.3.x86_64.rpm kubevirt-virt-launcher-0.40.0-5.14.3.x86_64.rpm kubevirt-virt-operator-0.40.0-5.14.3.x86_64.rpm kubevirt-virtctl-0.40.0-5.14.3.x86_64.rpm openSUSE-SLE-15.3-2021-2664 Security update for golang-github-prometheus-prometheus moderate SUSE Updates openSUSE-SLE 15.3 This update for golang-github-prometheus-prometheus fixes the following issues: - Provide and reload firewalld configuration only for: + openSUSE Leap 15.0, 15.1, 15.2 + SUSE SLE15, SLE15 SP1, SLE15 SP2 - Upgrade to upstream version 2.27.1 (jsc#SLE-18254) + Bugfix: * SECURITY: Fix arbitrary redirects under the /new endpoint (CVE-2021-29622, bsc#1186242) + Features: * Promtool: Retroactive rule evaluation functionality. #7675 * Configuration: Environment variable expansion for external labels. Behind --enable-feature=expand-external-labels flag. #8649 * TSDB: Add a flag(--storage.tsdb.max-block-chunk-segment-size) to control the max chunks file size of the blocks for small Prometheus instances. * UI: Add a dark theme. #8604 * AWS Lightsail Discovery: Add AWS Lightsail Discovery. #8693 * Docker Discovery: Add Docker Service Discovery. #8629 * OAuth: Allow OAuth 2.0 to be used anywhere an HTTP client is used. #8761 * Remote Write: Send exemplars via remote write. Experimental and disabled by default. #8296 + Enhancements: * Digital Ocean Discovery: Add __meta_digitalocean_vpc label. #8642 * Scaleway Discovery: Read Scaleway secret from a file. #8643 * Scrape: Add configurable limits for label size and count. #8777 * UI: Add 16w and 26w time range steps. #8656 * Templating: Enable parsing strings in humanize functions. #8682 + Bugfixes: * UI: Provide errors instead of blank page on TSDB Status Page. #8654 #8659 * TSDB: Do not panic when writing very large records to the WAL. #8790 * TSDB: Avoid panic when mmaped memory is referenced after the file is closed. #8723 * Scaleway Discovery: Fix nil pointer dereference. #8737 * Consul Discovery: Restart no longer required after config update with no targets. #8766 - Add tarball with vendor modules and web assets - Uyuni: Read formula data from exporters map - Uyuni: Add support for TLS targets - Upgrade to upstream version 2.26.0 + Changes * Alerting: Using Alertmanager v2 API by default. #8626 * Prometheus/Promtool: Binaries are now printing help and usage to stdout instead of stderr. #8542 + Features * Remote: Add support for AWS SigV4 auth method for remote_write. #8509 * PromQL: Allow negative offsets. Behind --enable-feature=promql-negative-offset flag. #8487 * UI: Add advanced auto-completion, syntax highlighting and linting to graph page query input. #8634 + Enhancements * PromQL: Add last_over_time, sgn, clamp functions. #8457 * Scrape: Add support for specifying type of Authorization header credentials with Bearer by default. #8512 * Scrape: Add follow_redirects option to scrape configuration. #8546 * Remote: Allow retries on HTTP 429 response code for remote_write. #8237 #8477 * Remote: Allow configuring custom headers for remote_read. #8516 * UI: Hitting Enter now triggers new query. #8581 * UI: Better handling of long rule and names on the /rules and /targets pages. #8608 #8609 * UI: Add collapse/expand all button on the /targets page. #8486 - Upgrade to upstream version 2.25.0 + Features * Include a new `--enable-feature=` flag that enables experimental features. + Enhancements * Add optional name property to testgroup for better test failure output. #8440 * Add warnings into React Panel on the Graph page. #8427 * TSDB: Increase the number of buckets for the compaction duration metric. #8342 * Remote: Allow passing along custom remote_write HTTP headers. #8416 * Mixins: Scope grafana configuration. #8332 * Kubernetes SD: Add endpoint labels metadata. #8273 * UI: Expose total number of label pairs in head in TSDB stats page. #8343 * TSDB: Reload blocks every minute, to detect new blocks and enforce retention more often. #8343 + Bug fixes * API: Fix global URL when external address has no port. #8359 * Deprecate unused flag --alertmanager.timeout. #8407 - Upgrade to upstream version 2.24.1 + Enhancements * Cache basic authentication results to significantly improve performance of HTTP endpoints. - Upgrade to upstream version 2.24.0 + Features * Add TLS and basic authentication to HTTP endpoints. #8316 * promtool: Add check web-config subcommand to check web config files. #8319 * promtool: Add tsdb create-blocks-from openmetrics subcommand to backfill metrics data from an OpenMetrics file. + Enhancements * HTTP API: Fast-fail queries with only empty matchers. #8288 * HTTP API: Support matchers for labels API. #8301 * promtool: Improve checking of URLs passed on the command line. #7956 * SD: Expose IPv6 as a label in EC2 SD. #7086 * SD: Reuse EC2 client, reducing frequency of requesting credentials. #8311 * TSDB: Add logging when compaction takes more than the block time range. #8151 * TSDB: Avoid unnecessary GC runs after compaction. #8276 - Upgrade to upstream version 2.23.0 + Changes * UI: Make the React UI default. #8142 * Remote write: The following metrics were removed/renamed in remote write. #6815 > prometheus_remote_storage_succeeded_samples_total was removed and prometheus_remote_storage_samples_total was introduced for all the samples attempted to send. > prometheus_remote_storage_sent_bytes_total was removed and replaced with prometheus_remote_storage_samples_bytes_total and prometheus_remote_storage_metadata_bytes_total. > prometheus_remote_storage_failed_samples_total -> prometheus_remote_storage_samples_failed_total . > prometheus_remote_storage_retried_samples_total -> prometheus_remote_storage_samples_retried_total. > prometheus_remote_storage_dropped_samples_total -> prometheus_remote_storage_samples_dropped_total. > prometheus_remote_storage_pending_samples -> prometheus_remote_storage_samples_pending. * Remote: Do not collect non-initialized timestamp metrics. #8060 + Enhancements * Remote write: Added a metric prometheus_remote_storage_max_samples_per_send for remote write. #8102 * TSDB: Make the snapshot directory name always the same length. #8138 * TSDB: Create a checkpoint only once at the end of all head compactions. #8067 * TSDB: Avoid Series API from hitting the chunks. #8050 * TSDB: Cache label name and last value when adding series during compactions making compactions faster. #8192 * PromQL: Improved performance of Hash method making queries a bit faster. #8025 * promtool: tsdb list now prints block sizes. #7993 * promtool: Calculate mint and maxt per test avoiding unnecessary calculations. #8096 * SD: Add filtering of services to Docker Swarm SD. #8074 - Uyuni: `hostname` label is now set to FQDN instead of IP - Update to upstream version 2.22.1 - Update packaging * Remove systemd and shadow hard requirements * use systemd-sysusers to configure the user in a dedicated 'system-user-prometheus' subpackage * add 'prometheus' package alias + Add support for Prometheus exporters proxy - Remove prometheus.firewall.xml source file - Remove firewalld files. They are installed in the main firewalld package. golang-github-prometheus-prometheus-2.27.1-3.8.1.src.rpm golang-github-prometheus-prometheus-2.27.1-3.8.1.x86_64.rpm golang-github-prometheus-prometheus-2.27.1-3.8.1.s390x.rpm golang-github-prometheus-prometheus-2.27.1-3.8.1.ppc64le.rpm golang-github-prometheus-prometheus-2.27.1-3.8.1.aarch64.rpm openSUSE-SLE-15.3-2021-2675 Security update for SUSE Manager Client Tools moderate SUSE Updates openSUSE-SLE 15.3 This update fixes the following issues: ansible: - The support level for ansible is l2, not l3 dracut-saltboot: - Force installation of libexpat.so.1 (bsc#1188846) - Use kernel parameters from PXE formula also for local boot golang-github-prometheus-prometheus: - Provide and reload firewalld configuration only for: + openSUSE Leap 15.0, 15.1, 15.2 + SUSE Linux Enterprise 15, 15 SP1, 15 SP2 - Upgrade to upstream version 2.27.1 (jsc#SLE-18254) + Bugfix: * SECURITY: Fix arbitrary redirects under the /new endpoint (CVE-2021-29622, bsc#1186242) * UI: Provide errors instead of blank page on TSDB Status Page. #8654 #8659 * TSDB: Do not panic when writing very large records to the WAL. #8790 * TSDB: Avoid panic when mmaped memory is referenced after the file is closed. #8723 * Scaleway Discovery: Fix nil pointer dereference. #8737 * Consul Discovery: Restart no longer required after config update with no targets. #8766 + Features: * Promtool: Retroactive rule evaluation functionality. * Configuration: Environment variable expansion for external labels. Behind '--enable-feature=expand-external-labels' flag. * Add a flag '--storage.tsdb.max-block-chunk-segment-size' to control the max chunks file size of the blocks for small Prometheus instances. * UI: Add a dark theme. * AWS Lightsail Discovery: Add AWS Lightsail Discovery. * Docker Discovery: Add Docker Service Discovery. * OAuth: Allow OAuth 2.0 to be used anywhere an HTTP client is used. * Remote Write: Send exemplars via remote write. Experimental and disabled by default. + Enhancements: * Digital Ocean Discovery: Add '__meta_digitalocean_vpc' label. * Scaleway Discovery: Read Scaleway secret from a file. * Scrape: Add configurable limits for label size and count. * UI: Add 16w and 26w time range steps. * Templating: Enable parsing strings in humanize functions. - Update package with changes from `server:monitoring` (bsc#1175478) Left out removal of 'firewalld' related configuration files as SUSE Linux Enterprise 15-SP1's `firewalld` package does not contain 'prometheus' configuration yet. mgr-cfg: - No visible impact for the user mgr-custom-info: - No visible impact for the user mgr-osad: - No visible impact for the user mgr-push: - No visible impact for the user mgr-virtualization: - No visible impact for the user rhnlib: - No visible impact for the user spacecmd: - Make spacecmd aware of retracted patches/packages - Enhance help for installation types when creating distributions (bsc#1186581) - Parse empty argument when nothing in between the separator spacewalk-client-tools: - Update translation strings spacewalk-koan: - Fix for spacewalk-koan tests after switching to the new Docker images spacewalk-oscap: - No visible impact for the user suseRegisterInfo: - No visible impact for the user uyuni-common-libs: - Handle broken RPM packages to prevent exceptions causing fails on repository synchronization (bsc#1186650) - Maintainer field in debian packages are only recommended (bsc#1186508) ansible-2.9.21-1.5.1.noarch.rpm ansible-2.9.21-1.5.1.src.rpm ansible-doc-2.9.21-1.5.1.noarch.rpm ansible-test-2.9.21-1.5.1.noarch.rpm dracut-saltboot-0.1.1627546504.96a0b3e-1.27.1.noarch.rpm dracut-saltboot-0.1.1627546504.96a0b3e-1.27.1.src.rpm mgr-cfg-4.2.3-1.18.1.noarch.rpm mgr-cfg-4.2.3-1.18.1.src.rpm mgr-cfg-actions-4.2.3-1.18.1.noarch.rpm mgr-cfg-client-4.2.3-1.18.1.noarch.rpm mgr-cfg-management-4.2.3-1.18.1.noarch.rpm mgr-custom-info-4.2.2-1.12.1.noarch.rpm mgr-custom-info-4.2.2-1.12.1.src.rpm mgr-osa-dispatcher-4.2.6-1.30.1.noarch.rpm mgr-osad-4.2.6-1.30.1.noarch.rpm mgr-osad-4.2.6-1.30.1.src.rpm mgr-push-4.2.3-1.12.1.noarch.rpm mgr-push-4.2.3-1.12.1.src.rpm mgr-virtualization-4.2.2-1.20.1.src.rpm mgr-virtualization-host-4.2.2-1.20.1.noarch.rpm python2-mgr-cfg-4.2.3-1.18.1.noarch.rpm python2-mgr-cfg-actions-4.2.3-1.18.1.noarch.rpm python2-mgr-cfg-client-4.2.3-1.18.1.noarch.rpm python2-mgr-cfg-management-4.2.3-1.18.1.noarch.rpm python2-mgr-osa-common-4.2.6-1.30.1.noarch.rpm python2-mgr-osa-dispatcher-4.2.6-1.30.1.noarch.rpm python2-mgr-osad-4.2.6-1.30.1.noarch.rpm python2-mgr-push-4.2.3-1.12.1.noarch.rpm python2-mgr-virtualization-common-4.2.2-1.20.1.noarch.rpm python2-mgr-virtualization-host-4.2.2-1.20.1.noarch.rpm python2-rhnlib-4.2.4-3.28.1.noarch.rpm python2-spacewalk-check-4.2.12-3.44.1.noarch.rpm python2-spacewalk-client-setup-4.2.12-3.44.1.noarch.rpm python2-spacewalk-client-tools-4.2.12-3.44.1.noarch.rpm python2-spacewalk-koan-4.2.4-3.21.1.noarch.rpm python2-spacewalk-oscap-4.2.2-3.12.1.noarch.rpm python2-suseRegisterInfo-4.2.4-3.15.1.noarch.rpm python2-uyuni-common-libs-4.2.5-1.15.1.x86_64.rpm python3-mgr-cfg-4.2.3-1.18.1.noarch.rpm python3-mgr-cfg-actions-4.2.3-1.18.1.noarch.rpm python3-mgr-cfg-client-4.2.3-1.18.1.noarch.rpm python3-mgr-cfg-management-4.2.3-1.18.1.noarch.rpm python3-mgr-osa-common-4.2.6-1.30.1.noarch.rpm python3-mgr-osa-dispatcher-4.2.6-1.30.1.noarch.rpm python3-mgr-osad-4.2.6-1.30.1.noarch.rpm python3-mgr-push-4.2.3-1.12.1.noarch.rpm python3-mgr-virtualization-common-4.2.2-1.20.1.noarch.rpm python3-mgr-virtualization-host-4.2.2-1.20.1.noarch.rpm python3-rhnlib-4.2.4-3.28.1.noarch.rpm python3-spacewalk-check-4.2.12-3.44.1.noarch.rpm python3-spacewalk-client-setup-4.2.12-3.44.1.noarch.rpm python3-spacewalk-client-tools-4.2.12-3.44.1.noarch.rpm python3-spacewalk-koan-4.2.4-3.21.1.noarch.rpm python3-spacewalk-oscap-4.2.2-3.12.1.noarch.rpm python3-suseRegisterInfo-4.2.4-3.15.1.noarch.rpm python3-uyuni-common-libs-4.2.5-1.15.1.x86_64.rpm rhnlib-4.2.4-3.28.1.src.rpm spacecmd-4.2.11-3.62.1.noarch.rpm spacecmd-4.2.11-3.62.1.src.rpm spacewalk-check-4.2.12-3.44.1.noarch.rpm spacewalk-client-setup-4.2.12-3.44.1.noarch.rpm spacewalk-client-tools-4.2.12-3.44.1.noarch.rpm spacewalk-client-tools-4.2.12-3.44.1.src.rpm spacewalk-koan-4.2.4-3.21.1.noarch.rpm spacewalk-koan-4.2.4-3.21.1.src.rpm spacewalk-oscap-4.2.2-3.12.1.noarch.rpm spacewalk-oscap-4.2.2-3.12.1.src.rpm suseRegisterInfo-4.2.4-3.15.1.noarch.rpm suseRegisterInfo-4.2.4-3.15.1.src.rpm uyuni-common-libs-4.2.5-1.15.1.src.rpm python2-uyuni-common-libs-4.2.5-1.15.1.s390x.rpm python3-uyuni-common-libs-4.2.5-1.15.1.s390x.rpm python2-uyuni-common-libs-4.2.5-1.15.1.ppc64le.rpm python3-uyuni-common-libs-4.2.5-1.15.1.ppc64le.rpm python2-uyuni-common-libs-4.2.5-1.15.1.aarch64.rpm python3-uyuni-common-libs-4.2.5-1.15.1.aarch64.rpm openSUSE-SLE-15.3-2021-2617 Security update for mariadb important SUSE Updates openSUSE-SLE 15.3 This update for mariadb fixes the following issues: - Update to 10.2.39 (bsc#1182739) - CVE-2021-2166: DML unspecified vulnerability lead to complete DOS. (bsc#1185870) - CVE-2021-2154: DML unspecified vulnerability can lead to complete DOS. (bsc#1185872) - CVE-2021-2180: InnoDB unspecified vulnerability lead to complete DOS. (bsc#1185868) - CVE-2021-27928: Fixed a remote code execution issue. (bsc#1183770) libmysqld-devel-10.2.39-3.40.1.x86_64.rpm libmysqld19-10.2.39-3.40.1.x86_64.rpm mariadb-10.2.39-3.40.1.src.rpm libmysqld-devel-10.2.39-3.40.1.s390x.rpm libmysqld19-10.2.39-3.40.1.s390x.rpm libmysqld-devel-10.2.39-3.40.1.ppc64le.rpm libmysqld19-10.2.39-3.40.1.ppc64le.rpm libmysqld-devel-10.2.39-3.40.1.aarch64.rpm libmysqld19-10.2.39-3.40.1.aarch64.rpm openSUSE-SLE-15.3-2021-2616 Security update for mariadb important SUSE Updates openSUSE-SLE 15.3 This update for mariadb fixes the following issues: - Update to 10.2.39 (bsc#1182739) - CVE-2021-2166: DML unspecified vulnerability lead to complete DOS. (bsc#1185870) - CVE-2021-2154: DML unspecified vulnerability can lead to complete DOS. (bsc#1185872) - CVE-2021-27928: Fixed a remote code execution issue. (bsc#1183770) mariadb-10.4.20-3.9.1.src.rpm mariadb-galera-10.4.20-3.9.1.x86_64.rpm mariadb-galera-10.4.20-3.9.1.s390x.rpm mariadb-galera-10.4.20-3.9.1.ppc64le.rpm mariadb-galera-10.4.20-3.9.1.aarch64.rpm openSUSE-SLE-15.3-2021-3000 Recommended update for vncmanager-controller moderate SUSE Updates openSUSE-SLE 15.3 This update for vncmanager-controller fixes the following issues: - Fix extension loading error that disables "Vnc session configuration" option (bsc#1188118) vncmanager-controller-1.0.1-3.3.1.src.rpm vncmanager-controller-1.0.1-3.3.1.x86_64.rpm vncmanager-controller-gnome-1.0.1-3.3.1.x86_64.rpm vncmanager-controller-1.0.1-3.3.1.s390x.rpm vncmanager-controller-gnome-1.0.1-3.3.1.s390x.rpm vncmanager-controller-1.0.1-3.3.1.ppc64le.rpm vncmanager-controller-gnome-1.0.1-3.3.1.ppc64le.rpm vncmanager-controller-1.0.1-3.3.1.aarch64.rpm vncmanager-controller-gnome-1.0.1-3.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-2565 Security update for fastjar low SUSE Updates openSUSE-SLE 15.3 This update for fastjar fixes the following issues: - CVE-2010-2322: Fixed a directory traversal vulnerabilities. (bsc#1188517) fastjar-0.98-3.6.2.src.rpm fastjar-0.98-3.6.2.x86_64.rpm fastjar-0.98-3.6.2.s390x.rpm fastjar-0.98-3.6.2.ppc64le.rpm fastjar-0.98-3.6.2.aarch64.rpm openSUSE-SLE-15.3-2021-2605 Security update for mariadb important SUSE Updates openSUSE-SLE 15.3 This update for mariadb fixes the following issues: - Update to 10.2.39 (bsc#1182739) - CVE-2021-2166: DML unspecified vulnerability lead to complete DOS. (bsc#1185870) - CVE-2021-2154: DML unspecified vulnerability can lead to complete DOS. (bsc#1185872) - CVE-2021-27928: Fixed a remote code execution issue. (bsc#1183770) libmariadbd-devel-10.5.11-3.3.1.x86_64.rpm libmariadbd19-10.5.11-3.3.1.x86_64.rpm mariadb-10.5.11-3.3.1.src.rpm mariadb-10.5.11-3.3.1.x86_64.rpm mariadb-bench-10.5.11-3.3.1.x86_64.rpm mariadb-client-10.5.11-3.3.1.x86_64.rpm mariadb-errormessages-10.5.11-3.3.1.noarch.rpm mariadb-rpm-macros-10.5.11-3.3.1.x86_64.rpm mariadb-test-10.5.11-3.3.1.x86_64.rpm mariadb-tools-10.5.11-3.3.1.x86_64.rpm libmariadbd-devel-10.5.11-3.3.1.s390x.rpm libmariadbd19-10.5.11-3.3.1.s390x.rpm mariadb-10.5.11-3.3.1.s390x.rpm mariadb-bench-10.5.11-3.3.1.s390x.rpm mariadb-client-10.5.11-3.3.1.s390x.rpm mariadb-rpm-macros-10.5.11-3.3.1.s390x.rpm mariadb-test-10.5.11-3.3.1.s390x.rpm mariadb-tools-10.5.11-3.3.1.s390x.rpm libmariadbd-devel-10.5.11-3.3.1.ppc64le.rpm libmariadbd19-10.5.11-3.3.1.ppc64le.rpm mariadb-10.5.11-3.3.1.ppc64le.rpm mariadb-bench-10.5.11-3.3.1.ppc64le.rpm mariadb-client-10.5.11-3.3.1.ppc64le.rpm mariadb-rpm-macros-10.5.11-3.3.1.ppc64le.rpm mariadb-test-10.5.11-3.3.1.ppc64le.rpm mariadb-tools-10.5.11-3.3.1.ppc64le.rpm libmariadbd-devel-10.5.11-3.3.1.aarch64.rpm libmariadbd19-10.5.11-3.3.1.aarch64.rpm mariadb-10.5.11-3.3.1.aarch64.rpm mariadb-bench-10.5.11-3.3.1.aarch64.rpm mariadb-client-10.5.11-3.3.1.aarch64.rpm mariadb-rpm-macros-10.5.11-3.3.1.aarch64.rpm mariadb-test-10.5.11-3.3.1.aarch64.rpm mariadb-tools-10.5.11-3.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-2899 Recommended update for systemd-rpm-macros moderate SUSE Updates openSUSE-SLE 15.3 This update for systemd-rpm-macros fixes the following issues: - Fixed an issue whe zypper ignores the ordering constraints. (bsc#1187332) - Introduce '%sysusers_create_package': '%sysusers_create' and '%sysusers_create_inline' are now deprecated and the new macro should be used instead. - %sysusers_create_inline: use here-docs instead of echo (bsc#1186282) systemd-rpm-macros-8-7.18.1.noarch.rpm systemd-rpm-macros-8-7.18.1.src.rpm openSUSE-SLE-15.3-2021-2987 Recommended update for pesign low SUSE Updates openSUSE-SLE 15.3 This update for pesign fixes the following issues: - Link as Position Independent Executable (bsc#1184124). pesign-0.112-4.9.1.src.rpm pesign-0.112-4.9.1.x86_64.rpm pesign-0.112-4.9.1.aarch64.rpm openSUSE-SLE-15.3-2021-2863 Recommended update for python-dbus-python moderate SUSE Updates openSUSE-SLE 15.3 This update for python-dbus-python fixes the following issues: - Update to latest version from tumbleweed. (jsc#ECO-3589, bsc#1183818) - update to 1.2.16: * All tests are run even if the 'tap.py' module is not available, althoug diagnostics for failing tests will be better if it is present. - Support builds with more than one python3 flavor - Clean duplicate python flavor variables for configure - Version update to version 1.2.14: * Ensure that the numeric types from dbus.types get the same str() under Python 3.8 that they did under previous versions. * Disable -Winline. * Add clearer license information using SPDX-License-Identifier. * Include inherited methods and properties when documenting objects, which regressed when migrating from epydoc to sphinx. * Add missing variant_level member to UnixFd type, for parity with the other dbus.types types * Don't reply to method calls if they have the NO_REPLY_EXPECTED flag * Silence '-Wcast-function-type' with gcc 8. * Fix distcheck with python3.7 by deleting '__pycache__' during uninstall. * Consistently save and restore the exception indicator when called from C code. - Add missing dependency for pkg-config files - Version update to version 1.2.8: * Python 2.7 required or 3.4 respectively * Upstream dropped epydoc completely - Add dbus-1-python3 package - Make BusConnection.list_activatable_names actually call struct entries than the signature allows with libdbus 1.4 imports dbus, is finalized, is re-initialized, and re-imports - When removing signal matches, clean up internal state, avoiding a memory leak in long-lived Python processes that connect to - When setting the sender of a message, allow it to be org.freedesktop.DBus so you can implement a D-Bus daemon - New package: dbus-1-python-devel python-dbus-python-1.2.16-6.3.1.src.rpm python-dbus-python-common-devel-1.2.16-6.3.1.x86_64.rpm python2-dbus-python-1.2.16-6.3.1.x86_64.rpm python2-dbus-python-devel-1.2.16-6.3.1.x86_64.rpm python3-dbus-python-1.2.16-6.3.1.x86_64.rpm python3-dbus-python-devel-1.2.16-6.3.1.x86_64.rpm python-dbus-python-common-devel-1.2.16-6.3.1.s390x.rpm python2-dbus-python-1.2.16-6.3.1.s390x.rpm python2-dbus-python-devel-1.2.16-6.3.1.s390x.rpm python3-dbus-python-1.2.16-6.3.1.s390x.rpm python3-dbus-python-devel-1.2.16-6.3.1.s390x.rpm python-dbus-python-common-devel-1.2.16-6.3.1.ppc64le.rpm python2-dbus-python-1.2.16-6.3.1.ppc64le.rpm python2-dbus-python-devel-1.2.16-6.3.1.ppc64le.rpm python3-dbus-python-1.2.16-6.3.1.ppc64le.rpm python3-dbus-python-devel-1.2.16-6.3.1.ppc64le.rpm python-dbus-python-common-devel-1.2.16-6.3.1.aarch64.rpm python2-dbus-python-1.2.16-6.3.1.aarch64.rpm python2-dbus-python-devel-1.2.16-6.3.1.aarch64.rpm python3-dbus-python-1.2.16-6.3.1.aarch64.rpm python3-dbus-python-devel-1.2.16-6.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-2781 Recommended update for psqlODBC moderate SUSE Updates openSUSE-SLE 15.3 This update for psqlODBC fixes the following issues: - Update to 13.01.0000: * Fix a bug of CC_send_query_append() when the ignore_roundtrip_time flag is on. * Add a call for SQLDescribeCol() before SQLExecute() to prepare-test. * Add a *update returning* test case to insertreturning regression test. * Let SQLDescribeCol() use parsed result when the current executed result is NULL. * Let SQLExecute() destroy the old result first. * Forget to apply disable_convert_func flag to VARCHAR and LONGVARCHAR. * Prioritize DISABLE_KEEPALIVE checkbox over the disable_keepalive bit of ExtraOptions. * Format check for ExtraOptions of setup dialog. - Update to 13.00.0000: * Add support for CONVERT scalar function. * Cope with the case that openssl libraries link msvc runtimes other than libraries which psqlodbc or libpq links. * Call AC_CHECK_SIZEOF() or AC_CHECK_TYPES() macros at earlier stage where LIBS variable isn't set yet. * Fix a compilation error with GCC 10 due to conflicting variable names. * Remove curr_param_result property of StatementClass and separate parsed result from the exec result. * Add support for development with VC16(Visual Studio 2019). * Hold the first and last result for parametrized SQL statements with array of parameters. * This would improve the performance of bulk inserts/updates etc. * Revise the handling of QResultClass list. * Introduce macros QR_concat(), QR_detach() and QR_next(). * Correct the handling of SQL_ROW_ERROR and SQL_ROW_SUCCESS_WITH_INFO. * Remove the single table restriction in SC_set_SS_columnkey. * Improve error reporting about SC_pos_reload_needed(). - Update to 12.02.0000: * Add a new *Display Optional Error Message* option. * Handle notice messages in libpq_bind_and_exec(). * Ignore PQtransactionStatus PQTRANS_ACTIVE in LIBPQ_update_transaction_status(). PQTRANS_ACTIVE isn't a transaction status. * Improve execution of parameterized SQL statements with arrays * Add a new option IgnoreTimeout. * An improvement for psqlodbc developpers. Make it possible to call some shell scripts from other directories. psqlODBC-13.01.0000-3.9.1.src.rpm psqlODBC-13.01.0000-3.9.1.x86_64.rpm psqlODBC-13.01.0000-3.9.1.s390x.rpm psqlODBC-13.01.0000-3.9.1.ppc64le.rpm psqlODBC-13.01.0000-3.9.1.aarch64.rpm openSUSE-SLE-15.3-2021-3020 Security update for apache2-mod_auth_openidc moderate SUSE Updates openSUSE-SLE 15.3 This update for apache2-mod_auth_openidc fixes the following issues: - CVE-2021-32785: format string bug via hiredis (bsc#1188638) - CVE-2021-32786: open redirect in logout functionality (bsc#1188639) - CVE-2021-32791: Hardcoded static IV and AAD with a reused key in AES GCM encryption (bsc#1188849) - CVE-2021-32792: XSS when using OIDCPreservePost On (bsc#1188848) apache2-mod_auth_openidc-2.3.8-3.15.1.src.rpm apache2-mod_auth_openidc-2.3.8-3.15.1.x86_64.rpm apache2-mod_auth_openidc-2.3.8-3.15.1.s390x.rpm apache2-mod_auth_openidc-2.3.8-3.15.1.ppc64le.rpm apache2-mod_auth_openidc-2.3.8-3.15.1.aarch64.rpm openSUSE-SLE-15.3-2021-2800 Security update for krb5 important SUSE Updates openSUSE-SLE 15.3 This update for krb5 fixes the following issues: - CVE-2021-36222: Fixed KDC null deref on bad encrypted challenge. (bsc#1188571) krb5-1.16.3-3.21.1.src.rpm krb5-1.16.3-3.21.1.x86_64.rpm krb5-32bit-1.16.3-3.21.1.x86_64.rpm krb5-client-1.16.3-3.21.1.x86_64.rpm krb5-devel-1.16.3-3.21.1.x86_64.rpm krb5-devel-32bit-1.16.3-3.21.1.x86_64.rpm krb5-mini-1.16.3-3.21.1.src.rpm krb5-mini-1.16.3-3.21.1.x86_64.rpm krb5-mini-devel-1.16.3-3.21.1.x86_64.rpm krb5-plugin-kdb-ldap-1.16.3-3.21.1.x86_64.rpm krb5-plugin-preauth-otp-1.16.3-3.21.1.x86_64.rpm krb5-plugin-preauth-pkinit-1.16.3-3.21.1.x86_64.rpm krb5-server-1.16.3-3.21.1.x86_64.rpm krb5-1.16.3-3.21.1.s390x.rpm krb5-client-1.16.3-3.21.1.s390x.rpm krb5-devel-1.16.3-3.21.1.s390x.rpm krb5-mini-1.16.3-3.21.1.s390x.rpm krb5-mini-devel-1.16.3-3.21.1.s390x.rpm krb5-plugin-kdb-ldap-1.16.3-3.21.1.s390x.rpm krb5-plugin-preauth-otp-1.16.3-3.21.1.s390x.rpm krb5-plugin-preauth-pkinit-1.16.3-3.21.1.s390x.rpm krb5-server-1.16.3-3.21.1.s390x.rpm krb5-1.16.3-3.21.1.ppc64le.rpm krb5-client-1.16.3-3.21.1.ppc64le.rpm krb5-devel-1.16.3-3.21.1.ppc64le.rpm krb5-mini-1.16.3-3.21.1.ppc64le.rpm krb5-mini-devel-1.16.3-3.21.1.ppc64le.rpm krb5-plugin-kdb-ldap-1.16.3-3.21.1.ppc64le.rpm krb5-plugin-preauth-otp-1.16.3-3.21.1.ppc64le.rpm krb5-plugin-preauth-pkinit-1.16.3-3.21.1.ppc64le.rpm krb5-server-1.16.3-3.21.1.ppc64le.rpm krb5-1.16.3-3.21.1.aarch64.rpm krb5-client-1.16.3-3.21.1.aarch64.rpm krb5-devel-1.16.3-3.21.1.aarch64.rpm krb5-mini-1.16.3-3.21.1.aarch64.rpm krb5-mini-devel-1.16.3-3.21.1.aarch64.rpm krb5-plugin-kdb-ldap-1.16.3-3.21.1.aarch64.rpm krb5-plugin-preauth-otp-1.16.3-3.21.1.aarch64.rpm krb5-plugin-preauth-pkinit-1.16.3-3.21.1.aarch64.rpm krb5-server-1.16.3-3.21.1.aarch64.rpm openSUSE-SLE-15.3-2021-2849 Recommended update for graphviz moderate SUSE Updates openSUSE-SLE 15.3 This update for graphviz fixes the following issues: - Tool 'dot', provided by graphviz, crashes on specific data input (bsc#1151207) graphviz-2.40.1-6.12.1.src.rpm graphviz-2.40.1-6.12.1.x86_64.rpm graphviz-addons-2.40.1-6.12.1.src.rpm graphviz-devel-2.40.1-6.12.1.x86_64.rpm graphviz-doc-2.40.1-6.12.1.x86_64.rpm graphviz-gd-2.40.1-6.12.1.x86_64.rpm graphviz-gnome-2.40.1-6.12.1.x86_64.rpm graphviz-guile-2.40.1-6.12.1.x86_64.rpm graphviz-gvedit-2.40.1-6.12.1.x86_64.rpm graphviz-java-2.40.1-6.12.1.x86_64.rpm graphviz-lua-2.40.1-6.12.1.x86_64.rpm graphviz-perl-2.40.1-6.12.1.x86_64.rpm graphviz-php-2.40.1-6.12.1.x86_64.rpm graphviz-plugins-core-2.40.1-6.12.1.x86_64.rpm graphviz-python-2.40.1-6.12.1.x86_64.rpm graphviz-ruby-2.40.1-6.12.1.x86_64.rpm graphviz-smyrna-2.40.1-6.12.1.x86_64.rpm graphviz-tcl-2.40.1-6.12.1.x86_64.rpm libgraphviz6-2.40.1-6.12.1.x86_64.rpm graphviz-2.40.1-6.12.1.s390x.rpm graphviz-devel-2.40.1-6.12.1.s390x.rpm graphviz-doc-2.40.1-6.12.1.s390x.rpm graphviz-gd-2.40.1-6.12.1.s390x.rpm graphviz-gnome-2.40.1-6.12.1.s390x.rpm graphviz-guile-2.40.1-6.12.1.s390x.rpm graphviz-gvedit-2.40.1-6.12.1.s390x.rpm graphviz-java-2.40.1-6.12.1.s390x.rpm graphviz-lua-2.40.1-6.12.1.s390x.rpm graphviz-perl-2.40.1-6.12.1.s390x.rpm graphviz-php-2.40.1-6.12.1.s390x.rpm graphviz-plugins-core-2.40.1-6.12.1.s390x.rpm graphviz-python-2.40.1-6.12.1.s390x.rpm graphviz-ruby-2.40.1-6.12.1.s390x.rpm graphviz-smyrna-2.40.1-6.12.1.s390x.rpm graphviz-tcl-2.40.1-6.12.1.s390x.rpm libgraphviz6-2.40.1-6.12.1.s390x.rpm graphviz-2.40.1-6.12.1.ppc64le.rpm graphviz-devel-2.40.1-6.12.1.ppc64le.rpm graphviz-doc-2.40.1-6.12.1.ppc64le.rpm graphviz-gd-2.40.1-6.12.1.ppc64le.rpm graphviz-gnome-2.40.1-6.12.1.ppc64le.rpm graphviz-guile-2.40.1-6.12.1.ppc64le.rpm graphviz-gvedit-2.40.1-6.12.1.ppc64le.rpm graphviz-java-2.40.1-6.12.1.ppc64le.rpm graphviz-lua-2.40.1-6.12.1.ppc64le.rpm graphviz-perl-2.40.1-6.12.1.ppc64le.rpm graphviz-php-2.40.1-6.12.1.ppc64le.rpm graphviz-plugins-core-2.40.1-6.12.1.ppc64le.rpm graphviz-python-2.40.1-6.12.1.ppc64le.rpm graphviz-ruby-2.40.1-6.12.1.ppc64le.rpm graphviz-smyrna-2.40.1-6.12.1.ppc64le.rpm graphviz-tcl-2.40.1-6.12.1.ppc64le.rpm libgraphviz6-2.40.1-6.12.1.ppc64le.rpm graphviz-2.40.1-6.12.1.aarch64.rpm graphviz-devel-2.40.1-6.12.1.aarch64.rpm graphviz-doc-2.40.1-6.12.1.aarch64.rpm graphviz-gd-2.40.1-6.12.1.aarch64.rpm graphviz-gnome-2.40.1-6.12.1.aarch64.rpm graphviz-guile-2.40.1-6.12.1.aarch64.rpm graphviz-gvedit-2.40.1-6.12.1.aarch64.rpm graphviz-java-2.40.1-6.12.1.aarch64.rpm graphviz-lua-2.40.1-6.12.1.aarch64.rpm graphviz-perl-2.40.1-6.12.1.aarch64.rpm graphviz-php-2.40.1-6.12.1.aarch64.rpm graphviz-plugins-core-2.40.1-6.12.1.aarch64.rpm graphviz-python-2.40.1-6.12.1.aarch64.rpm graphviz-ruby-2.40.1-6.12.1.aarch64.rpm graphviz-smyrna-2.40.1-6.12.1.aarch64.rpm graphviz-tcl-2.40.1-6.12.1.aarch64.rpm libgraphviz6-2.40.1-6.12.1.aarch64.rpm openSUSE-SLE-15.3-2021-2888 Recommended update for yast2-nfs-client moderate SUSE Updates openSUSE-SLE 15.3 This update for yast2-nfs-client fixes the following issues: - Support systemd mount options in fstab (bsc#1187781) yast2-nfs-client-4.3.4-3.3.1.noarch.rpm yast2-nfs-client-4.3.4-3.3.1.src.rpm openSUSE-SLE-15.3-2021-2883 Recommended update for yast2-nfs-server moderate SUSE Updates openSUSE-SLE 15.3 This update for yast2-nfs-server fixes the following issues: - Set X-SuSE-YaST-AutoInstClient in the desktop file to properly determine the client name. (bsc#1188618) - Fix the corresponding section name in the package specification. (bsc#1188618) yast2-nfs-common-4.3.4-3.5.1.noarch.rpm yast2-nfs-server-4.3.4-3.5.1.noarch.rpm yast2-nfs-server-4.3.4-3.5.1.src.rpm openSUSE-SLE-15.3-2021-2898 Recommended update for grub2 moderate SUSE Updates openSUSE-SLE 15.3 This update for grub2 fixes the following issues: - Fix error not a btrfs filesystem on s390x (bsc#1187645) - Fix error gfxterm isn't found with multiple terminals (bsc#1187565) - Fix boot failure after kdump due to the content of grub.cfg is not completed with pending modificaton in xfs journal (bsc#1186975) grub2-2.04-22.3.1.src.rpm grub2-2.04-22.3.1.x86_64.rpm grub2-arm64-efi-2.04-22.3.1.noarch.rpm grub2-arm64-efi-debug-2.04-22.3.1.noarch.rpm grub2-branding-upstream-2.04-22.3.1.x86_64.rpm grub2-i386-pc-2.04-22.3.1.noarch.rpm grub2-i386-pc-debug-2.04-22.3.1.noarch.rpm grub2-powerpc-ieee1275-2.04-22.3.1.noarch.rpm grub2-powerpc-ieee1275-debug-2.04-22.3.1.noarch.rpm grub2-snapper-plugin-2.04-22.3.1.noarch.rpm grub2-systemd-sleep-plugin-2.04-22.3.1.noarch.rpm grub2-x86_64-efi-2.04-22.3.1.noarch.rpm grub2-x86_64-efi-debug-2.04-22.3.1.noarch.rpm grub2-x86_64-xen-2.04-22.3.1.noarch.rpm grub2-2.04-22.3.1.s390x.rpm grub2-branding-upstream-2.04-22.3.1.s390x.rpm grub2-s390x-emu-2.04-22.3.1.s390x.rpm grub2-s390x-emu-debug-2.04-22.3.1.s390x.rpm grub2-2.04-22.3.1.ppc64le.rpm grub2-branding-upstream-2.04-22.3.1.ppc64le.rpm grub2-2.04-22.3.1.aarch64.rpm grub2-branding-upstream-2.04-22.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-2821 Recommended update for ClusterTools2 moderate SUSE Updates openSUSE-SLE 15.3 This update for ClusterTools2 fixes the following issues: - change version from 3.1.0 to 3.1.1 - As some of the supportconfig plugins of ClusterTools2 take very long time to process, we will disable these plugins by default. (bsc#1186119) - Add file samples to support SLE15. (bsc#1166943) ClusterTools2-3.1.1-8.6.1.noarch.rpm ClusterTools2-3.1.1-8.6.1.src.rpm openSUSE-SLE-15.3-2021-2982 Recommended update for python moderate SUSE Updates openSUSE-SLE 15.3 This update for python fixes the following issues: - Fix for python base to contain the same version numbers as are in reality the ones in the bundled wheels. (bsc#1187668) libpython2_7-1_0-2.7.18-7.58.1.x86_64.rpm libpython2_7-1_0-32bit-2.7.18-7.58.1.x86_64.rpm python-2.7.18-7.58.1.src.rpm python-2.7.18-7.58.1.x86_64.rpm python-32bit-2.7.18-7.58.1.x86_64.rpm python-base-2.7.18-7.58.1.src.rpm python-base-2.7.18-7.58.1.x86_64.rpm python-base-32bit-2.7.18-7.58.1.x86_64.rpm python-curses-2.7.18-7.58.1.x86_64.rpm python-demo-2.7.18-7.58.1.x86_64.rpm python-devel-2.7.18-7.58.1.x86_64.rpm python-doc-2.7.18-7.58.1.noarch.rpm python-doc-2.7.18-7.58.1.src.rpm python-doc-pdf-2.7.18-7.58.1.noarch.rpm python-gdbm-2.7.18-7.58.1.x86_64.rpm python-idle-2.7.18-7.58.1.x86_64.rpm python-tk-2.7.18-7.58.1.x86_64.rpm python-xml-2.7.18-7.58.1.x86_64.rpm libpython2_7-1_0-2.7.18-7.58.1.s390x.rpm python-2.7.18-7.58.1.s390x.rpm python-base-2.7.18-7.58.1.s390x.rpm python-curses-2.7.18-7.58.1.s390x.rpm python-demo-2.7.18-7.58.1.s390x.rpm python-devel-2.7.18-7.58.1.s390x.rpm python-gdbm-2.7.18-7.58.1.s390x.rpm python-idle-2.7.18-7.58.1.s390x.rpm python-tk-2.7.18-7.58.1.s390x.rpm python-xml-2.7.18-7.58.1.s390x.rpm libpython2_7-1_0-2.7.18-7.58.1.ppc64le.rpm python-2.7.18-7.58.1.ppc64le.rpm python-base-2.7.18-7.58.1.ppc64le.rpm python-curses-2.7.18-7.58.1.ppc64le.rpm python-demo-2.7.18-7.58.1.ppc64le.rpm python-devel-2.7.18-7.58.1.ppc64le.rpm python-gdbm-2.7.18-7.58.1.ppc64le.rpm python-idle-2.7.18-7.58.1.ppc64le.rpm python-tk-2.7.18-7.58.1.ppc64le.rpm python-xml-2.7.18-7.58.1.ppc64le.rpm libpython2_7-1_0-2.7.18-7.58.1.aarch64.rpm python-2.7.18-7.58.1.aarch64.rpm python-base-2.7.18-7.58.1.aarch64.rpm python-curses-2.7.18-7.58.1.aarch64.rpm python-demo-2.7.18-7.58.1.aarch64.rpm python-devel-2.7.18-7.58.1.aarch64.rpm python-gdbm-2.7.18-7.58.1.aarch64.rpm python-idle-2.7.18-7.58.1.aarch64.rpm python-tk-2.7.18-7.58.1.aarch64.rpm python-xml-2.7.18-7.58.1.aarch64.rpm openSUSE-SLE-15.3-2021-2869 Recommended update for yast2-update moderate SUSE Updates openSUSE-SLE 15.3 This update for yast2-update fixes the following issues: - Avoid to bind-mount /run twice. (bsc#1181066) yast2-update-4.3.3-3.3.1.src.rpm yast2-update-4.3.3-3.3.1.x86_64.rpm yast2-update-FACTORY-4.3.3-3.3.1.x86_64.rpm yast2-update-4.3.3-3.3.1.s390x.rpm yast2-update-FACTORY-4.3.3-3.3.1.s390x.rpm yast2-update-4.3.3-3.3.1.ppc64le.rpm yast2-update-FACTORY-4.3.3-3.3.1.ppc64le.rpm yast2-update-4.3.3-3.3.1.aarch64.rpm yast2-update-FACTORY-4.3.3-3.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-2881 Recommended update for yast2-nis-server moderate SUSE Updates openSUSE-SLE 15.3 This update for yast2-nis-server fixes the following issues: - Set X-SuSE-YaST-AutoInstClient in the desktop file to properly determine the client name. (bsc#1188644) yast2-nis-server-4.3.2-3.3.1.noarch.rpm yast2-nis-server-4.3.2-3.3.1.src.rpm openSUSE-SLE-15.3-2021-2901 Recommended update for insserv-compat moderate SUSE Updates openSUSE-SLE 15.3 This update for insserv-compat fixes the following issues: - Require sysvinit-tools. (bsc#1187941) insserv-compat-0.1-4.6.1.noarch.rpm insserv-compat-0.1-4.6.1.src.rpm openSUSE-SLE-15.3-2021-2871 Recommended update for bind moderate SUSE Updates openSUSE-SLE 15.3 This update for bind fixes the following issues: - Fix an assertion failure in the 'rehash()' function (bsc#1188763) When calculating the new hashtable bitsize, there was an off-by-one error that would allow the new bitsize to be larger than maximum allowed. - tsig-keygen is now used to generate DDNS keys (bsc#1187921) bind-9.16.6-12.54.2.src.rpm bind-devel-32bit-9.16.6-12.54.2.x86_64.rpm libbind9-1600-32bit-9.16.6-12.54.2.x86_64.rpm libdns1605-32bit-9.16.6-12.54.2.x86_64.rpm libirs1601-32bit-9.16.6-12.54.2.x86_64.rpm libisc1606-32bit-9.16.6-12.54.2.x86_64.rpm libisccc1600-32bit-9.16.6-12.54.2.x86_64.rpm libisccfg1600-32bit-9.16.6-12.54.2.x86_64.rpm libns1604-32bit-9.16.6-12.54.2.x86_64.rpm openSUSE-SLE-15.3-2021-2886 Recommended update for bind moderate SUSE Updates openSUSE-SLE 15.3 This update for bind fixes the following issues: - tsig-keygen is now used to generate DDNS keys (bsc#1187921) bind-9.16.6-22.10.1.src.rpm bind-9.16.6-22.10.1.x86_64.rpm bind-chrootenv-9.16.6-22.10.1.x86_64.rpm bind-devel-9.16.6-22.10.1.x86_64.rpm bind-doc-9.16.6-22.10.1.noarch.rpm bind-utils-9.16.6-22.10.1.x86_64.rpm libbind9-1600-9.16.6-22.10.1.x86_64.rpm libdns1605-9.16.6-22.10.1.x86_64.rpm libirs-devel-9.16.6-22.10.1.x86_64.rpm libirs1601-9.16.6-22.10.1.x86_64.rpm libisc1606-9.16.6-22.10.1.x86_64.rpm libisccc1600-9.16.6-22.10.1.x86_64.rpm libisccfg1600-9.16.6-22.10.1.x86_64.rpm libns1604-9.16.6-22.10.1.x86_64.rpm python3-bind-9.16.6-22.10.1.noarch.rpm bind-9.16.6-22.10.1.s390x.rpm bind-chrootenv-9.16.6-22.10.1.s390x.rpm bind-devel-9.16.6-22.10.1.s390x.rpm bind-utils-9.16.6-22.10.1.s390x.rpm libbind9-1600-9.16.6-22.10.1.s390x.rpm libdns1605-9.16.6-22.10.1.s390x.rpm libirs-devel-9.16.6-22.10.1.s390x.rpm libirs1601-9.16.6-22.10.1.s390x.rpm libisc1606-9.16.6-22.10.1.s390x.rpm libisccc1600-9.16.6-22.10.1.s390x.rpm libisccfg1600-9.16.6-22.10.1.s390x.rpm libns1604-9.16.6-22.10.1.s390x.rpm bind-9.16.6-22.10.1.ppc64le.rpm bind-chrootenv-9.16.6-22.10.1.ppc64le.rpm bind-devel-9.16.6-22.10.1.ppc64le.rpm bind-utils-9.16.6-22.10.1.ppc64le.rpm libbind9-1600-9.16.6-22.10.1.ppc64le.rpm libdns1605-9.16.6-22.10.1.ppc64le.rpm libirs-devel-9.16.6-22.10.1.ppc64le.rpm libirs1601-9.16.6-22.10.1.ppc64le.rpm libisc1606-9.16.6-22.10.1.ppc64le.rpm libisccc1600-9.16.6-22.10.1.ppc64le.rpm libisccfg1600-9.16.6-22.10.1.ppc64le.rpm libns1604-9.16.6-22.10.1.ppc64le.rpm bind-9.16.6-22.10.1.aarch64.rpm bind-chrootenv-9.16.6-22.10.1.aarch64.rpm bind-devel-9.16.6-22.10.1.aarch64.rpm bind-utils-9.16.6-22.10.1.aarch64.rpm libbind9-1600-9.16.6-22.10.1.aarch64.rpm libdns1605-9.16.6-22.10.1.aarch64.rpm libirs-devel-9.16.6-22.10.1.aarch64.rpm libirs1601-9.16.6-22.10.1.aarch64.rpm libisc1606-9.16.6-22.10.1.aarch64.rpm libisccc1600-9.16.6-22.10.1.aarch64.rpm libisccfg1600-9.16.6-22.10.1.aarch64.rpm libns1604-9.16.6-22.10.1.aarch64.rpm openSUSE-SLE-15.3-2021-3028 Recommended update for wxWidgets-3_0 moderate SUSE Updates openSUSE-SLE 15.3 This update for wxWidgets-3_0 fixes the following issues: Update from version 3.0.3 to 3.0.5.1 (bsc#1180492, jsc#ECO-3376) - Workaround for the problem with overflowing the maximum command line length in MinGW builds not using configure. - Fix for a problem with 'wxSpinCtrl' in 'wxGTK' - Update the 'SOVERSION' - Relax the ABI changes avoiding to check for the exact match of '__GXX_ABI_VERSION'. - Build 'wxWidgets-3_0-nostl' variant with LTO disabled. (bsc#1162418) - Don't crash on trailing '%' in 'wxDateTime::Format()'. - Fix various problems when parsing invalid ZIP files. - Fix generic 'wxTimePickerCtrl' to accept max values from keyboard. - Multiple surrogate-related fixes in UTF-16 support. - Fix reading wide character data in 'wxFile::ReadAll()'. - Make parsing 'WAV' data more robust. - Fix copy 'ctor' in numeric validators classes. - Fix a memory error when 'wxDataViewCtrl' is deleted. - Avoid some GTK+ run-time errors when using 'wx{File,Dir}PickerCtrl'. - Prevent breaking binaries, if C++11 is enabled. libwx_baseu-suse-nostl3_0_5-3.0.5.1-11.3.2.x86_64.rpm libwx_baseu-suse3_0_5-3.0.5.1-11.3.2.x86_64.rpm libwx_baseu-suse3_0_5-32bit-3.0.5.1-11.3.2.x86_64.rpm libwx_baseu_net-suse-nostl3_0_5-3.0.5.1-11.3.2.x86_64.rpm libwx_baseu_net-suse3_0_5-3.0.5.1-11.3.2.x86_64.rpm libwx_baseu_net-suse3_0_5-32bit-3.0.5.1-11.3.2.x86_64.rpm libwx_baseu_xml-suse-nostl3_0_5-3.0.5.1-11.3.2.x86_64.rpm libwx_baseu_xml-suse3_0_5-3.0.5.1-11.3.2.x86_64.rpm libwx_baseu_xml-suse3_0_5-32bit-3.0.5.1-11.3.2.x86_64.rpm libwx_gtk2u_adv-suse-nostl3_0_5-3.0.5.1-11.3.2.x86_64.rpm libwx_gtk2u_adv-suse3_0_5-3.0.5.1-11.3.2.x86_64.rpm libwx_gtk2u_adv-suse3_0_5-32bit-3.0.5.1-11.3.2.x86_64.rpm libwx_gtk2u_aui-suse-nostl3_0_5-3.0.5.1-11.3.2.x86_64.rpm libwx_gtk2u_aui-suse3_0_5-3.0.5.1-11.3.2.x86_64.rpm libwx_gtk2u_aui-suse3_0_5-32bit-3.0.5.1-11.3.2.x86_64.rpm libwx_gtk2u_core-suse-nostl3_0_5-3.0.5.1-11.3.2.x86_64.rpm libwx_gtk2u_core-suse3_0_5-3.0.5.1-11.3.2.x86_64.rpm libwx_gtk2u_core-suse3_0_5-32bit-3.0.5.1-11.3.2.x86_64.rpm libwx_gtk2u_gl-suse-nostl3_0_5-3.0.5.1-11.3.2.x86_64.rpm libwx_gtk2u_gl-suse3_0_5-3.0.5.1-11.3.2.x86_64.rpm libwx_gtk2u_gl-suse3_0_5-32bit-3.0.5.1-11.3.2.x86_64.rpm libwx_gtk2u_html-suse-nostl3_0_5-3.0.5.1-11.3.2.x86_64.rpm libwx_gtk2u_html-suse3_0_5-3.0.5.1-11.3.2.x86_64.rpm libwx_gtk2u_html-suse3_0_5-32bit-3.0.5.1-11.3.2.x86_64.rpm libwx_gtk2u_media-suse-nostl3_0_5-3.0.5.1-11.3.2.x86_64.rpm libwx_gtk2u_media-suse3_0_5-3.0.5.1-11.3.2.x86_64.rpm libwx_gtk2u_media-suse3_0_5-32bit-3.0.5.1-11.3.2.x86_64.rpm libwx_gtk2u_propgrid-suse-nostl3_0_5-3.0.5.1-11.3.2.x86_64.rpm libwx_gtk2u_propgrid-suse3_0_5-3.0.5.1-11.3.2.x86_64.rpm libwx_gtk2u_propgrid-suse3_0_5-32bit-3.0.5.1-11.3.2.x86_64.rpm libwx_gtk2u_qa-suse-nostl3_0_5-3.0.5.1-11.3.2.x86_64.rpm libwx_gtk2u_qa-suse3_0_5-3.0.5.1-11.3.2.x86_64.rpm libwx_gtk2u_qa-suse3_0_5-32bit-3.0.5.1-11.3.2.x86_64.rpm libwx_gtk2u_ribbon-suse-nostl3_0_5-3.0.5.1-11.3.2.x86_64.rpm libwx_gtk2u_ribbon-suse3_0_5-3.0.5.1-11.3.2.x86_64.rpm libwx_gtk2u_ribbon-suse3_0_5-32bit-3.0.5.1-11.3.2.x86_64.rpm libwx_gtk2u_richtext-suse-nostl3_0_5-3.0.5.1-11.3.2.x86_64.rpm libwx_gtk2u_richtext-suse3_0_5-3.0.5.1-11.3.2.x86_64.rpm libwx_gtk2u_richtext-suse3_0_5-32bit-3.0.5.1-11.3.2.x86_64.rpm libwx_gtk2u_stc-suse-nostl3_0_5-3.0.5.1-11.3.2.x86_64.rpm libwx_gtk2u_stc-suse3_0_5-3.0.5.1-11.3.2.x86_64.rpm libwx_gtk2u_stc-suse3_0_5-32bit-3.0.5.1-11.3.2.x86_64.rpm libwx_gtk2u_xrc-suse-nostl3_0_5-3.0.5.1-11.3.2.x86_64.rpm libwx_gtk2u_xrc-suse3_0_5-3.0.5.1-11.3.2.x86_64.rpm libwx_gtk2u_xrc-suse3_0_5-32bit-3.0.5.1-11.3.2.x86_64.rpm wxWidgets-3_0-3.0.5.1-11.3.2.src.rpm wxWidgets-3_0-devel-3.0.5.1-11.3.2.x86_64.rpm wxWidgets-3_0-devel-32bit-3.0.5.1-11.3.2.x86_64.rpm wxWidgets-3_0-nostl-3.0.5.1-11.3.2.src.rpm wxWidgets-3_0-nostl-devel-3.0.5.1-11.3.2.x86_64.rpm wxWidgets-3_0-plugin-sound_sdlu-3_0-3.0.5.1-11.3.2.x86_64.rpm wxWidgets-3_0-plugin-sound_sdlu-3_0-32bit-3.0.5.1-11.3.2.x86_64.rpm wxWidgets-lang-3.0.5.1-11.3.2.noarch.rpm libwx_baseu-suse-nostl3_0_5-3.0.5.1-11.3.2.s390x.rpm libwx_baseu-suse3_0_5-3.0.5.1-11.3.2.s390x.rpm libwx_baseu_net-suse-nostl3_0_5-3.0.5.1-11.3.2.s390x.rpm libwx_baseu_net-suse3_0_5-3.0.5.1-11.3.2.s390x.rpm libwx_baseu_xml-suse-nostl3_0_5-3.0.5.1-11.3.2.s390x.rpm libwx_baseu_xml-suse3_0_5-3.0.5.1-11.3.2.s390x.rpm libwx_gtk2u_adv-suse-nostl3_0_5-3.0.5.1-11.3.2.s390x.rpm libwx_gtk2u_adv-suse3_0_5-3.0.5.1-11.3.2.s390x.rpm libwx_gtk2u_aui-suse-nostl3_0_5-3.0.5.1-11.3.2.s390x.rpm libwx_gtk2u_aui-suse3_0_5-3.0.5.1-11.3.2.s390x.rpm libwx_gtk2u_core-suse-nostl3_0_5-3.0.5.1-11.3.2.s390x.rpm libwx_gtk2u_core-suse3_0_5-3.0.5.1-11.3.2.s390x.rpm libwx_gtk2u_gl-suse-nostl3_0_5-3.0.5.1-11.3.2.s390x.rpm libwx_gtk2u_gl-suse3_0_5-3.0.5.1-11.3.2.s390x.rpm libwx_gtk2u_html-suse-nostl3_0_5-3.0.5.1-11.3.2.s390x.rpm libwx_gtk2u_html-suse3_0_5-3.0.5.1-11.3.2.s390x.rpm libwx_gtk2u_media-suse-nostl3_0_5-3.0.5.1-11.3.2.s390x.rpm libwx_gtk2u_media-suse3_0_5-3.0.5.1-11.3.2.s390x.rpm libwx_gtk2u_propgrid-suse-nostl3_0_5-3.0.5.1-11.3.2.s390x.rpm libwx_gtk2u_propgrid-suse3_0_5-3.0.5.1-11.3.2.s390x.rpm libwx_gtk2u_qa-suse-nostl3_0_5-3.0.5.1-11.3.2.s390x.rpm libwx_gtk2u_qa-suse3_0_5-3.0.5.1-11.3.2.s390x.rpm libwx_gtk2u_ribbon-suse-nostl3_0_5-3.0.5.1-11.3.2.s390x.rpm libwx_gtk2u_ribbon-suse3_0_5-3.0.5.1-11.3.2.s390x.rpm libwx_gtk2u_richtext-suse-nostl3_0_5-3.0.5.1-11.3.2.s390x.rpm libwx_gtk2u_richtext-suse3_0_5-3.0.5.1-11.3.2.s390x.rpm libwx_gtk2u_stc-suse-nostl3_0_5-3.0.5.1-11.3.2.s390x.rpm libwx_gtk2u_stc-suse3_0_5-3.0.5.1-11.3.2.s390x.rpm libwx_gtk2u_xrc-suse-nostl3_0_5-3.0.5.1-11.3.2.s390x.rpm libwx_gtk2u_xrc-suse3_0_5-3.0.5.1-11.3.2.s390x.rpm wxWidgets-3_0-devel-3.0.5.1-11.3.2.s390x.rpm wxWidgets-3_0-nostl-devel-3.0.5.1-11.3.2.s390x.rpm wxWidgets-3_0-plugin-sound_sdlu-3_0-3.0.5.1-11.3.2.s390x.rpm libwx_baseu-suse-nostl3_0_5-3.0.5.1-11.3.2.ppc64le.rpm libwx_baseu-suse3_0_5-3.0.5.1-11.3.2.ppc64le.rpm libwx_baseu_net-suse-nostl3_0_5-3.0.5.1-11.3.2.ppc64le.rpm libwx_baseu_net-suse3_0_5-3.0.5.1-11.3.2.ppc64le.rpm libwx_baseu_xml-suse-nostl3_0_5-3.0.5.1-11.3.2.ppc64le.rpm libwx_baseu_xml-suse3_0_5-3.0.5.1-11.3.2.ppc64le.rpm libwx_gtk2u_adv-suse-nostl3_0_5-3.0.5.1-11.3.2.ppc64le.rpm libwx_gtk2u_adv-suse3_0_5-3.0.5.1-11.3.2.ppc64le.rpm libwx_gtk2u_aui-suse-nostl3_0_5-3.0.5.1-11.3.2.ppc64le.rpm libwx_gtk2u_aui-suse3_0_5-3.0.5.1-11.3.2.ppc64le.rpm libwx_gtk2u_core-suse-nostl3_0_5-3.0.5.1-11.3.2.ppc64le.rpm libwx_gtk2u_core-suse3_0_5-3.0.5.1-11.3.2.ppc64le.rpm libwx_gtk2u_gl-suse-nostl3_0_5-3.0.5.1-11.3.2.ppc64le.rpm libwx_gtk2u_gl-suse3_0_5-3.0.5.1-11.3.2.ppc64le.rpm libwx_gtk2u_html-suse-nostl3_0_5-3.0.5.1-11.3.2.ppc64le.rpm libwx_gtk2u_html-suse3_0_5-3.0.5.1-11.3.2.ppc64le.rpm libwx_gtk2u_media-suse-nostl3_0_5-3.0.5.1-11.3.2.ppc64le.rpm libwx_gtk2u_media-suse3_0_5-3.0.5.1-11.3.2.ppc64le.rpm libwx_gtk2u_propgrid-suse-nostl3_0_5-3.0.5.1-11.3.2.ppc64le.rpm libwx_gtk2u_propgrid-suse3_0_5-3.0.5.1-11.3.2.ppc64le.rpm libwx_gtk2u_qa-suse-nostl3_0_5-3.0.5.1-11.3.2.ppc64le.rpm libwx_gtk2u_qa-suse3_0_5-3.0.5.1-11.3.2.ppc64le.rpm libwx_gtk2u_ribbon-suse-nostl3_0_5-3.0.5.1-11.3.2.ppc64le.rpm libwx_gtk2u_ribbon-suse3_0_5-3.0.5.1-11.3.2.ppc64le.rpm libwx_gtk2u_richtext-suse-nostl3_0_5-3.0.5.1-11.3.2.ppc64le.rpm libwx_gtk2u_richtext-suse3_0_5-3.0.5.1-11.3.2.ppc64le.rpm libwx_gtk2u_stc-suse-nostl3_0_5-3.0.5.1-11.3.2.ppc64le.rpm libwx_gtk2u_stc-suse3_0_5-3.0.5.1-11.3.2.ppc64le.rpm libwx_gtk2u_xrc-suse-nostl3_0_5-3.0.5.1-11.3.2.ppc64le.rpm libwx_gtk2u_xrc-suse3_0_5-3.0.5.1-11.3.2.ppc64le.rpm wxWidgets-3_0-devel-3.0.5.1-11.3.2.ppc64le.rpm wxWidgets-3_0-nostl-devel-3.0.5.1-11.3.2.ppc64le.rpm wxWidgets-3_0-plugin-sound_sdlu-3_0-3.0.5.1-11.3.2.ppc64le.rpm libwx_baseu-suse-nostl3_0_5-3.0.5.1-11.3.2.aarch64.rpm libwx_baseu-suse3_0_5-3.0.5.1-11.3.2.aarch64.rpm libwx_baseu-suse3_0_5-64bit-3.0.5.1-11.3.2.aarch64_ilp32.rpm libwx_baseu_net-suse-nostl3_0_5-3.0.5.1-11.3.2.aarch64.rpm libwx_baseu_net-suse3_0_5-3.0.5.1-11.3.2.aarch64.rpm libwx_baseu_net-suse3_0_5-64bit-3.0.5.1-11.3.2.aarch64_ilp32.rpm libwx_baseu_xml-suse-nostl3_0_5-3.0.5.1-11.3.2.aarch64.rpm libwx_baseu_xml-suse3_0_5-3.0.5.1-11.3.2.aarch64.rpm libwx_baseu_xml-suse3_0_5-64bit-3.0.5.1-11.3.2.aarch64_ilp32.rpm libwx_gtk2u_adv-suse-nostl3_0_5-3.0.5.1-11.3.2.aarch64.rpm libwx_gtk2u_adv-suse3_0_5-3.0.5.1-11.3.2.aarch64.rpm libwx_gtk2u_adv-suse3_0_5-64bit-3.0.5.1-11.3.2.aarch64_ilp32.rpm libwx_gtk2u_aui-suse-nostl3_0_5-3.0.5.1-11.3.2.aarch64.rpm libwx_gtk2u_aui-suse3_0_5-3.0.5.1-11.3.2.aarch64.rpm libwx_gtk2u_aui-suse3_0_5-64bit-3.0.5.1-11.3.2.aarch64_ilp32.rpm libwx_gtk2u_core-suse-nostl3_0_5-3.0.5.1-11.3.2.aarch64.rpm libwx_gtk2u_core-suse3_0_5-3.0.5.1-11.3.2.aarch64.rpm libwx_gtk2u_core-suse3_0_5-64bit-3.0.5.1-11.3.2.aarch64_ilp32.rpm libwx_gtk2u_gl-suse-nostl3_0_5-3.0.5.1-11.3.2.aarch64.rpm libwx_gtk2u_gl-suse3_0_5-3.0.5.1-11.3.2.aarch64.rpm libwx_gtk2u_gl-suse3_0_5-64bit-3.0.5.1-11.3.2.aarch64_ilp32.rpm libwx_gtk2u_html-suse-nostl3_0_5-3.0.5.1-11.3.2.aarch64.rpm libwx_gtk2u_html-suse3_0_5-3.0.5.1-11.3.2.aarch64.rpm libwx_gtk2u_html-suse3_0_5-64bit-3.0.5.1-11.3.2.aarch64_ilp32.rpm libwx_gtk2u_media-suse-nostl3_0_5-3.0.5.1-11.3.2.aarch64.rpm libwx_gtk2u_media-suse3_0_5-3.0.5.1-11.3.2.aarch64.rpm libwx_gtk2u_media-suse3_0_5-64bit-3.0.5.1-11.3.2.aarch64_ilp32.rpm libwx_gtk2u_propgrid-suse-nostl3_0_5-3.0.5.1-11.3.2.aarch64.rpm libwx_gtk2u_propgrid-suse3_0_5-3.0.5.1-11.3.2.aarch64.rpm libwx_gtk2u_propgrid-suse3_0_5-64bit-3.0.5.1-11.3.2.aarch64_ilp32.rpm libwx_gtk2u_qa-suse-nostl3_0_5-3.0.5.1-11.3.2.aarch64.rpm libwx_gtk2u_qa-suse3_0_5-3.0.5.1-11.3.2.aarch64.rpm libwx_gtk2u_qa-suse3_0_5-64bit-3.0.5.1-11.3.2.aarch64_ilp32.rpm libwx_gtk2u_ribbon-suse-nostl3_0_5-3.0.5.1-11.3.2.aarch64.rpm libwx_gtk2u_ribbon-suse3_0_5-3.0.5.1-11.3.2.aarch64.rpm libwx_gtk2u_ribbon-suse3_0_5-64bit-3.0.5.1-11.3.2.aarch64_ilp32.rpm libwx_gtk2u_richtext-suse-nostl3_0_5-3.0.5.1-11.3.2.aarch64.rpm libwx_gtk2u_richtext-suse3_0_5-3.0.5.1-11.3.2.aarch64.rpm libwx_gtk2u_richtext-suse3_0_5-64bit-3.0.5.1-11.3.2.aarch64_ilp32.rpm libwx_gtk2u_stc-suse-nostl3_0_5-3.0.5.1-11.3.2.aarch64.rpm libwx_gtk2u_stc-suse3_0_5-3.0.5.1-11.3.2.aarch64.rpm libwx_gtk2u_stc-suse3_0_5-64bit-3.0.5.1-11.3.2.aarch64_ilp32.rpm libwx_gtk2u_xrc-suse-nostl3_0_5-3.0.5.1-11.3.2.aarch64.rpm libwx_gtk2u_xrc-suse3_0_5-3.0.5.1-11.3.2.aarch64.rpm libwx_gtk2u_xrc-suse3_0_5-64bit-3.0.5.1-11.3.2.aarch64_ilp32.rpm wxWidgets-3_0-devel-3.0.5.1-11.3.2.aarch64.rpm wxWidgets-3_0-devel-64bit-3.0.5.1-11.3.2.aarch64_ilp32.rpm wxWidgets-3_0-nostl-devel-3.0.5.1-11.3.2.aarch64.rpm wxWidgets-3_0-plugin-sound_sdlu-3_0-3.0.5.1-11.3.2.aarch64.rpm wxWidgets-3_0-plugin-sound_sdlu-3_0-64bit-3.0.5.1-11.3.2.aarch64_ilp32.rpm openSUSE-SLE-15.3-2021-3139 Recommended update for openhpi moderate SUSE Updates openSUSE-SLE 15.3 This update for openhpi fixes the following issues: - Use /run not /var/run for PID file creation (bsc#1185173) - Remove group rights on config file (bsc#1190042) libopenhpi4-3.8.0-3.6.1.x86_64.rpm openhpi-3.8.0-3.6.1.src.rpm openhpi-3.8.0-3.6.1.x86_64.rpm openhpi-clients-3.8.0-3.6.1.x86_64.rpm openhpi-daemon-3.8.0-3.6.1.x86_64.rpm openhpi-devel-3.8.0-3.6.1.x86_64.rpm libopenhpi4-3.8.0-3.6.1.s390x.rpm openhpi-3.8.0-3.6.1.s390x.rpm openhpi-clients-3.8.0-3.6.1.s390x.rpm openhpi-daemon-3.8.0-3.6.1.s390x.rpm openhpi-devel-3.8.0-3.6.1.s390x.rpm libopenhpi4-3.8.0-3.6.1.ppc64le.rpm openhpi-3.8.0-3.6.1.ppc64le.rpm openhpi-clients-3.8.0-3.6.1.ppc64le.rpm openhpi-daemon-3.8.0-3.6.1.ppc64le.rpm openhpi-devel-3.8.0-3.6.1.ppc64le.rpm libopenhpi4-3.8.0-3.6.1.aarch64.rpm openhpi-3.8.0-3.6.1.aarch64.rpm openhpi-clients-3.8.0-3.6.1.aarch64.rpm openhpi-daemon-3.8.0-3.6.1.aarch64.rpm openhpi-devel-3.8.0-3.6.1.aarch64.rpm openSUSE-SLE-15.3-2021-2667 Recommended update for system-user-prometheus moderate SUSE Updates openSUSE-SLE 15.3 This recommended update for system-user-prometheus provides the following fixes: - Provide the user and group 'prometheus' to SUSE Enterprise Storage 6 needed by 'golang-github-prometheus-prometheus' (jsc#SLE-18254) system-user-prometheus-1.0.0-3.8.1.noarch.rpm system-user-prometheus-1.0.0-3.8.1.src.rpm openSUSE-SLE-15.3-2021-2598 Security update for webkit2gtk3 important SUSE Updates openSUSE-SLE 15.3 This update for webkit2gtk3 fixes the following issues: - Update to version 2.32.3: - CVE-2021-21775: Fixed a use-after-free vulnerability in the way certain events are processed for ImageLoader objects. A specially crafted web page can lead to a potential information leak and further memory corruption. A victim must be tricked into visiting a malicious web page to trigger this vulnerability. (bsc#1188697) - CVE-2021-21779: Fixed a use-after-free vulnerability in the way that WebKit GraphicsContext handles certain events. A specially crafted web page can lead to a potential information leak and further memory corruption. A victim must be tricked into visiting a malicious web page to trigger this vulnerability. (bsc#1188697) - CVE-2021-30663: An integer overflow was addressed with improved input validation. (bsc#1188697) - CVE-2021-30665: A memory corruption issue was addressed with improved state management. (bsc#1188697) - CVE-2021-30689: A logic issue was addressed with improved state management. (bsc#1188697) - CVE-2021-30720: A logic issue was addressed with improved restrictions. (bsc#1188697) - CVE-2021-30734: Multiple memory corruption issues were addressed with improved memory handling. (bsc#1188697) - CVE-2021-30744: A cross-origin issue with iframe elements was addressed with improved tracking of security origins. (bsc#1188697) - CVE-2021-30749: Multiple memory corruption issues were addressed with improved memory handling. (bsc#1188697) - CVE-2021-30758: A type confusion issue was addressed with improved state handling. (bsc#1188697) - CVE-2021-30795: A use after free issue was addressed with improved memory management. (bsc#1188697) - CVE-2021-30797: This issue was addressed with improved checks. (bsc#1188697) - CVE-2021-30799: Multiple memory corruption issues were addressed with improved memory handling. (bsc#1188697) libjavascriptcoregtk-4_0-18-2.32.3-9.1.x86_64.rpm libjavascriptcoregtk-4_0-18-32bit-2.32.3-9.1.x86_64.rpm libwebkit2gtk-4_0-37-2.32.3-9.1.x86_64.rpm libwebkit2gtk-4_0-37-32bit-2.32.3-9.1.x86_64.rpm libwebkit2gtk3-lang-2.32.3-9.1.noarch.rpm typelib-1_0-JavaScriptCore-4_0-2.32.3-9.1.x86_64.rpm typelib-1_0-WebKit2-4_0-2.32.3-9.1.x86_64.rpm typelib-1_0-WebKit2WebExtension-4_0-2.32.3-9.1.x86_64.rpm webkit-jsc-4-2.32.3-9.1.x86_64.rpm webkit2gtk-4_0-injected-bundles-2.32.3-9.1.x86_64.rpm webkit2gtk3-2.32.3-9.1.src.rpm webkit2gtk3-devel-2.32.3-9.1.x86_64.rpm webkit2gtk3-minibrowser-2.32.3-9.1.x86_64.rpm libjavascriptcoregtk-4_0-18-2.32.3-9.1.s390x.rpm libwebkit2gtk-4_0-37-2.32.3-9.1.s390x.rpm typelib-1_0-JavaScriptCore-4_0-2.32.3-9.1.s390x.rpm typelib-1_0-WebKit2-4_0-2.32.3-9.1.s390x.rpm typelib-1_0-WebKit2WebExtension-4_0-2.32.3-9.1.s390x.rpm webkit-jsc-4-2.32.3-9.1.s390x.rpm webkit2gtk-4_0-injected-bundles-2.32.3-9.1.s390x.rpm webkit2gtk3-devel-2.32.3-9.1.s390x.rpm webkit2gtk3-minibrowser-2.32.3-9.1.s390x.rpm libjavascriptcoregtk-4_0-18-2.32.3-9.1.ppc64le.rpm libwebkit2gtk-4_0-37-2.32.3-9.1.ppc64le.rpm typelib-1_0-JavaScriptCore-4_0-2.32.3-9.1.ppc64le.rpm typelib-1_0-WebKit2-4_0-2.32.3-9.1.ppc64le.rpm typelib-1_0-WebKit2WebExtension-4_0-2.32.3-9.1.ppc64le.rpm webkit-jsc-4-2.32.3-9.1.ppc64le.rpm webkit2gtk-4_0-injected-bundles-2.32.3-9.1.ppc64le.rpm webkit2gtk3-devel-2.32.3-9.1.ppc64le.rpm webkit2gtk3-minibrowser-2.32.3-9.1.ppc64le.rpm libjavascriptcoregtk-4_0-18-2.32.3-9.1.aarch64.rpm libwebkit2gtk-4_0-37-2.32.3-9.1.aarch64.rpm typelib-1_0-JavaScriptCore-4_0-2.32.3-9.1.aarch64.rpm typelib-1_0-WebKit2-4_0-2.32.3-9.1.aarch64.rpm typelib-1_0-WebKit2WebExtension-4_0-2.32.3-9.1.aarch64.rpm webkit-jsc-4-2.32.3-9.1.aarch64.rpm webkit2gtk-4_0-injected-bundles-2.32.3-9.1.aarch64.rpm webkit2gtk3-devel-2.32.3-9.1.aarch64.rpm webkit2gtk3-minibrowser-2.32.3-9.1.aarch64.rpm openSUSE-SLE-15.3-2021-3045 Recommended update for golang-github-vpenso-prometheus_slurm_exporter important SUSE Updates openSUSE-SLE 15.3 This update for golang-github-vpenso-prometheus_slurm_exporter fixes the following issues: - Update to version 0.19 - GPUs accounting has to be activated explicitly via cmd line option. - Export detailed usage info for every node (CPU, Memory). - With the present version of Slurm (20.11), GPU accounting in the prometheus-slurm-exporter will cause the exporter to terminate, thus it must not be enabled for the time being. (bsc#1188619) - Do not ship sources. golang-github-vpenso-prometheus_slurm_exporter-0.19-3.3.1.src.rpm golang-github-vpenso-prometheus_slurm_exporter-0.19-3.3.1.x86_64.rpm golang-github-vpenso-prometheus_slurm_exporter-0.19-3.3.1.s390x.rpm golang-github-vpenso-prometheus_slurm_exporter-0.19-3.3.1.ppc64le.rpm golang-github-vpenso-prometheus_slurm_exporter-0.19-3.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-2622 Security update for mysql-connector-java moderate SUSE Updates openSUSE-SLE 15.3 This update for mysql-connector-java fixes the following issues: - CVE-2020-2875: Unauthenticated attacker with network access via multiple protocols can compromise MySQL Connectors. (bsc#1173600) - CVE-2020-2934: Fixed a vulnerability which could cause a partial denial of service of MySQL Connectors. (bsc#1173600) - CVE-2020-2933: Fixed a vulnerability which could allows high privileged attacker with network access via multiple protocols to compromise MySQL Connectors. (bsc#1173600) mysql-connector-java-5.1.47-3.3.1.noarch.rpm mysql-connector-java-5.1.47-3.3.1.src.rpm openSUSE-SLE-15.3-2021-2798 Security update for java-1_8_0-openjdk important SUSE Updates openSUSE-SLE 15.3 This update for java-1_8_0-openjdk fixes the following issues: - Update to version jdk8u302 (icedtea 3.20.0) - CVE-2021-2341: Improve file transfers. (bsc#1188564) - CVE-2021-2369: Better jar file validation. (bsc#1188565) - CVE-2021-2388: Enhance compiler validation. (bsc#1188566) - CVE-2021-2161: Less ambiguous processing. (bsc#1185056) java-1_8_0-openjdk-1.8.0.302-3.55.2.src.rpm java-1_8_0-openjdk-1.8.0.302-3.55.2.x86_64.rpm java-1_8_0-openjdk-accessibility-1.8.0.302-3.55.2.x86_64.rpm java-1_8_0-openjdk-demo-1.8.0.302-3.55.2.x86_64.rpm java-1_8_0-openjdk-devel-1.8.0.302-3.55.2.x86_64.rpm java-1_8_0-openjdk-headless-1.8.0.302-3.55.2.x86_64.rpm java-1_8_0-openjdk-javadoc-1.8.0.302-3.55.2.noarch.rpm java-1_8_0-openjdk-src-1.8.0.302-3.55.2.x86_64.rpm java-1_8_0-openjdk-1.8.0.302-3.55.2.s390x.rpm java-1_8_0-openjdk-accessibility-1.8.0.302-3.55.2.s390x.rpm java-1_8_0-openjdk-demo-1.8.0.302-3.55.2.s390x.rpm java-1_8_0-openjdk-devel-1.8.0.302-3.55.2.s390x.rpm java-1_8_0-openjdk-headless-1.8.0.302-3.55.2.s390x.rpm java-1_8_0-openjdk-src-1.8.0.302-3.55.2.s390x.rpm java-1_8_0-openjdk-1.8.0.302-3.55.2.ppc64le.rpm java-1_8_0-openjdk-accessibility-1.8.0.302-3.55.2.ppc64le.rpm java-1_8_0-openjdk-demo-1.8.0.302-3.55.2.ppc64le.rpm java-1_8_0-openjdk-devel-1.8.0.302-3.55.2.ppc64le.rpm java-1_8_0-openjdk-headless-1.8.0.302-3.55.2.ppc64le.rpm java-1_8_0-openjdk-src-1.8.0.302-3.55.2.ppc64le.rpm java-1_8_0-openjdk-1.8.0.302-3.55.2.aarch64.rpm java-1_8_0-openjdk-accessibility-1.8.0.302-3.55.2.aarch64.rpm java-1_8_0-openjdk-demo-1.8.0.302-3.55.2.aarch64.rpm java-1_8_0-openjdk-devel-1.8.0.302-3.55.2.aarch64.rpm java-1_8_0-openjdk-headless-1.8.0.302-3.55.2.aarch64.rpm java-1_8_0-openjdk-src-1.8.0.302-3.55.2.aarch64.rpm openSUSE-SLE-15.3-2021-2915 Security update for gstreamer-plugins-good moderate SUSE Updates openSUSE-SLE 15.3 This update for gstreamer-plugins-good fixes the following issues: - CVE-2021-3498: Matroskademux: initialize track context out parameter to NULL before parsing (bsc#1184735). - CVE-2021-3497: Matroskademux: Fix extraction of multichannel WavPack (bsc#1184739). gstreamer-plugins-good-1.16.3-3.6.1.src.rpm gstreamer-plugins-good-1.16.3-3.6.1.x86_64.rpm gstreamer-plugins-good-32bit-1.16.3-3.6.1.x86_64.rpm gstreamer-plugins-good-doc-1.16.3-3.6.1.x86_64.rpm gstreamer-plugins-good-extra-1.16.3-3.6.1.x86_64.rpm gstreamer-plugins-good-extra-32bit-1.16.3-3.6.1.x86_64.rpm gstreamer-plugins-good-gtk-1.16.3-3.6.1.x86_64.rpm gstreamer-plugins-good-jack-1.16.3-3.6.1.x86_64.rpm gstreamer-plugins-good-jack-32bit-1.16.3-3.6.1.x86_64.rpm gstreamer-plugins-good-lang-1.16.3-3.6.1.noarch.rpm gstreamer-plugins-good-qtqml-1.16.3-3.6.1.x86_64.rpm gstreamer-plugins-good-1.16.3-3.6.1.s390x.rpm gstreamer-plugins-good-doc-1.16.3-3.6.1.s390x.rpm gstreamer-plugins-good-extra-1.16.3-3.6.1.s390x.rpm gstreamer-plugins-good-gtk-1.16.3-3.6.1.s390x.rpm gstreamer-plugins-good-jack-1.16.3-3.6.1.s390x.rpm gstreamer-plugins-good-qtqml-1.16.3-3.6.1.s390x.rpm gstreamer-plugins-good-1.16.3-3.6.1.ppc64le.rpm gstreamer-plugins-good-doc-1.16.3-3.6.1.ppc64le.rpm gstreamer-plugins-good-extra-1.16.3-3.6.1.ppc64le.rpm gstreamer-plugins-good-gtk-1.16.3-3.6.1.ppc64le.rpm gstreamer-plugins-good-jack-1.16.3-3.6.1.ppc64le.rpm gstreamer-plugins-good-qtqml-1.16.3-3.6.1.ppc64le.rpm gstreamer-plugins-good-1.16.3-3.6.1.aarch64.rpm gstreamer-plugins-good-doc-1.16.3-3.6.1.aarch64.rpm gstreamer-plugins-good-extra-1.16.3-3.6.1.aarch64.rpm gstreamer-plugins-good-gtk-1.16.3-3.6.1.aarch64.rpm gstreamer-plugins-good-jack-1.16.3-3.6.1.aarch64.rpm gstreamer-plugins-good-qtqml-1.16.3-3.6.1.aarch64.rpm openSUSE-SLE-15.3-2021-2855 Recommended update for rust moderate SUSE Updates openSUSE-SLE 15.3 This update for rust fixes the following issues: This ships the new parallel rust 1.54 version. Version 1.54.0 (2021-07-29) Language: - You can now use macros for values in built-in attribute macros. While a seemingly minor addition on its own, this enables a lot of powerful functionality when combined correctly. Most notably you can now include external documentation in your crate by writing the following. ```rust #![doc = include_str!("README.md")] ``` You can also use this to include auto-generated modules: ```rust #[path = concat!(env!("OUT_DIR"), "/generated.rs")] mod generated; ``` - You can now cast between unsized slice types (and types which contain unsized slices) in `const fn`. - You can now use multiple generic lifetimes with `impl Trait` where the lifetimes don't explicitly outlive another. In code this means that you can now have `impl Trait<'a, 'b>` where as before you could only have `impl Trait<'a, 'b> where 'b: 'a`. Compiler: - Rustc will now search for custom JSON targets in `/lib/rustlib/<target-triple>/target.json` where `/` is the "sysroot" directory. You can find your sysroot directory by running `rustc --print sysroot`. - Added `wasm` as a `target_family` for WebAssembly platforms. - You can now use `#[target_feature]` on safe functions when targeting WebAssembly platforms. - Improved debugger output for enums on Windows MSVC platforms. - Added tier 3\* support for `bpfel-unknown-none` and `bpfeb-unknown-none`. \* Refer to Rust's platform support page for more information on Rust's tiered platform support. Libraries: - `panic::panic_any` will now `#[track_caller]`. - Added `OutOfMemory` as a variant of `io::ErrorKind`. - `proc_macro::Literal` now implements `FromStr`. - The implementations of vendor intrinsics in core::arch have been significantly refactored. The main user-visible changes are a 50% reduction in the size of libcore.rlib and stricter validation of constant operands passed to intrinsics. The latter is technically a breaking change, but allows Rust to more closely match the C vendor intrinsics API. Stabilized APIs: - BTreeMap::into_keys - BTreeMap::into_values - HashMap::into_keys - HashMap::into_values - arch::wasm32 - VecDeque::binary_search - VecDeque::binary_search_by - VecDeque::binary_search_by_key - VecDeque::partition_point Cargo: - Added the `--prune <spec>` option to `cargo-tree` to remove a package from the dependency graph. - Added the `--depth` option to `cargo-tree` to print only to a certain depth in the tree. - Added the `no-proc-macro` value to `cargo-tree --edges` to hide procedural macro dependencies. - A new environment variable named `CARGO_TARGET_TMPDIR` is available. This variable points to a directory that integration tests and benches can use as a "scratchpad" for testing filesystem operations. cargo-1.54.0-21.6.2.i586.rpm rust-1.54.0-21.6.2.i586.rpm rust-1.54.0-21.6.2.src.rpm rust-gdb-1.54.0-21.6.2.i586.rpm cargo-1.54.0-21.6.2.x86_64.rpm cargo1.54-1.54.0-7.3.1.x86_64.rpm cargo1.54-doc-1.54.0-7.3.1.noarch.rpm rls-1.54.0-21.6.2.x86_64.rpm rls1.54-1.54.0-7.3.1.x86_64.rpm rust-1.54.0-21.6.2.x86_64.rpm rust-gdb-1.54.0-21.6.2.x86_64.rpm rust1.54-1.54.0-7.3.1.src.rpm rust1.54-1.54.0-7.3.1.x86_64.rpm rust1.54-analysis-1.54.0-7.3.1.x86_64.rpm rust1.54-doc-1.54.0-7.3.1.x86_64.rpm rust1.54-gdb-1.54.0-7.3.1.x86_64.rpm rust1.54-src-1.54.0-7.3.1.noarch.rpm cargo-1.54.0-21.6.2.s390x.rpm cargo1.54-1.54.0-7.3.1.s390x.rpm rust-1.54.0-21.6.2.s390x.rpm rust-gdb-1.54.0-21.6.2.s390x.rpm rust1.54-1.54.0-7.3.1.s390x.rpm rust1.54-gdb-1.54.0-7.3.1.s390x.rpm cargo-1.54.0-21.6.2.ppc64le.rpm cargo1.54-1.54.0-7.3.1.ppc64le.rpm rust-1.54.0-21.6.2.ppc64le.rpm rust-gdb-1.54.0-21.6.2.ppc64le.rpm rust1.54-1.54.0-7.3.1.ppc64le.rpm rust1.54-gdb-1.54.0-7.3.1.ppc64le.rpm cargo-1.54.0-21.6.2.aarch64.rpm cargo1.54-1.54.0-7.3.1.aarch64.rpm rls-1.54.0-21.6.2.aarch64.rpm rls1.54-1.54.0-7.3.1.aarch64.rpm rust-1.54.0-21.6.2.aarch64.rpm rust-gdb-1.54.0-21.6.2.aarch64.rpm rust1.54-1.54.0-7.3.1.aarch64.rpm rust1.54-analysis-1.54.0-7.3.1.aarch64.rpm rust1.54-doc-1.54.0-7.3.1.aarch64.rpm rust1.54-gdb-1.54.0-7.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-2947 Recommended update for lifecycle-data-sle-module-live-patching moderate SUSE Updates openSUSE-SLE 15.3 This update for lifecycle-data-sle-module-live-patching fixes the following issues: - Added data for 4_12_14-197_92, 5_3_18-24_53_4, 5_3_18-24_67, 5_3_18-57, 5_3_18-59_10, 5_3_18-59_5. (bsc#1020320) lifecycle-data-sle-module-live-patching-15-4.57.1.noarch.rpm lifecycle-data-sle-module-live-patching-15-4.57.1.src.rpm openSUSE-SLE-15.3-2021-2792 Security update for libass important SUSE Updates openSUSE-SLE 15.3 This update for libass fixes the following issues: - CVE-2020-36430: Fixed heap-based buffer overflow in decode_chars (bsc#1188539). libass-0.14.0-3.9.1.src.rpm libass-devel-0.14.0-3.9.1.x86_64.rpm libass9-0.14.0-3.9.1.x86_64.rpm libass9-32bit-0.14.0-3.9.1.x86_64.rpm libass-devel-0.14.0-3.9.1.s390x.rpm libass9-0.14.0-3.9.1.s390x.rpm libass-devel-0.14.0-3.9.1.ppc64le.rpm libass9-0.14.0-3.9.1.ppc64le.rpm libass-devel-0.14.0-3.9.1.aarch64.rpm libass9-0.14.0-3.9.1.aarch64.rpm openSUSE-SLE-15.3-2021-2795 Security update for php7 important SUSE Updates openSUSE-SLE 15.3 This update for php7 fixes the following issues: - CVE-2021-21704: Fixed security issues in pdo_firebase module (bsc#1188035). php7-7.2.5-4.79.1.src.rpm php7-wddx-7.2.5-4.79.1.x86_64.rpm php7-wddx-7.2.5-4.79.1.s390x.rpm php7-wddx-7.2.5-4.79.1.ppc64le.rpm php7-wddx-7.2.5-4.79.1.aarch64.rpm openSUSE-SLE-15.3-2021-2625 Recommended update for supportutils moderate SUSE Updates openSUSE-SLE 15.3 This update for supportutils fixes the following issues: ethtool was updated to version 3.1.17: - Solve a downgrade issue between SUSE Linux Enterprise SP3 and lower (bsc#1188348) - Adding ethtool options g l m to network.txt (jsc#SLE-18240) - lsof options to improve performance (bsc#1186687) - Exclude rhn.conf from etc.txt (bsc#1186347) - analyzevmcore supports local directories (bsc#1186397) - getappcore checks for valid compression binary (bsc#1185991) - getappcore does not trigger errors with help message (bsc#1185993) supportutils-3.1.17-7.35.5.1.noarch.rpm supportutils-3.1.17-7.35.5.1.src.rpm openSUSE-SLE-15.3-2021-2626 Recommended maintenance update for libeconf moderate SUSE Updates openSUSE-SLE 15.3 This update for libeconf fixes the following issue: - Solve a downgrade issue between SUSE Linux Enterprise SP3 and lower (bsc#1188348) libeconf-0.3.8+git20200710.5126fff-3.2.1.src.rpm libeconf-devel-0.3.8+git20200710.5126fff-3.2.1.x86_64.rpm libeconf0-0.3.8+git20200710.5126fff-3.2.1.x86_64.rpm libeconf0-32bit-0.3.8+git20200710.5126fff-3.2.1.x86_64.rpm libeconf-devel-0.3.8+git20200710.5126fff-3.2.1.s390x.rpm libeconf0-0.3.8+git20200710.5126fff-3.2.1.s390x.rpm libeconf-devel-0.3.8+git20200710.5126fff-3.2.1.ppc64le.rpm libeconf0-0.3.8+git20200710.5126fff-3.2.1.ppc64le.rpm libeconf-devel-0.3.8+git20200710.5126fff-3.2.1.aarch64.rpm libeconf0-0.3.8+git20200710.5126fff-3.2.1.aarch64.rpm openSUSE-SLE-15.3-2021-2627 Recommended maintenance update for systemd-default-settings moderate SUSE Updates openSUSE-SLE 15.3 This update for systemd-default-settings fixes the following issue: - Solve a downgrade issue between SUSE Linux Enterprise SP3 and lower (bsc#1188348) systemd-default-settings-0.7-3.2.1.noarch.rpm systemd-default-settings-0.7-3.2.1.src.rpm systemd-default-settings-branding-SLE-0.7-3.2.1.noarch.rpm systemd-default-settings-branding-SLE-Micro-0.7-3.2.1.noarch.rpm systemd-default-settings-branding-openSUSE-0.7-3.2.1.noarch.rpm systemd-default-settings-branding-upstream-0.7-3.2.1.noarch.rpm openSUSE-SLE-15.3-2021-2794 Security update for aspell important SUSE Updates openSUSE-SLE 15.3 This update for aspell fixes the following issues: - CVE-2019-25051: Fixed heap-buffer-overflow in acommon:ObjStack:dup_top (bsc#1188576). aspell-0.60.8-3.3.1.src.rpm aspell-0.60.8-3.3.1.x86_64.rpm aspell-devel-0.60.8-3.3.1.x86_64.rpm aspell-ispell-0.60.8-3.3.1.x86_64.rpm aspell-spell-0.60.8-3.3.1.x86_64.rpm libaspell15-0.60.8-3.3.1.x86_64.rpm libaspell15-32bit-0.60.8-3.3.1.x86_64.rpm libpspell15-0.60.8-3.3.1.x86_64.rpm libpspell15-32bit-0.60.8-3.3.1.x86_64.rpm aspell-0.60.8-3.3.1.s390x.rpm aspell-devel-0.60.8-3.3.1.s390x.rpm aspell-ispell-0.60.8-3.3.1.s390x.rpm aspell-spell-0.60.8-3.3.1.s390x.rpm libaspell15-0.60.8-3.3.1.s390x.rpm libpspell15-0.60.8-3.3.1.s390x.rpm aspell-0.60.8-3.3.1.ppc64le.rpm aspell-devel-0.60.8-3.3.1.ppc64le.rpm aspell-ispell-0.60.8-3.3.1.ppc64le.rpm aspell-spell-0.60.8-3.3.1.ppc64le.rpm libaspell15-0.60.8-3.3.1.ppc64le.rpm libpspell15-0.60.8-3.3.1.ppc64le.rpm aspell-0.60.8-3.3.1.aarch64.rpm aspell-devel-0.60.8-3.3.1.aarch64.rpm aspell-ispell-0.60.8-3.3.1.aarch64.rpm aspell-spell-0.60.8-3.3.1.aarch64.rpm libaspell15-0.60.8-3.3.1.aarch64.rpm libpspell15-0.60.8-3.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-2681 Recommended update for growpart-rootgrow important SUSE Updates openSUSE-SLE 15.3 This update for growpart-rootgrow fixes the following issues: - Fix root partition ID lookup. Only consider trailing digits to be part of the paritition ID. (bsc#1188868) (bsc#1188904) growpart-rootgrow-1.0.5-1.9.1.noarch.rpm growpart-rootgrow-1.0.5-1.9.1.src.rpm openSUSE-SLE-15.3-2021-2973 Recommended update for hwdata moderate SUSE Updates openSUSE-SLE 15.3 This update for hwdata fixes the following issue: - Update pci, usb and vendor ids (bsc#1190091) hwdata-0.351-3.29.1.noarch.rpm hwdata-0.351-3.29.1.src.rpm openSUSE-SLE-15.3-2021-2687 Security update for the Linux Kernel important SUSE Updates openSUSE-SLE 15.3 The SUSE Linux Enterprise 15 SP3 kernel was updated to receive various security and bugfixes. The following security bugs were fixed: - CVE-2021-3659: Fixed a NULL pointer dereference in llsec_key_alloc() in net/mac802154/llsec.c (bsc#1188876). - CVE-2021-21781: Fixed a information disclosure vulnerability in the ARM SIGPAGE (bsc#1188445). - CVE-2021-22543: Fixed improper handling of VM_IO|VM_PFNMAP vmas in KVM, which could bypass RO checks and can lead to pages being freed while still accessible by the VMM and guest. This allowed users with the ability to start and control a VM to read/write random pages of memory and can result in local privilege escalation (bsc#1186482). - CVE-2021-37576: Fixed an issue on the powerpc platform, where a KVM guest OS user could cause host OS memory corruption via rtas_args.nargs (bsc#1188838). - CVE-2021-3609: Fixed a potential local privilege escalation in the CAN BCM networking protocol (bsc#1187215). - CVE-2021-3612: Fixed an out-of-bounds memory write flaw in the joystick devices subsystem. This flaw allowed a local user to crash the system or possibly escalate their privileges on the system. (bsc#1187585) - CVE-2021-35039: Fixed mishandling of signature verification. Without CONFIG_MODULE_SIG, verification that a kernel module is signed, for loading via init_module, did not occur for a module.sig_enforce=1 command-line argument (bsc#1188080). The following non-security bugs were fixed: - ACPI: AMBA: Fix resource name in /proc/iomem (git-fixes). - ACPI: APEI: fix synchronous external aborts in user-mode (git-fixes). - ACPI: DPTF: Fix reading of attributes (git-fixes). - ACPI: EC: Make more Asus laptops use ECDT _GPE (git-fixes). - ACPI: PM / fan: Put fan device IDs into separate header file (git-fixes). - ACPI: bus: Call kobject_put() in acpi_init() error path (git-fixes). - ACPI: processor idle: Fix up C-state latency if not ordered (git-fixes). - ACPI: property: Constify stubs for CONFIG_ACPI=n case (git-fixes). - ACPI: resources: Add checks for ACPI IRQ override (git-fixes). - ACPI: sysfs: Fix a buffer overrun problem with description_show() (git-fixes). - ACPI: video: Add quirk for the Dell Vostro 3350 (git-fixes). - ACPICA: Fix memory leak caused by _CID repair function (git-fixes). - ALSA: ac97: fix PM reference leak in ac97_bus_remove() (git-fixes). - ALSA: bebob: add support for ToneWeal FW66 (git-fixes). - ALSA: firewire-motu: fix detection for S/PDIF source on optical interface in v2 protocol (git-fixes). - ALSA: firewire-motu: fix stream format for MOTU 8pre FireWire (git-fixes). - ALSA: hda/realtek: Add another ALC236 variant support (git-fixes). - ALSA: hda/realtek: Apply LED fixup for HP Dragonfly G1, too (git-fixes). - ALSA: hda/realtek: Fix bass speaker DAC mapping for Asus UM431D (git-fixes). - ALSA: hda/realtek: Fix pop noise and 2 Front Mic issues on a machine (git-fixes). - ALSA: hda/realtek: Improve fixup for HP Spectre x360 15-df0xxx (git-fixes). - ALSA: hda/realtek: fix mute/micmute LEDs for HP EliteBook 830 G8 Notebook PC (git-fixes). - ALSA: hda/realtek: fix mute/micmute LEDs for HP EliteBook x360 830 G8 (git-fixes). - ALSA: hda/realtek: fix mute/micmute LEDs for HP ProBook 445 G8 (git-fixes). - ALSA: hda/realtek: fix mute/micmute LEDs for HP ProBook 450 G8 (git-fixes). - ALSA: hda/realtek: fix mute/micmute LEDs for HP ProBook 630 G8 (git-fixes). - ALSA: hda: Add IRQ check for platform_get_irq() (git-fixes). - ALSA: hda: intel-dsp-cfg: add missing ElkhartLake PCI ID (git-fixes). - ALSA: hdmi: Expose all pins on MSI MS-7C94 board (git-fixes). - ALSA: intel8x0: Fix breakage at ac97 clock measurement (git-fixes). - ALSA: isa: Fix error return code in snd_cmi8330_probe() (git-fixes). - ALSA: pcm - fix mmap capability check for the snd-dummy driver (git-fixes). - ALSA: pcm: Call substream ack() method upon compat mmap commit (git-fixes). - ALSA: pcm: Fix mmap capability check (git-fixes). - ALSA: ppc: fix error return code in snd_pmac_probe() (git-fixes). - ALSA: sb: Fix potential ABBA deadlock in CSP driver (git-fixes). - ALSA: sb: Fix potential double-free of CSP mixer elements (git-fixes). - ALSA: usb-audio: Add missing proc text entry for BESPOKEN type (git-fixes). - ALSA: usb-audio: Add registration quirk for JBL Quantum headsets (git-fixes). - ALSA: usb-audio: Fix OOB access at proc output (git-fixes). - ALSA: usb-audio: fix rate on Ozone Z90 USB headset (git-fixes). - ALSA: usb-audio: scarlett2: Fix 18i8 Gen 2 PCM Input count (git-fixes). - ALSA: usb-audio: scarlett2: Fix 6i6 Gen 2 line out descriptions (git-fixes). - ALSA: usb-audio: scarlett2: Fix data_mutex lock (git-fixes). - ALSA: usb-audio: scarlett2: Fix scarlett2_*_ctl_put() return values (git-fixes). - ALSA: usb-audio: scarlett2: Fix wrong resume call (git-fixes). - ALSA: usb-audio: scarlett2: Read mixer volumes at init time (git-fixes). - ALSA: usb-audio: scarlett2: Read mux at init time (git-fixes). - ALSA: usx2y: Avoid camelCase (git-fixes). - ALSA: usx2y: Do not call free_pages_exact() with NULL address (git-fixes). - ARM: ensure the signal page contains defined contents (bsc#1188445). - ASoC: Intel: kbl_da7219_max98357a: shrink platform_id below 20 characters (git-fixes). - ASoC: Intel: sof_sdw: add SOF_RT715_DAI_ID_FIX for AlderLake (git-fixes). - ASoC: Intel: sof_sdw: add mutual exclusion between PCH DMIC and RT715 (git-fixes). - ASoC: SOF: loader: Use snd_sof_dsp_block_read() instead sof_block_read() (git-fixes). - ASoC: atmel-i2s: Fix usage of capture and playback at the same time (git-fixes). - ASoC: cs42l42: Correct definition of CS42L42_ADC_PDN_MASK (git-fixes). - ASoC: fsl_spdif: Fix error handler with pm_runtime_enable (git-fixes). - ASoC: fsl_spdif: Fix unexpected interrupt after suspend (git-fixes). - ASoC: hisilicon: fix missing clk_disable_unprepare() on error in hi6210_i2s_startup() (git-fixes). - ASoC: img: Fix PM reference leak in img_i2s_in_probe() (git-fixes). - ASoC: intel/boards: add missing MODULE_DEVICE_TABLE (git-fixes). - ASoC: max98373-sdw: add missing memory allocation check (git-fixes). - ASoC: max98373-sdw: use first_hw_init flag on resume (git-fixes). - ASoC: mediatek: mtk-btcvsd: Fix an error handling path in 'mtk_btcvsd_snd_probe()' (git-fixes). - ASoC: rk3328: fix missing clk_disable_unprepare() on error in rk3328_platform_probe() (git-fixes). - ASoC: rsnd: tidyup loop on rsnd_adg_clk_query() (git-fixes). - ASoC: rt1308-sdw: use first_hw_init flag on resume (git-fixes). - ASoC: rt5631: Fix regcache sync errors on resume (git-fixes). - ASoC: rt5682-sdw: set regcache_cache_only false before reading RT5682_DEVICE_ID (git-fixes). - ASoC: rt5682-sdw: use first_hw_init flag on resume (git-fixes). - ASoC: rt5682: Disable irq on shutdown (git-fixes). - ASoC: rt5682: Fix a problem with error handling in the io init function of the soundwire (git-fixes). - ASoC: rt5682: fix getting the wrong device id when the suspend_stress_test (git-fixes). - ASoC: rt700-sdw: use first_hw_init flag on resume (git-fixes). - ASoC: rt711-sdw: use first_hw_init flag on resume (git-fixes). - ASoC: rt715-sdw: use first_hw_init flag on resume (git-fixes). - ASoC: soc-core: Fix the error return code in snd_soc_of_parse_audio_routing() (git-fixes). - ASoC: soc-pcm: fix the return value in dpcm_apply_symmetry() (git-fixes). - ASoC: tegra: Set driver_name=tegra for all machine drivers (git-fixes). - ASoC: wm_adsp: Correct wm_coeff_tlv_get handling (git-fixes). - Bluetooth: Fix alt settings for incoming SCO with transparent coding format (git-fixes). - Bluetooth: Fix handling of HCI_LE_Advertising_Set_Terminated event (git-fixes). - Bluetooth: Fix the HCI to MGMT status conversion table (git-fixes). - Bluetooth: L2CAP: Fix invalid access if ECRED Reconfigure fails (git-fixes). - Bluetooth: L2CAP: Fix invalid access on ECRED Connection response (git-fixes). - Bluetooth: Remove spurious error message (git-fixes). - Bluetooth: Shutdown controller after workqueues are flushed or cancelled (git-fixes). - Bluetooth: btintel: Add infrastructure to read controller information (bsc#1188893). - Bluetooth: btintel: Check firmware version before download (bsc#1188893). - Bluetooth: btintel: Collect tlv based active firmware build info in FW mode (bsc#1188893). - Bluetooth: btintel: Consolidate intel_version parsing (bsc#1188893). - Bluetooth: btintel: Consolidate intel_version_tlv parsing (bsc#1188893). - Bluetooth: btintel: Fix endianness issue for TLV version information (bsc#1188893). - Bluetooth: btintel: Fix offset calculation boot address parameter (bsc#1188893). - Bluetooth: btintel: Functions to send firmware header / payload (bsc#1188893). - Bluetooth: btintel: Move operational checks after version check (bsc#1188893). - Bluetooth: btintel: Refactor firmware download function (bsc#1188893). - Bluetooth: btintel: Reorganized bootloader mode tlv checks in intel_version_tlv parsing (bsc#1188893). - Bluetooth: btintel: Replace zero-length array with flexible-array member (bsc#1188893). - Bluetooth: btintel: Skip reading firmware file version while in bootloader mode (bsc#1188893). - Bluetooth: btqca: Do not modify firmware contents in-place (git-fixes). - Bluetooth: btusb: Add *setup* function for new generation Intel controllers (bsc#1188893). - Bluetooth: btusb: Add support USB ALT 3 for WBS (git-fixes). - Bluetooth: btusb: Add support for GarfieldPeak controller (bsc#1188893). - Bluetooth: btusb: Consolidate code for waiting firmware download (bsc#1188893). - Bluetooth: btusb: Define a function to construct firmware filename (bsc#1188893). - Bluetooth: btusb: Enable MSFT extension for Intel controllers (bsc#1188893). - Bluetooth: btusb: Fix failing to init controllers with operation firmware (bsc#1188893). - Bluetooth: btusb: Fixed too many in-token issue for Mediatek Chip (git-fixes). - Bluetooth: btusb: Helper function to download firmware to Intel adapters (bsc#1188893). - Bluetooth: btusb: Map Typhoon peak controller to BTUSB_INTEL_NEWGEN (bsc#1188893). - Bluetooth: btusb: Update boot parameter specific to SKU (bsc#1188893). - Bluetooth: btusb: fix bt fiwmare downloading failure issue for qca btsoc (git-fixes). - Bluetooth: btusb: print firmware file name on error loading firmware (bsc#1188893). - Bluetooth: hci_intel: drop strange le16_to_cpu() against u8 values (bsc#1188893). - Bluetooth: hci_intel: enable on new platform (bsc#1188893). - Bluetooth: hci_intel: switch to list_for_each_entry() (bsc#1188893). - Bluetooth: hci_qca: fix potential GPF (git-fixes). - Bluetooth: mgmt: Fix slab-out-of-bounds in tlv_data_is_valid (git-fixes). - Bluetooth: mgmt: Fix the command returns garbage parameter value (git-fixes). - HID: do not use down_interruptible() when unbinding devices (git-fixes). - HID: wacom: Correct base usage for capacitive ExpressKey status bits (git-fixes). - Input: hideep - fix the uninitialized use in hideep_nvm_unlock() (git-fixes). - Input: hil_kbd - fix error return code in hil_dev_connect() (git-fixes). - Input: ili210x - add missing negation for touch indication on ili210x (git-fixes). - Input: usbtouchscreen - fix control-request directions (git-fixes). - KVM: LAPIC: Prevent setting the tscdeadline timer if the lapic is hw disabled (bsc#1188771). - KVM: SVM: document KVM_MEM_ENCRYPT_OP, let userspace detect if SEV is available (bsc#1188703). - KVM: nVMX: Consult only the "basic" exit reason when routing nested exit (bsc#1188773). - KVM: nVMX: Ensure 64-bit shift when checking VMFUNC bitmap (bsc#1188774). - KVM: nVMX: Preserve exception priority irrespective of exiting behavior (bsc#1188777). - PCI/sysfs: Fix dsm_label_utf16s_to_utf8s() buffer overrun (git-fixes). - PCI: Add AMD RS690 quirk to enable 64-bit DMA (git-fixes). - PCI: Leave Apple Thunderbolt controllers on for s2idle or standby (git-fixes). - PCI: Leave Apple Thunderbolt controllers on for s2idle or standby (git-fixes). - PCI: aardvark: Fix checking for PIO Non-posted Request (git-fixes). - PCI: aardvark: Implement workaround for the readback value of VEND_ID (git-fixes). - PCI: aardvark: Implement workaround for the readback value of VEND_ID (git-fixes). - PCI: intel-gw: Fix INTx enable (git-fixes). - PCI: intel-gw: Fix INTx enable (git-fixes). - PCI: iproc: Fix multi-MSI base vector number allocation (git-fixes). - PCI: iproc: Fix multi-MSI base vector number allocation (git-fixes). - PCI: iproc: Support multi-MSI only on uniprocessor kernel (git-fixes). - PCI: quirks: fix false kABI positive (git-fixes). - PCI: tegra194: Fix tegra_pcie_ep_raise_msi_irq() ill-defined shift (git-fixes). - PCI: tegra194: Fix tegra_pcie_ep_raise_msi_irq() ill-defined shift (git-fixes). - PCI: tegra: Add missing MODULE_DEVICE_TABLE (git-fixes). - RDMA/cma: Fix incorrect Packet Lifetime calculation (jsc#SLE-8449). - RDMA/cma: Protect RMW with qp_mutex (git-fixes). - RDMA/hns: Remove unused parameter udata (jsc#SLE-15176). - RDMA/mlx4: Remove unused parameter udata (jsc#SLE-15176). - RDMA/mlx5: Remove unused parameter udata (jsc#SLE-15176). - RDMA/rtrs-clt: Check if the queue_depth has changed during a reconnection (jsc#SLE-15176). - RDMA/rtrs-clt: Check state of the rtrs_clt_sess before reading its stats (jsc#SLE-15176). - RDMA/rtrs-clt: Fix memory leak of not-freed sess->stats and stats->pcpu_stats (jsc#SLE-15176). - RDMA/rtrs-srv: Fix memory leak of unfreed rtrs_srv_stats object (jsc#SLE-15176). - RDMA/rtrs-srv: Fix memory leak when having multiple sessions (jsc#SLE-15176). - RDMA/rtrs-srv: Replace atomic_t with percpu_ref for ids_inflight (jsc#SLE-15176). - RDMA/rtrs-srv: Set minimal max_send_wr and max_recv_wr (jsc#SLE-15176). - RDMA/rtrs: Do not reset hb_missed_max after re-connection (jsc#SLE-15176). - RDMA/srp: Fix a recently introduced memory leak (jsc#SLE-15176). - Revert "ACPI: resources: Add checks for ACPI IRQ override" (git-fixes). - Revert "ALSA: bebob/oxfw: fix Kconfig entry for Mackie d.2 Pro" (git-fixes). - Revert "Bluetooth: btintel: Fix endianness issue for TLV version information" (bsc#1188893). - Revert "USB: quirks: ignore remote wake-up on Fibocom L850-GL LTE modem" (git-fixes). - Revert "be2net: disable bh with spin_lock in be_process_mcc" (git-fixes). - Revert "drm/i915: Propagate errors on awaiting already signaled fences" (git-fixes). - Revert "drm: add a locked version of drm_is_current_master" (git-fixes). - Revert "ibmvnic: remove duplicate napi_schedule call in open function" (bsc#1065729). - Revert "iwlwifi: remove wide_cmd_header field" (bsc#1187495). - USB: cdc-acm: blacklist Heimann USB Appset device (git-fixes). - USB: serial: cp210x: add ID for CEL EM3588 USB ZigBee stick (git-fixes). - USB: serial: cp210x: fix comments for GE CS1000 (git-fixes). - USB: serial: option: add support for u-blox LARA-R6 family (git-fixes). - USB: usb-storage: Add LaCie Rugged USB3-FW to IGNORE_UAS (git-fixes). - amdgpu: fix GEM obj leak in amdgpu_display_user_framebuffer_create (bsc#1152472) - ata: ahci_sunxi: Disable DIPM (git-fixes). - ath10k: Fix an error code in ath10k_add_interface() (git-fixes). - ath10k: add missing error return code in ath10k_pci_probe() (git-fixes). - ath10k: go to path err_unsupported when chip id is not supported (git-fixes). - ath10k: remove unused more_frags variable (git-fixes). - ath9k: Fix kernel NULL pointer dereference during ath_reset_internal() (git-fixes). - backlight: lm3630a: Fix return code of .update_status() callback (git-fixes). - backlight: lm3630a_bl: Put fwnode in error case during ->probe() (git-fixes). - bcache: avoid oversized read request in cache missing code path (bsc#1184631). - bcache: remove bcache device self-defined readahead (bsc#1184631). - blk-mq: Add blk_mq_delay_run_hw_queues() API call (bsc#1180092). - blk-mq: In blk_mq_dispatch_rq_list() "no budget" is a reason to kick (bsc#1180092). - blk-mq: Put driver tag in blk_mq_dispatch_rq_list() when no budget (bsc#1180092). - blk-mq: Rerun dispatching in the case of budget contention (bsc#1180092). - blk-mq: insert flush request to the front of dispatch queue (bsc#1180092). - blk-mq: insert passthrough request into hctx->dispatch directly (bsc#1180092). - bnxt_en: Add missing check for BNXT_STATE_ABORT_ERR in bnxt_fw_rset_task() (jsc#SLE-8371 bsc#1153274). - bnxt_en: Check abort error state in bnxt_half_open_nic() (jsc#SLE-8371 bsc#1153274). - bnxt_en: Refresh RoCE capabilities in bnxt_ulp_probe() (jsc#SLE-8371 bsc#1153274). - bnxt_en: do not disable an already disabled PCI device (git-fixes). - bonding: Add struct bond_ipesc to manage SA (bsc#1176447). - bonding: disallow setting nested bonding + ipsec offload (bsc#1176447). - bonding: fix build issue (git-fixes). - bonding: fix incorrect return value of bond_ipsec_offload_ok() (bsc#1176447). - bonding: fix null dereference in bond_ipsec_add_sa() (bsc#1176447). - bonding: fix suspicious RCU usage in bond_ipsec_add_sa() (bsc#1176447). - bonding: fix suspicious RCU usage in bond_ipsec_del_sa() (bsc#1176447). - bonding: fix suspicious RCU usage in bond_ipsec_offload_ok() (bsc#1176447). - bpf: Fix integer overflow in argument calculation for bpf_map_area_alloc (bsc#1154353). - bpftool: Properly close va_list 'ap' by va_end() on error (bsc#1155518). - brcmfmac: Fix a double-free in brcmf_sdio_bus_reset (git-fixes). - brcmfmac: correctly report average RSSI in station info (git-fixes). - brcmfmac: fix setting of station info chains bitmask (git-fixes). - brcmsmac: mac80211_if: Fix a resource leak in an error handling path (git-fixes). - cadence: force nonlinear buffers to be cloned (git-fixes). - can: ems_usb: fix memory leak (git-fixes). - can: esd_usb2: fix memory leak (git-fixes). - can: gw: synchronize rcu operations before removing gw job entry (git-fixes). - can: hi311x: fix a signedness bug in hi3110_cmd() (git-fixes). - can: hi311x: hi3110_can_probe(): silence clang warning (git-fixes). - can: mcba_usb_start(): add missing urb->transfer_dma initialization (git-fixes). - can: peak_pciefd: pucan_handle_status(): fix a potential starvation issue in TX path (git-fixes). - can: raw: raw_setsockopt(): fix raw_rcv panic for sock UAF (git-fixes). - can: usb_8dev: fix memory leak (git-fixes). - ceph: do not WARN if we're still opening a session to an MDS (bsc#1188748). - cfg80211: call cfg80211_leave_ocb when switching away from OCB (git-fixes). - char: pcmcia: error out if 'num_bytes_read' is greater than 4 in set_protocol() (git-fixes). - cifs: Fix preauth hash corruption (git-fixes). - cifs: Return correct error code from smb2_get_enc_key (git-fixes). - cifs: do not fail __smb_send_rqst if non-fatal signals are pending (git-fixes). - cifs: fix interrupted close commands (git-fixes). - cifs: fix memory leak in smb2_copychunk_range (git-fixes). - clk: actions: Fix SD clocks factor table on Owl S500 SoC (git-fixes). - clk: actions: Fix UART clock dividers on Owl S500 SoC (git-fixes). - clk: actions: Fix bisp_factor_table based clocks on Owl S500 SoC (git-fixes). - clk: imx8mq: remove SYS PLL 1/2 clock gates (git-fixes). - clk: meson: g12a: fix gp0 and hifi ranges (git-fixes). - clk: renesas: r8a77995: Add ZA2 clock (git-fixes). - clk: renesas: rcar-gen3: Update Z clock rate formula in comments (git-fixes). - clk: si5341: Avoid divide errors due to bogus register contents (git-fixes). - clk: si5341: Update initialization magic (git-fixes). - clk: tegra: Ensure that PLLU configuration is applied properly (git-fixes). - clk: zynqmp: pll: Remove some dead code (git-fixes). - clocksource/arm_arch_timer: Improve Allwinner A64 timer workaround (git-fixes). - clocksource: Retry clock read if long delays detected (git-fixes). - coresight: Propagate symlink failure (git-fixes). - coresight: core: Fix use of uninitialized pointer (git-fixes). - cpu/hotplug: Cure the cpusets trainwreck (git fixes (sched/hotplug)). - cpufreq: sc520_freq: add 'fallthrough' to one case (git-fixes). - crypto: ccp - Fix a resource leak in an error handling path (git-fixes). - crypto: ixp4xx - dma_unmap the correct address (git-fixes). - crypto: nitrox - fix unchecked variable in nitrox_register_interrupts (git-fixes). - crypto: nx - add missing MODULE_DEVICE_TABLE (git-fixes). - crypto: omap-sham - Fix PM reference leak in omap sham ops (git-fixes). - crypto: qat - check return code of qat_hal_rd_rel_reg() (git-fixes). - crypto: qat - remove unused macro in FW loader (git-fixes). - crypto: sun4i-ss - IV register does not work on A10 and A13 (git-fixes). - crypto: sun4i-ss - checking sg length is not sufficient (git-fixes). - crypto: sun4i-ss - initialize need_fallback (git-fixes). - crypto: ux500 - Fix error return code in hash_hw_final() (git-fixes). - crypto: virtio: Fix dest length calculation in __virtio_crypto_skcipher_do_req() (git-fixes). - crypto: virtio: Fix src/dst scatterlist calculation in __virtio_crypto_skcipher_do_req() (git-fixes). - cw1200: add missing MODULE_DEVICE_TABLE (git-fixes). - cxgb4: fix IRQ free race during driver unload (git-fixes). - dma-buf/sync_file: Do not leak fences on merge failure (git-fixes). - dmaengine: fsl-qdma: check dma_set_mask return value (git-fixes). - dmaengine: mediatek: do not issue a new desc if one is still current (git-fixes). - dmaengine: mediatek: free the proper desc in desc_free handler (git-fixes). - dmaengine: mediatek: use GFP_NOWAIT instead of GFP_ATOMIC in prep_dma (git-fixes). - dmaengine: rcar-dmac: Fix PM reference leak in rcar_dmac_probe() (git-fixes). - dmaengine: zynqmp_dma: Fix PM reference leak in zynqmp_dma_alloc_chan_resourc() (git-fixes). - docs: admin-guide: update description for kernel.hotplug sysctl (git-fixes). - docs: virt/kvm: close inline string literal (bsc#1188703). - dpaa2-eth: fix memory leak in XDP_REDIRECT (git-fixes). - dpaa2-eth: fix memory leak in XDP_REDIRECT (git-fixes). - drm/amd/amdgpu/sriov disable all ip hw status by default (git-fixes). - drm/amd/dc: Fix a missing check bug in dm_dp_mst_detect() (git-fixes). - drm/amd/display: Avoid HDCP over-read and corruption (git-fixes). - drm/amd/display: Fix DCN 3.01 DSCCLK validation (git-fixes). - drm/amd/display: Fix build warnings (git-fixes). - drm/amd/display: Fix off-by-one error in DML (git-fixes). - drm/amd/display: Release MST resources on switch from MST to SST (git-fixes). - drm/amd/display: Set DISPCLK_MAX_ERRDET_CYCLES to 7 (git-fixes). - drm/amd/display: Update scaling settings on modeset (git-fixes). - drm/amd/display: Verify Gamma & Degamma LUT sizes in amdgpu_dm_atomic_check (git-fixes). - drm/amd/display: fix HDCP reset sequence on reinitialize (git-fixes). - drm/amd/display: fix incorrrect valid irq check (git-fixes). - drm/amd/display: fix use_max_lb flag for 420 pixel formats (git-fixes). - drm/amdgpu: Do not query CE and UE errors (bsc#1152472) - drm/amdgpu: Update NV SIMD-per-CU to 2 (git-fixes). - drm/amdgpu: enable sdma0 tmz for Raven/Renoir(V2) (git-fixes). - drm/amdgpu: remove unsafe optimization to drop preamble ib (git-fixes). - drm/amdgpu: update golden setting for sienna_cichlid (git-fixes). - drm/amdgpu: wait for moving fence after pinning (git-fixes). - drm/amdkfd: Fix circular lock in nocpsch path (git-fixes). - drm/amdkfd: Walk through list with dqm lock hold (git-fixes). - drm/amdkfd: fix circular locking on get_wave_state (git-fixes). - drm/amdkfd: use allowed domain for vmbo validation (git-fixes). - drm/arm/malidp: Always list modifiers (git-fixes). - drm/bridge/sii8620: fix dependency on extcon (git-fixes). - drm/bridge: Fix the stop condition of drm_bridge_chain_pre_enable() (git-fixes). - drm/bridge: cdns: Fix PM reference leak in cdns_dsi_transfer() (git-fixes). - drm/bridge: nwl-dsi: Force a full modeset when crtc_state->active is changed to be true (git-fixes). - drm/dp_mst: Do not set proposed vcpi directly (git-fixes). - drm/gma500: Add the missed drm_gem_object_put() in psb_user_framebuffer_create() (git-fixes). - drm/i915/display: Do not zero past infoframes.vsc (git-fixes). - drm/i915/gvt: Clear d3_entered on elsp cmd submission (git-fixes). - drm/i915/selftests: use vma_lookup() in __igt_mmap() (git-fixes). - drm/mcde/panel: Inverse misunderstood flag (bsc#1152472) - drm/mediatek: Fix PM reference leak in mtk_crtc_ddp_hw_init() (git-fixes). - drm/msm/dpu: Fix error return code in dpu_mdss_init() (git-fixes). - drm/msm/dpu: Fix sm8250_mdp register length (git-fixes). - drm/msm/mdp4: Fix modifier support enabling (git-fixes). - drm/msm: Fix error return code in msm_drm_init() (git-fixes). - drm/msm: Small msm_gem_purge() fix (bsc#1152489) - drm/mxsfb: Do not select DRM_KMS_FB_HELPER (git-fixes). - drm/nouveau: Do not set allow_fb_modifiers explicitly (git-fixes). - drm/nouveau: fix dma_address check for CPU/GPU sync (git-fixes). - drm/nouveau: wait for moving fence after pinning v2 (git-fixes). - drm/panel: nt35510: Do not fail if DSI read fails (git-fixes). - drm/panel: raspberrypi-touchscreen: Prevent double-free (git-fixes). - drm/radeon: Add the missed drm_gem_object_put() in radeon_user_framebuffer_create() (git-fixes). - drm/radeon: Call radeon_suspend_kms() in radeon_pci_shutdown() for Loongson64 (git-fixes). - drm/radeon: Fix a missing check bug in radeon_dp_mst_detect() (bsc#1152489) - drm/radeon: wait for moving fence after pinning (git-fixes). - drm/rockchip: cdn-dp-core: add missing clk_disable_unprepare() on error in cdn_dp_grf_write() (git-fixes). - drm/rockchip: cdn-dp: fix sign extension on an int multiply for a u64 result (git-fixes). - drm/rockchip: dsi: move all lane config except LCDC mux to bind() (git-fixes). - drm/rockchip: dsi: remove extra component_del() call (git-fixes). - drm/rockchip: lvds: Fix an error handling path (git-fixes). - drm/sched: Avoid data corruptions (git-fixes). - drm/scheduler: Fix hang when sched_entity released (git-fixes). - drm/stm: Fix bus_flags handling (bsc#1152472) - drm/tegra: Do not set allow_fb_modifiers explicitly (git-fixes). - drm/vc4: Fix clock source for VEC PixelValve on BCM2711 (git-fixes). - drm/vc4: crtc: Skip the TXP (git-fixes). - drm/vc4: fix argument ordering in vc4_crtc_get_margins() (git-fixes). - drm/vc4: hdmi: Fix PM reference leak in vc4_hdmi_encoder_pre_crtc_co() (git-fixes). - drm/vc4: hdmi: Fix error path of hpd-gpios (git-fixes). - drm/vc4: hdmi: Make sure the controller is powered in detect (bsc#1152489) - drm/vc4: hdmi: Prevent clock unbalance (git-fixes). - drm/vc4: txp: Properly set the possible_crtcs mask (git-fixes). - drm/virtio: Fix double free on probe failure (git-fixes). - drm/vmwgfx: Fix cpu updates of coherent multisample surfaces (git-fixes). - drm/vmwgfx: Mark a surface gpu-dirty after the SVGA3dCmdDXGenMips command (git-fixes). - drm/zte: Do not select DRM_KMS_FB_HELPER (git-fixes). - drm: Return -ENOTTY for non-drm ioctls (git-fixes). - drm: add a locked version of drm_is_current_master (git-fixes). - drm: bridge/panel: Cleanup connector on bridge detach (bsc#1152489) - drm: bridge: add missing word in Analogix help text (git-fixes). - drm: qxl: ensure surf.data is ininitialized (git-fixes). - drm: rockchip: add missing registers for RK3066 (git-fixes). - drm: rockchip: add missing registers for RK3188 (git-fixes). - drm: rockchip: set alpha_en to 0 if it is not used (git-fixes). - e1000e: Check the PCIm state (git-fixes). - e1000e: Fix an error handling path in 'e1000_probe()' (git-fixes). - efi/tpm: Differentiate missing and invalid final event log table (bsc#1188036). - extcon: extcon-max8997: Fix IRQ freeing at error path (git-fixes). - extcon: intel-mrfld: Sync hardware and software state on init (git-fixes). - extcon: max8997: Add missing modalias string (git-fixes). - extcon: sm5502: Drop invalid register write in sm5502_reg_data (git-fixes). - fbmem: Do not delete the mode that is still in use (git-fixes). - fbmem: add margin check to fb_check_caps() (git-fixes). - firmware/efi: Tell memblock about EFI iomem reservations (git-fixes). - firmware: arm_scmi: Fix possible scmi_linux_errmap buffer overflow (git-fixes). - firmware: arm_scmi: Fix range check for the maximum number of pending messages (git-fixes). - firmware: tegra: Fix error return code in tegra210_bpmp_init() (git-fixes). - fm10k: Fix an error handling path in 'fm10k_probe()' (git-fixes). - fpga: machxo2-spi: Address warning about unused variable (git-fixes). - fpga: stratix10-soc: Add missing fpga_mgr_free() call (git-fixes). - fuse: check connected before queueing on fpq->io (bsc#1188267). - fuse: ignore PG_workingset after stealing (bsc#1188268). - fuse: reject internal errno (bsc#1188269). - gpio: AMD8111 and TQMX86 require HAS_IOPORT_MAP (git-fixes). - gpio: pca953x: Add support for the On Semi pca9655 (git-fixes). - gpio: zynq: Check return value of pm_runtime_get_sync (git-fixes). - gtp: fix an use-before-init in gtp_newlink() (git-fixes). - gve: Add DQO fields for core data structures (bsc#1176940). - gve: Add Gvnic stats AQ command and ethtool show/set-priv-flags (bsc#1176940). - gve: Add dqo descriptors (bsc#1176940). - gve: Add stats for gve (bsc#1176940). - gve: Add support for DQO RX PTYPE map (bsc#1176940). - gve: Add support for raw addressing device option (bsc#1176940). - gve: Add support for raw addressing in the tx path (bsc#1176940). - gve: Add support for raw addressing to the rx path (bsc#1176940). - gve: Batch AQ commands for creating and destroying queues (bsc#1176940). - gve: Check TX QPL was actually assigned (bsc#1176940). - gve: DQO: Add RX path (bsc#1176940). - gve: DQO: Add TX path (bsc#1176940). - gve: DQO: Add core netdev features (bsc#1176940). - gve: DQO: Add ring allocation and initialization (bsc#1176940). - gve: DQO: Configure interrupts on device up (bsc#1176940). - gve: DQO: Fix off by one in gve_rx_dqo() (bsc#1176940). - gve: DQO: Remove incorrect prefetch (bsc#1176940). - gve: Enable Link Speed Reporting in the driver (bsc#1176940). - gve: Fix an error handling path in 'gve_probe()' (git-fixes). - gve: Fix swapped vars when fetching max queues (git-fixes). - gve: Fix warnings reported for DQO patchset (bsc#1176940). - gve: Get and set Rx copybreak via ethtool (bsc#1176940). - gve: Introduce a new model for device options (bsc#1176940). - gve: Introduce per netdev `enum gve_queue_format` (bsc#1176940). - gve: Make gve_rx_slot_page_info.page_offset an absolute offset (bsc#1176940). - gve: Move some static functions to a common file (bsc#1176940). - gve: NIC stats for report-stats and for ethtool (bsc#1176940). - gve: Propagate error codes to caller (bsc#1176940). - gve: Replace zero-length array with flexible-array member (bsc#1176940). - gve: Rx Buffer Recycling (bsc#1176940). - gve: Simplify code and axe the use of a deprecated API (bsc#1176940). - gve: Update adminq commands to support DQO queues (bsc#1176940). - gve: Use dev_info/err instead of netif_info/err (bsc#1176940). - gve: Use link status register to report link status (bsc#1176940). - gve: adminq: DQO specific device descriptor logic (bsc#1176940). - gve: gve_rx_copy: Move padding to an argument (bsc#1176940). - hwmon: (max31722) Remove non-standard ACPI device IDs (git-fixes). - hwmon: (max31790) Fix fan speed reporting for fan7..12 (git-fixes). - hwmon: (max31790) Fix pwmX_enable attributes (git-fixes). - hwmon: (max31790) Report correct current pwm duty cycles (git-fixes). - hwrng: exynos - Fix runtime PM imbalance on error (git-fixes). - i2c: core: Disable client irq on reboot/shutdown (git-fixes). - i2c: designware: Adjust bus_freq_hz when refuse high speed mode set (git-fixes). - i2c: dev: Add __user annotation (git-fixes). - i2c: robotfuzz-osif: fix control-request directions (git-fixes). - i40e: Fix autoneg disabling for non-10GBaseT links (git-fixes). - i40e: Fix error handling in i40e_vsi_open (git-fixes). - i40e: Fix missing rtnl locking when setting up pf switch (jsc#SLE-13701). - i40e: fix PTP on 5Gb links (jsc#SLE-13701). - iavf: Fix an error handling path in 'iavf_probe()' (git-fixes). - ibmvnic: Allow device probe if the device is not ready at boot (bsc#1184114 ltc#192237). - ibmvnic: Remove the proper scrq flush (bsc#1188504 ltc#192075). - ibmvnic: Use 'skb_frag_address()' instead of hand coding it (bsc#1184114 ltc#192237). - ibmvnic: Use list_for_each_entry() to simplify code in ibmvnic.c (bsc#1184114 ltc#192237). - ibmvnic: Use strscpy() instead of strncpy() (bsc#1184114 ltc#192237). - ibmvnic: account for bufs already saved in indir_buf (jsc#SLE-17268 jsc#SLE-17043 bsc#1179243 ltc#189290). - ibmvnic: clean pending indirect buffs during reset (jsc#SLE-17268 jsc#SLE-17043 bsc#1179243 ltc#189290). - ibmvnic: fix kernel build warning (bsc#1184114 ltc#192237). - ibmvnic: fix kernel build warning in strncpy (bsc#1184114 ltc#192237). - ibmvnic: fix kernel build warnings in build_hdr_descs_arr (bsc#1184114 ltc#192237). - ibmvnic: fix send_request_map incompatible argument (bsc#1184114 ltc#192237). - ibmvnic: free tx_pool if tso_pool alloc fails (bsc#1085224 ltc#164363). - ibmvnic: parenthesize a check (bsc#1184114 ltc#192237 bsc#1183871 ltc#192139 git-fixes). - ibmvnic: retry reset if there are no other resets (bsc#1184350 ltc#191533). - ibmvnic: set ltb->buff to NULL after freeing (bsc#1094840 ltc#167098). - ice: Re-organizes reqstd/avail {R, T}XQ check/code for efficiency (jsc#SLE-7926). - igb: Check if num of q_vectors is smaller than max before array access (git-fixes). - igb: Fix an error handling path in 'igb_probe()' (git-fixes). - igb: Fix position of assignment to *ring (git-fixes). - igb: Fix use-after-free error during reset (git-fixes). - igc: Fix an error handling path in 'igc_probe()' (git-fixes). - igc: Fix use-after-free error during reset (git-fixes). - igc: change default return of igc_read_phy_reg() (git-fixes). - iio: accel: bma180: Fix buffer alignment in iio_push_to_buffers_with_timestamp() (git-fixes). - iio: accel: bma180: Use explicit member assignment (git-fixes). - iio: accel: bma220: Fix buffer alignment in iio_push_to_buffers_with_timestamp() (git-fixes). - iio: accel: hid: Fix buffer alignment in iio_push_to_buffers_with_timestamp() (git-fixes). - iio: accel: kxcjk-1013: Fix buffer alignment in iio_push_to_buffers_with_timestamp() (git-fixes). - iio: accel: mxc4005: Fix overread of data and alignment issue (git-fixes). - iio: accel: stk8312: Fix buffer alignment in iio_push_to_buffers_with_timestamp() (git-fixes). - iio: accel: stk8ba50: Fix buffer alignment in iio_push_to_buffers_with_timestamp() (git-fixes). - iio: adc: at91-sama5d2: Fix buffer alignment in iio_push_to_buffers_with_timestamp() (git-fixes). - iio: adc: hx711: Fix buffer alignment in iio_push_to_buffers_with_timestamp() (git-fixes). - iio: adc: mxs-lradc: Fix buffer alignment in iio_push_to_buffers_with_timestamp() (git-fixes). - iio: adc: ti-ads1015: Fix buffer alignment in iio_push_to_buffers_with_timestamp() (git-fixes). - iio: adc: ti-ads8688: Fix alignment of buffer in iio_push_to_buffers_with_timestamp() (git-fixes). - iio: adc: vf610: Fix buffer alignment in iio_push_to_buffers_with_timestamp() (git-fixes). - iio: adis16400: do not return ints in irq handlers (git-fixes). - iio: adis_buffer: do not return ints in irq handlers (git-fixes). - iio: at91-sama5d2_adc: remove usage of iio_priv_to_dev() helper (git-fixes). - iio: gyro: bmg160: Fix buffer alignment in iio_push_to_buffers_with_timestamp() (git-fixes). - iio: gyro: fxa21002c: Balance runtime pm + use pm_runtime_resume_and_get() (git-fixes). - iio: humidity: am2315: Fix buffer alignment in iio_push_to_buffers_with_timestamp() (git-fixes). - iio: light: isl29125: Fix buffer alignment in iio_push_to_buffers_with_timestamp() (git-fixes). - iio: light: tcs3414: Fix buffer alignment in iio_push_to_buffers_with_timestamp() (git-fixes). - iio: light: tcs3472: Fix buffer alignment in iio_push_to_buffers_with_timestamp() (git-fixes). - iio: light: tcs3472: do not free unallocated IRQ (git-fixes). - iio: light: vcnl4035: Fix buffer alignment in iio_push_to_buffers_with_timestamp() (git-fixes). - iio: ltr501: ltr501_read_ps(): add missing endianness conversion (git-fixes). - iio: ltr501: ltr559: fix initialization of LTR501_ALS_CONTR (git-fixes). - iio: ltr501: mark register holding upper 8 bits of ALS_DATA{0,1} and PS_DATA as volatile, too (git-fixes). - iio: magn: bmc150: Balance runtime pm + use pm_runtime_resume_and_get() (git-fixes). - iio: magn: bmc150: Fix buffer alignment in iio_push_to_buffers_with_timestamp() (git-fixes). - iio: magn: hmc5843: Fix buffer alignment in iio_push_to_buffers_with_timestamp() (git-fixes). - iio: magn: rm3100: Fix alignment of buffer in iio_push_to_buffers_with_timestamp() (git-fixes). - iio: potentiostat: lmp91000: Fix alignment of buffer in iio_push_to_buffers_with_timestamp() (git-fixes). - iio: prox: as3935: Fix buffer alignment in iio_push_to_buffers_with_timestamp() (git-fixes). - iio: prox: isl29501: Fix buffer alignment in iio_push_to_buffers_with_timestamp() (git-fixes). - iio: prox: pulsed-light: Fix buffer alignment in iio_push_to_buffers_with_timestamp() (git-fixes). - iio: prox: srf08: Fix buffer alignment in iio_push_to_buffers_with_timestamp() (git-fixes). - iio: si1133: fix format string warnings (git-fixes). - iio:accel:mxc4005: Drop unnecessary explicit casts in regmap_bulk_read calls (git-fixes). - integrity: use arch_ima_get_secureboot instead of checking EFI_SECURE_BOOT when loading MokListRT (bsc#1188366). - intel_th: Wait until port is in reset before programming it (git-fixes). - iwl-trans: move dev_cmd_offs, page_offs to a common trans header (bsc#1187495). - iwlwifi: Fix softirq/hardirq disabling in iwl_pcie_enqueue_hcmd() (git-fixes). - iwlwifi: Fix softirq/hardirq disabling in iwl_pcie_gen2_enqueue_hcmd() (git-fixes). - iwlwifi: acpi: evaluate dsm to disable 5.8GHz channels (bsc#1187495). - iwlwifi: acpi: in non acpi compilations remove iwl_sar_geo_init (bsc#1187495). - iwlwifi: acpi: prepare SAR profile selection code for multiple sizes (bsc#1187495). - iwlwifi: acpi: remove dummy definition of iwl_sar_set_profile() (bsc#1187495). - iwlwifi: acpi: rename geo structs to contain versioning (bsc#1187495). - iwlwifi: acpi: support ppag table command v2 (bsc#1187495). - iwlwifi: add a common struct for all iwl_tx_power_cmd versions (bsc#1187495). - iwlwifi: add trans op to set PNVM (bsc#1187495). - iwlwifi: align RX status flags with firmware (bsc#1187495). - iwlwifi: api: fix u32 -> __le32 (bsc#1187495). - iwlwifi: bump FW API to 57 for AX devices (bsc#1187495). - iwlwifi: bump FW API to 59 for AX devices (bsc#1187495). - iwlwifi: calib: Demote seemingly unintentional kerneldoc header (bsc#1187495). - iwlwifi: dbg: Do not touch the tlv data (bsc#1187495). - iwlwifi: dbg: add debug host notification (DHN) time point (bsc#1187495). - iwlwifi: dbg: add dumping special device memory (bsc#1187495). - iwlwifi: dbg: remove IWL_FW_INI_TIME_POINT_WDG_TIMEOUT (bsc#1187495). - iwlwifi: do not export acpi functions unnecessarily (bsc#1187495). - iwlwifi: dvm: Demote a couple of nonconformant kernel-doc headers (bsc#1187495). - iwlwifi: dvm: Demote non-compliant kernel-doc headers (bsc#1187495). - iwlwifi: dvm: devices: Fix function documentation formatting issues (bsc#1187495). - iwlwifi: dvm: lib: Demote non-compliant kernel-doc headers (bsc#1187495). - iwlwifi: dvm: rxon: Demote non-conformant kernel-doc headers (bsc#1187495). - iwlwifi: dvm: scan: Demote a few nonconformant kernel-doc headers (bsc#1187495). - iwlwifi: dvm: sta: Demote a bunch of nonconformant kernel-doc headers (bsc#1187495). - iwlwifi: dvm: tx: Demote non-compliant kernel-doc headers (bsc#1187495). - iwlwifi: enable twt by default (bsc#1187495). - iwlwifi: fix 11ax disabled bit in the regulatory capability flags (bsc#1187495). - iwlwifi: fix sar geo table initialization (bsc#1187495). - iwlwifi: fw: add default value for iwl_fw_lookup_cmd_ver (bsc#1187495). - iwlwifi: fw: move assert descriptor parser to common code (bsc#1187495). - iwlwifi: increase PNVM load timeout (bsc#1187495). - iwlwifi: iwl-drv: Provide descriptions debugfs dentries (bsc#1187495). - iwlwifi: iwl-trans: move tfd to trans layer (bsc#1187495). - iwlwifi: move PNVM implementation to common code (bsc#1187495). - iwlwifi: move all bus-independent TX functions to common code (bsc#1187495). - iwlwifi: move bc_pool to a common trans header (bsc#1187495). - iwlwifi: move bc_table_dword to a common trans header (bsc#1187495). - iwlwifi: msix: limit max RX queues for 9000 family (bsc#1187495). - iwlwifi: mvm: Add FTM initiator RTT smoothing logic (bsc#1187495). - iwlwifi: mvm: Do not install CMAC/GMAC key in AP mode (bsc#1187495). - iwlwifi: mvm: add PROTECTED_TWT firmware API (bsc#1187495). - iwlwifi: mvm: add a get lmac id function (bsc#1187495). - iwlwifi: mvm: add an option to add PASN station (bsc#1187495). - iwlwifi: mvm: add d3 prints (bsc#1187495). - iwlwifi: mvm: add support for new WOWLAN_TSC_RSC_PARAM version (bsc#1187495). - iwlwifi: mvm: add support for new version of WOWLAN_TKIP_SETTING_API_S (bsc#1187495). - iwlwifi: mvm: add support for range request command ver 11 (bsc#1187495). - iwlwifi: mvm: add support for responder dynamic config command version 3 (bsc#1187495). - iwlwifi: mvm: assign SAR table revision to the command later (bsc#1187495). - iwlwifi: mvm: avoid possible NULL pointer dereference (bsc#1187495). - iwlwifi: mvm: clear all scan UIDs (bsc#1187495). - iwlwifi: mvm: d3: parse wowlan status version 11 (bsc#1187495). - iwlwifi: mvm: d3: support GCMP ciphers (bsc#1187495). - iwlwifi: mvm: do not change band on bound PHY contexts (git-fixes). - iwlwifi: mvm: do not check if CSA event is running before removing (bsc#1187495). - iwlwifi: mvm: do not send a CSA command the firmware does not know (bsc#1187495). - iwlwifi: mvm: fix error print when session protection ends (git-fixes). - iwlwifi: mvm: fix suspicious rcu usage warnings (bsc#1187495). - iwlwifi: mvm: fix the type we use in the PPAG table validity checks (bsc#1187495). - iwlwifi: mvm: get number of stations from TLV (bsc#1187495). - iwlwifi: mvm: ignore the scan duration parameter (bsc#1187495). - iwlwifi: mvm: initiator: add option for adding a PASN responder (bsc#1187495). - iwlwifi: mvm: location: set the HLTK when PASN station is added (bsc#1187495). - iwlwifi: mvm: ops: Remove unused static struct 'iwl_mvm_debug_names' (bsc#1187495). - iwlwifi: mvm: prepare roc_done_wk to work sync (bsc#1187495). - iwlwifi: mvm: process ba-notifications also when sta rcu is invalid (bsc#1187495). - iwlwifi: mvm: re-enable TX after channel switch (bsc#1187495). - iwlwifi: mvm: read and parse SKU ID if available (bsc#1187495). - iwlwifi: mvm: remove memset of kek_kck command (bsc#1187495). - iwlwifi: mvm: remove redundant log in iwl_mvm_tvqm_enable_txq() (bsc#1187495). - iwlwifi: mvm: remove redundant support_umac_log field (bsc#1187495). - iwlwifi: mvm: responder: allow to set only the HLTK for an associated station (bsc#1187495). - iwlwifi: mvm: ring the doorbell and wait for PNVM load completion (bsc#1187495). - iwlwifi: mvm: rs-fw: handle VHT extended NSS capability (bsc#1187495). - iwlwifi: mvm: send stored PPAG command instead of local (bsc#1187495). - iwlwifi: mvm: set PROTECTED_TWT feature if supported by firmware (bsc#1187495). - iwlwifi: mvm: set PROTECTED_TWT in MAC data policy (bsc#1187495). - iwlwifi: mvm: set enabled in the PPAG command properly (bsc#1187495). - iwlwifi: mvm: stop claiming NL80211_EXT_FEATURE_SET_SCAN_DWELL (bsc#1187495). - iwlwifi: mvm: store PPAG enabled/disabled flag properly (bsc#1187495). - iwlwifi: mvm: support ADD_STA_CMD_API_S ver 12 (bsc#1187495). - iwlwifi: mvm: support more GTK rekeying algorithms (bsc#1187495). - iwlwifi: mvm: support new KEK KCK api (bsc#1187495). - iwlwifi: mvm: tx: Demote misuse of kernel-doc headers (bsc#1187495). - iwlwifi: mvm: use CHECKSUM_COMPLETE (bsc#1187495). - iwlwifi: mvm: utils: Fix some doc-rot (bsc#1187495). - iwlwifi: pcie: avoid potential PNVM leaks (bsc#1187495). - iwlwifi: pcie: do not disable interrupts for reg_lock (bsc#1187495). - iwlwifi: pcie: fix context info freeing (git-fixes). - iwlwifi: pcie: fix the xtal latency value for a few qu devices (bsc#1187495). - iwlwifi: pcie: free IML DMA memory allocation (git-fixes). - iwlwifi: pcie: implement set_pnvm op (bsc#1187495). - iwlwifi: pcie: make iwl_pcie_txq_update_byte_cnt_tbl bus independent (bsc#1187495). - iwlwifi: pcie: properly set LTR workarounds on 22000 devices (bsc#1187495). - iwlwifi: phy-ctxt: add new API VER 3 for phy context cmd (bsc#1187495). - iwlwifi: pnvm: do not skip everything when not reloading (bsc#1187495). - iwlwifi: pnvm: do not try to load after failures (bsc#1187495). - iwlwifi: pnvm: increment the pointer before checking the TLV (bsc#1187495). - iwlwifi: pnvm: set the PNVM again if it was already loaded (bsc#1187495). - iwlwifi: provide gso_type to GSO packets (bsc#1187495). - iwlwifi: queue: bail out on invalid freeing (bsc#1187495). - iwlwifi: read and parse PNVM file (bsc#1187495). - iwlwifi: regulatory: regulatory capabilities api change (bsc#1187495). - iwlwifi: remove iwl_validate_sar_geo_profile() export (bsc#1187495). - iwlwifi: remove wide_cmd_header field (bsc#1187495). - iwlwifi: rs: Demote non-compliant kernel-doc headers (bsc#1187495). - iwlwifi: rs: align to new TLC config command API (bsc#1187495). - iwlwifi: rs: set RTS protection for all non legacy rates (bsc#1187495). - iwlwifi: sta: defer ADDBA transmit in case reclaimed SN != next SN (bsc#1187495). - iwlwifi: stats: add new api fields for statistics cmd/ntfy (bsc#1187495). - iwlwifi: support REDUCE_TX_POWER_CMD version 6 (bsc#1187495). - iwlwifi: support version 3 of GEO_TX_POWER_LIMIT (bsc#1187495). - iwlwifi: support version 5 of the alive notification (bsc#1187495). - iwlwifi: thermal: support new temperature measurement API (bsc#1187495). - iwlwifi: update prph scratch structure to include PNVM data (bsc#1187495). - iwlwifi: use correct group for alive notification (bsc#1187495). - iwlwifi: wowlan: adapt to wowlan status API version 10 (bsc#1187495). - iwlwifi: yoyo: add support for internal buffer allocation in D3 (bsc#1187495). - ixgbe: Fix an error handling path in 'ixgbe_probe()' (git-fixes). - ixgbe: Fix packet corruption due to missing DMA sync (git-fixes). - ixgbevf: use xso.real_dev instead of xso.dev in callback functions of struct xfrmdev_ops (bsc#1176447). - kABI compatibility fix for max98373_priv struct (git-fixes). - kABI workaround for btintel symbol changes (bsc#1188893). - kABI workaround for intel_th_driver (git-fixes). - kABI workaround for pci/quirks.c (git-fixes). - kABI: restore struct tcpc_config definition (git-fixes). - kabi/severities: ignore kABI of iwlwifi symbols (bsc#1187495) iwlwifi driver consists of several modules and all exported symbols are internal uses. Let's ignore kABI checks of those. - kernel-binary.spec: Exctract s390 decompression code (jsc#SLE-17042). - kernel-binary.spec: Fix up usrmerge for non-modular kernels. - kernel-binary.spec: Remove obsolete and wrong comment mkmakefile is repleced by echo on newer kernel - kprobes: Do not expose probe addresses to non-CAP_SYSLOG (git-fixes). - kprobes: Fix NULL pointer dereference at kprobe_ftrace_handler (git-fixes). - kprobes: Fix compiler warning for !CONFIG_KPROBES_ON_FTRACE (git-fixes). - kprobes: Fix to check probe enabled before disarm_kprobe_ftrace() (git-fixes). - kprobes: fix kill kprobe which has been marked as gone (git-fixes). - kvm: LAPIC: Restore guard to prevent illegal APIC register access (bsc#1188772). - kvm: i8254: remove redundant assignment to pointer s (bsc#1188770). - leds: as3645a: Fix error return code in as3645a_parse_node() (git-fixes). - leds: class: The -ENOTSUPP should never be seen by user space (git-fixes). - leds: ktd2692: Fix an error handling path (git-fixes). - leds: lm3532: select regmap I2C API (git-fixes). - lib/decompress_unlz4.c: correctly handle zero-padding around initrds (git-fixes). - lib/decompressors: remove set but not used variabled 'level' (git-fixes). - lib: vsprintf: Fix handling of number field widths in vsscanf (git-fixes). - libbpf: Fixes incorrect rx_ring_setup_done (bsc#1155518). - liquidio: Fix unintentional sign extension issue on left shift of u16 (git-fixes). - mISDN: fix possible use-after-free in HFC_cleanup() (git-fixes). - mac80211: consider per-CPU statistics if present (git-fixes). - mac80211: remove iwlwifi specific workaround NDPs of null_response (git-fixes). - mac80211: remove iwlwifi specific workaround that broke sta NDP tx (git-fixes). - mac80211: remove warning in ieee80211_get_sband() (git-fixes). - mac80211: reset profile_periodicity/ema_ap (git-fixes). - mac80211_hwsim: add concurrent channels scanning support over virtio (git-fixes). - mac80211_hwsim: drop pending frames on stop (git-fixes). - math: Export mul_u64_u64_div_u64 (git-fixes). - media, bpf: Do not copy more entries than user space requested (git-fixes). - media: Fix Media Controller API config checks (git-fixes). - media: I2C: change 'RST' to "RSET" to fix multiple build errors (git-fixes). - media: au0828: fix a NULL vs IS_ERR() check (git-fixes). - media: bt8xx: Fix a missing check bug in bt878_probe (git-fixes). - media: cobalt: fix race condition in setting HPD (git-fixes). - media: cpia2: fix memory leak in cpia2_usb_probe (git-fixes). - media: dtv5100: fix control-request directions (git-fixes). - media: dvb-usb: fix wrong definition (git-fixes). - media: dvb_net: avoid speculation from net slot (git-fixes). - media: dvd_usb: memory leak in cinergyt2_fe_attach (git-fixes). - media: em28xx: Fix possible memory leak of em28xx struct (git-fixes). - media: exynos-gsc: fix pm_runtime_get_sync() usage count (git-fixes). - media: exynos4-is: Fix a use after free in isp_video_release (git-fixes). - media: gspca/gl860: fix zero-length control requests (git-fixes). - media: gspca/sq905: fix control-request direction (git-fixes). - media: gspca/sunplus: fix zero-length control requests (git-fixes). - media: imx-csi: Skip first few frames from a BT.656 source (git-fixes). - media: imx: imx7_mipi_csis: Fix logging of only error event counters (git-fixes). - media: mdk-mdp: fix pm_runtime_get_sync() usage count (git-fixes). - media: mtk-vcodec: fix PM runtime get logic (git-fixes). - media: ngene: Fix out-of-bounds bug in ngene_command_config_free_buf() (git-fixes). - media: pvrusb2: fix warning in pvr2_i2c_core_done (git-fixes). - media: rc: i2c: Fix an error message (git-fixes). - media: rtl28xxu: fix zero-length control request (git-fixes). - media: s5p-g2d: Fix a memory leak on ctx->fh.m2m_ctx (git-fixes). - media: s5p-jpeg: fix pm_runtime_get_sync() usage count (git-fixes). - media: sh_vou: fix pm_runtime_get_sync() usage count (git-fixes). - media: siano: Fix out-of-bounds warnings in smscore_load_firmware_family2() (git-fixes). - media: siano: fix device register error path (git-fixes). - media: st-hva: Fix potential NULL pointer dereferences (git-fixes). - media: sti/bdisp: fix pm_runtime_get_sync() usage count (git-fixes). - media: sti: fix obj-$(config) targets (git-fixes). - media: tc358743: Fix error return code in tc358743_probe_of() (git-fixes). - media: uvcvideo: Fix pixel format change for Elgato Cam Link 4K (git-fixes). - media: v4l2-async: Fix trivial documentation typo (git-fixes). - media: v4l2-core: Avoid the dangling pointer in v4l2_fh_release (git-fixes). - media: zr364xx: fix memory leak in zr364xx_start_readpipe (git-fixes). - memory: atmel-ebi: add missing of_node_put for loop iteration (git-fixes). - memory: fsl_ifc: fix leak of IO mapping on probe failure (git-fixes). - memory: fsl_ifc: fix leak of IO mapping on probe failure (git-fixes). - memory: fsl_ifc: fix leak of private memory on probe failure (git-fixes). - memory: fsl_ifc: fix leak of private memory on probe failure (git-fixes). - memory: pl353: Fix error return code in pl353_smc_probe() (git-fixes). - memstick: rtsx_usb_ms: fix UAF (git-fixes). - mfd: cpcap: Fix cpcap dmamask not set warnings (git-fixes). - mfd: da9052/stmpe: Add and modify MODULE_DEVICE_TABLE (git-fixes). - misc/libmasm/module: Fix two use after free in ibmasm_init_one (git-fixes). - misc: alcor_pci: fix inverted branch condition (git-fixes). - misc: alcor_pci: fix null-ptr-deref when there is no PCI bridge (git-fixes). - mm, futex: fix shared futex pgoff on shmem huge page (git fixes (kernel/futex)). - mmc: block: Disable CMDQ on the ioctl path (git-fixes). - mmc: core: Allow UHS-I voltage switch for SDSC cards if supported (git-fixes). - mmc: core: clear flags before allowing to retune (git-fixes). - mmc: sdhci-esdhc-imx: remove unused is_imx6q_usdhc (git-fixes). - mmc: sdhci-sprd: use sdhci_sprd_writew (git-fixes). - mmc: sdhci: Fix warning message when accessing RPMB in HS400 mode (git-fixes). - mmc: usdhi6rol0: fix error return code in usdhi6_probe() (git-fixes). - mmc: via-sdmmc: add a check against NULL pointer dereference (git-fixes). - mmc: vub3000: fix control-request direction (git-fixes). - mt76: fix possible NULL pointer dereference in mt76_tx (git-fixes). - mt76: mt7603: set 0 as min coverage_class value (git-fixes). - mt76: mt7615: fix endianness in mt7615_mcu_set_eeprom (git-fixes). - mt76: mt7615: fix fixed-rate tx status reporting (git-fixes). - mt76: mt7615: increase MCU command timeout (git-fixes). - mt76: mt7915: fix IEEE80211_HE_PHY_CAP7_MAX_NC for station mode (git-fixes). - mt76: set dma-done flag for flushed descriptors (git-fixes). - mtd: partitions: redboot: seek fis-index-block in the right node (git-fixes). - mtd: rawnand: marvell: add missing clk_disable_unprepare() on error in marvell_nfc_resume() (git-fixes). - mvpp2: suppress warning (git-fixes). - mwifiex: re-fix for unaligned accesses (git-fixes). - net/mlx5: Do not fail driver on failure to create debugfs (git-fixes). - net/mlx5e: Block offload of outer header csum for GRE tunnel (git-fixes). - net/sched: act_ct: remove and free nf_table callbacks (jsc#SLE-15172). - net: Make PTP-specific drivers depend on PTP_1588_CLOCK (git-fixes). - net: atlantic: fix ip dst and ipv6 address filters (git-fixes). - net: dp83867: Fix OF_MDIO config check (git-fixes). - net: ethernet: ti: Remove TI_CPTS_MOD workaround (git-fixes). - net: fec_ptp: fix issue caused by refactor the fec_devtype (git-fixes). - net: gve: convert strlcpy to strscpy (bsc#1176940). - net: gve: remove duplicated allowed (bsc#1176940). - net: hns3: Clear the CMDQ registers before unmapping BAR region (git-fixes). - net: ipw2x00,iwlegacy,iwlwifi: Remove in_interrupt() from debug macros (bsc#1187495). - net: iwlwifi: Remove in_interrupt() from tracing macro (bsc#1187495). - net: marvell: Fix OF_MDIO config check (git-fixes). - net: mvpp2: Put fwnode in error case during ->probe() (git-fixes). - net: netdevsim: use xso.real_dev instead of xso.dev in callback functions of struct xfrmdev_ops (bsc#1176447). - net: phy: fix save wrong speed and duplex problem if autoneg is on (git-fixes). - net: phy: microchip_t1: add lan87xx_phy_init to initialize the lan87xx phy (git-fixes). - net: phy: microchip_t1: add lan87xx_phy_init to initialize the lan87xx phy (git-fixes). - net: phy: realtek: add delay to fix RXC generation issue (git-fixes). - net: usb: fix possible use-after-free in smsc75xx_bind (git-fixes). - net: wilc1000: clean up resource in error path of init mon interface (git-fixes). - netfilter: ctnetlink: suspicious RCU usage in ctnetlink_dump_helpinfo (bsc#1176447). - nfc: nfcsim: fix use after free during module unload (git-fixes). - nvme-rdma: fix in-casule data send for chained sgls (git-fixes). - nvme-rdma: introduce nvme_rdma_sgl structure (git-fixes). - nvme-tcp: rerun io_work if req_list is not empty (git-fixes). - nvme: verify MNAN value if ANA is enabled (bsc#1185791). - pinctrl/amd: Add device HID for new AMD GPIO controller (git-fixes). - pinctrl: mcp23s08: Fix missing unlock on error in mcp23s08_irq() (git-fixes). - pinctrl: mcp23s08: fix race condition in irq handler (git-fixes). - pinctrl: stm32: fix the reported number of GPIO lines per bank (git-fixes). - platform/chrome: cros_ec_lightbar: Reduce ligthbar get version command (git-fixes). - platform/x86: dell-smbios-wmi: Fix oops on rmmod dell_smbios (git-fixes). - platform/x86: intel_int0002_vgpio: Only call enable_irq_wake() when using s2idle (git-fixes). - platform/x86: intel_int0002_vgpio: Pass irqchip when adding gpiochip (git-fixes). - platform/x86: intel_int0002_vgpio: Remove dev_err() usage after platform_get_irq() (git-fixes). - platform/x86: intel_int0002_vgpio: Use device_init_wakeup (git-fixes). - platform/x86: toshiba_acpi: Fix missing error code in toshiba_acpi_setup_keyboard() (git-fixes). - power: reset: gpio-poweroff: add missing MODULE_DEVICE_TABLE (git-fixes). - power: supply: ab8500: Avoid NULL pointers (git-fixes). - power: supply: ab8500: add missing MODULE_DEVICE_TABLE (git-fixes). - power: supply: charger-manager: add missing MODULE_DEVICE_TABLE (git-fixes). - power: supply: max17042: Do not enforce (incorrect) interrupt trigger type (git-fixes). - power: supply: sc2731_charger: Add missing MODULE_DEVICE_TABLE (git-fixes). - power: supply: sc27xx: Add missing MODULE_DEVICE_TABLE (git-fixes). - powerpc/64s: Move branch cache flushing bcctr variant to ppc-ops.h (bsc#1188885 ltc#193722). - powerpc/64s: rename pnv|pseries_setup_rfi_flush to _setup_security_mitigations (bsc#1188885 ltc#193722). - powerpc/mm: Fix lockup on kernel exec fault (bsc#1156395). - powerpc/papr_scm: Properly handle UUID types and API (bsc#1113295, git-fixes). - powerpc/pesries: Get STF barrier requirement from H_GET_CPU_CHARACTERISTICS (bsc#1188885 ltc#193722). - powerpc/pseries: Get entry and uaccess flush required bits from H_GET_CPU_CHARACTERISTICS (bsc#1188885 ltc#193722). - powerpc/pseries: add new branch prediction security bits for link stack (bsc#1188885 ltc#193722). - powerpc/pseries: export LPAR security flavor in lparcfg (bsc#1188885 ltc#193722). - powerpc/security: Add a security feature for STF barrier (bsc#1188885 ltc#193722). - powerpc/security: Allow for processors that flush the link stack using the special bcctr (bsc#1188885 ltc#193722). - powerpc/security: Fix link stack flush instruction (bsc#1188885 ltc#193722). - powerpc/security: change link stack flush state to the flush type enum (bsc#1188885 ltc#193722). - powerpc/security: make display of branch cache flush more consistent (bsc#1188885 ltc#193722). - powerpc/security: re-name count cache flush to branch cache flush (bsc#1188885 ltc#193722). - powerpc/security: split branch cache flush toggle from code patching (bsc#1188885 ltc#193722). - powerpc/stacktrace: Fix spurious "stale" traces in raise_backtrace_ipi() (bsc#1156395). - powerpc/stacktrace: Include linux/delay.h (bsc#1156395). - powerpc: Offline CPU in stop_this_cpu() (bsc#1156395). - prctl: PR_{G,S}ET_IO_FLUSHER to support controlling memory reclaim (bsc#1188752). - ptp_qoriq: fix overflow in ptp_qoriq_adjfine() u64 calcalation (git-fixes). - pwm: img: Fix PM reference leak in img_pwm_enable() (git-fixes). - pwm: imx1: Do not disable clocks at device remove time (git-fixes). - pwm: spear: Do not modify HW state in .remove callback (git-fixes). - qemu_fw_cfg: Make fw_cfg_rev_attr a proper kobj_attribute (git-fixes). - r8152: Avoid memcpy() over-reading of ETH_SS_STATS (git-fixes). - r8152: Fix a deadlock by doubly PM resume (bsc#1186194). - r8152: Fix potential PM refcount imbalance (bsc#1186194). - r8169: Avoid memcpy() over-reading of ETH_SS_STATS (git-fixes). - r8169: avoid link-up interrupt issue on RTL8106e if user enables ASPM (git-fixes). - random32: Fix implicit truncation warning in prandom_seed_state() (git-fixes). - ravb: Fix bit fields checking in ravb_hwtstamp_get() (git-fixes). - rbd: always kick acquire on "acquired" and "released" notifications (bsc#1188746). - rbd: do not hold lock_rwsem while running_list is being drained (bsc#1188747). - regulator: da9052: Ensure enough delay time for .set_voltage_time_sel (git-fixes). - regulator: hi6421: Fix getting wrong drvdata (git-fixes). - regulator: hi6421: Use correct variable type for regmap api val argument (git-fixes). - regulator: hi655x: Fix pass wrong pointer to config.driver_data (git-fixes). - regulator: uniphier: Add missing MODULE_DEVICE_TABLE (git-fixes). - replaced with upstream security mitigation cleanup - reset: a10sr: add missing of_match_table reference (git-fixes). - reset: bail if try_module_get() fails (git-fixes). - reset: brcmstb: Add missing MODULE_DEVICE_TABLE (git-fixes). - reset: ti-syscon: fix to_ti_syscon_reset_data macro (git-fixes). - rpm/kernel-binary.spec.in: Do not install usrmerged kernel on Leap (boo#1184804). - rpm/kernel-binary.spec.in: Remove zdebug define used only once. - rsi: Assign beacon rate settings to the correct rate_info descriptor field (git-fixes). - rtc: fix snprintf() checking in is_rtc_hctosys() (git-fixes). - rtc: max77686: Do not enforce (incorrect) interrupt trigger type (git-fixes). - rtc: mxc_v2: add missing MODULE_DEVICE_TABLE (git-fixes). - rtc: stm32: Fix unbalanced clk_disable_unprepare() on probe error path (git-fixes). - rtl8xxxu: Fix device info for RTL8192EU devices (git-fixes). - rtw88: 8822c: fix lc calibration timing (git-fixes). - scsi: fc: Add 256GBit speed setting to SCSI FC transport (bsc#1188101). - scsi: ibmvfc: Fix command state accounting and stale response detection (jsc#SLE-15442 bsc#1180814 ltc#187461 git-fixes). - scsi: qedf: Do not put host in qedf_vport_create() unconditionally (bsc#1170511). - serial: 8250: Actually allow UPF_MAGIC_MULTIPLIER baud rates (git-fixes). - serial: 8250_pci: Add support for new HPE serial device (git-fixes). - serial: fsl_lpuart: remove RTSCTS handling from get_mctrl() (git-fixes). - serial: fsl_lpuart: remove RTSCTS handling from get_mctrl() (git-fixes). - serial: mvebu-uart: correctly calculate minimal possible baudrate (git-fixes). - serial: mvebu-uart: do not allow changing baudrate when uartclk is not available (git-fixes). - serial: mvebu-uart: fix calculation of clock divisor (git-fixes). - serial: tegra-tcu: Reorder channel initialization (git-fixes). - serial_cs: Add Option International GSM-Ready 56K/ISDN modem (git-fixes). - serial_cs: remove wrong GLOBETROTTER.cis entry (git-fixes). - sfp: Fix error handing in sfp_probe() (git-fixes). - skbuff: Fix build with SKB extensions disabled (jsc#SLE-15172). - skbuff: Release nfct refcount on napi stolen or re-used skbs (jsc#SLE-15172). - soc/tegra: fuse: Fix Tegra234-only builds (git-fixes). - soc: fsl: qbman: Delete useless kfree code (bsc#1188176). - soc: fsl: qbman: Ensure device cleanup is run for kexec (bsc#1188176). - soundwire: stream: Fix test for DP prepare complete (git-fixes). - spi: Make of_register_spi_device also set the fwnode (git-fixes). - spi: cadence: Correct initialisation of runtime PM again (git-fixes). - spi: fspi: dynamically alloc AHB memory (bsc#1188121). - spi: imx: add a check for speed_hz before calculating the clock (git-fixes). - spi: mediatek: fix fifo rx mode (git-fixes). - spi: nxp-fspi: Use devm API to fix missed unregistration of controller (bsc#1188121). - spi: omap-100k: Fix the length judgment problem (git-fixes). - spi: spi-loopback-test: Fix 'tx_buf' might be 'rx_buf' (git-fixes). - spi: spi-nxp-fspi: Add ACPI support (bsc#1188121). - spi: spi-nxp-fspi: Add support for IP read only (bsc#1188121). - spi: spi-nxp-fspi: Enable the Octal Mode in MCR0 (bsc#1188121). - spi: spi-nxp-fspi: Fix a NULL vs IS_ERR() check in probe (bsc#1188121). - spi: spi-nxp-fspi: Implement errata workaround for LS1028A (bsc#1188121). - spi: spi-sun6i: Fix chipselect/clock bug (git-fixes). - spi: spi-topcliff-pch: Fix potential double free in pch_spi_process_messages() (git-fixes). - spi: stm32-qspi: Remove unused qspi field of struct stm32_qspi_flash (git-fixes). - spi: tegra114: Fix an error message (git-fixes). - ssb: Fix error return code in ssb_bus_scan() (git-fixes). - ssb: sdio: Do not overwrite const buffer if block_write fails (git-fixes). - staging: gdm724x: check for buffer overflow in gdm_lte_multi_sdu_pkt() (git-fixes). - staging: gdm724x: check for overflow in gdm_lte_netif_rx() (git-fixes). - staging: rtl8712: fix memory leak in rtl871x_load_fw_cb (git-fixes). - staging: rtl8712: remove redundant check in r871xu_drv_init (git-fixes). - staging: rtl8723bs: fix macro value for 2.4Ghz only device (git-fixes). - thermal/core: Correct function name thermal_zone_device_unregister() (git-fixes). - thermal/drivers/int340x/processor_thermal: Fix tcc setting (git-fixes). - thermal/drivers/rcar_gen3_thermal: Fix coefficient calculations (git-fixes). - thunderbolt: Bond lanes only when dual_link_port != NULL in alloc_dev_default() (git-fixes). - timers: Fix get_next_timer_interrupt() with no timers pending (git-fixes) - tpm, tpm_tis: Decorate tpm_get_timeouts() with request_locality() (bsc#1188036). - tpm, tpm_tis: Decorate tpm_tis_gen_interrupt() with request_locality() (bsc#1188036). - tpm, tpm_tis: Extend locality handling to TPM2 in tpm_tis_gen_interrupt() (bsc#1188036). - tpm, tpm_tis: Reserve locality in tpm_tis_resume() (bsc#1188036). - tpm: efi: Use local variable for calculating final log size (git-fixes). - tracepoint: Add tracepoint_probe_register_may_exist() for BPF tracing (git-fixes). - tracing/histograms: Fix parsing of "sym-offset" modifier (git-fixes). - tracing: Do not reference char * as a string in histograms (git-fixes). - tracing: Resize tgid_map to pid_max, not PID_MAX_DEFAULT (git-fixes). - tracing: Simplify & fix saved_tgids logic (git-fixes). - tty: nozomi: Fix a resource leak in an error handling function (git-fixes). - tty: nozomi: Fix the error handling path of 'nozomi_card_init()' (git-fixes). - tty: serial: 8250: serial_cs: Fix a memory leak in error handling path (git-fixes). - tty: serial: fsl_lpuart: fix the potential risk of division or modulo by zero (git-fixes). - usb: dwc2: Do not reset the core after setting turnaround time (git-fixes). - usb: dwc2: gadget: Fix sending zero length packet in DDMA mode (git-fixes). - usb: dwc3: Fix debugfs creation flow (git-fixes). - usb: gadget: eem: fix echo command packet response issue (git-fixes). - usb: gadget: f_fs: Fix setting of device and driver data cross-references (git-fixes). - usb: gadget: f_hid: fix endianness issue with descriptors (git-fixes). - usb: gadget: hid: fix error return code in hid_bind() (git-fixes). - usb: hub: Disable USB 3 device initiated lpm if exit latency is too high (git-fixes). - usb: hub: Fix link power management max exit latency (MEL) calculations (git-fixes). - usb: max-3421: Prevent corruption of freed memory (git-fixes). - usb: renesas_usbhs: Fix superfluous irqs happen after usb_pkt_pop() (git-fixes). - usb: typec: Add the missed altmode_id_remove() in typec_register_altmode() (git-fixes). - usb: typec: fusb302: Always provide fwnode for the port (git-fixes). - usb: typec: fusb302: fix "op-sink-microwatt" default that was in mW (git-fixes). - usb: typec: tcpm: Error handling for tcpm_register_partner_altmodes (git-fixes). - usb: typec: tcpm: Move mod_delayed_work(&port->vdm_state_machine) call into tcpm_queue_vdm() (git-fixes). - usb: typec: tcpm: Refactor tcpm_handle_vdm_request (git-fixes). - usb: typec: tcpm: Refactor tcpm_handle_vdm_request payload handling (git-fixes). - usb: typec: tcpm: Remove tcpc_config configuration mechanism (git-fixes). - usb: typec: tcpm: Switch to use fwnode_property_count_uXX() (git-fixes). - usb: typec: tcpm: move to SNK_UNATTACHED if sink removed for DRP (git-fixes). - usb: typec: tcpm: set correct data role for non-DRD (git-fixes). - usb: typec: tcpm: update power supply once partner accepts (git-fixes). - usb: typec: ucsi: Hold con->lock for the entire duration of ucsi_register_port() (git-fixes). - usb: typec: ucsi: Put fwnode in any case during ->probe() (git-fixes). - usb: typec: wcove: Fx wrong kernel doc format (git-fixes). - uuid: Add inline helpers to import / export UUIDs (bsc#1113295, git-fixes). - vfio/pci: Handle concurrent vma faults (git-fixes). - vfs: Convert functionfs to use the new mount API (git -fixes). - video: fbdev: imxfb: Fix an error message (git-fixes). - virtio_console: Assure used length from device is limited (git-fixes). - virtio_net: move tx vq operation under tx queue lock (git-fixes). - visorbus: fix error return code in visorchipset_init() (git-fixes). - vmxnet3: fix cksum offload issues for tunnels with non-default udp ports (git-fixes). - vxlan: add missing rcu_read_lock() in neigh_reduce() (git-fixes). - w1: ds2438: fixing bug that would always get page0 (git-fixes). - watchdog: Fix possible use-after-free by calling del_timer_sync() (git-fixes). - watchdog: Fix possible use-after-free in wdt_startup() (git-fixes). - watchdog: aspeed: fix hardware timeout calculation (git-fixes). - watchdog: iTCO_wdt: Account for rebooting on second timeout (git-fixes). - watchdog: sc520_wdt: Fix possible use-after-free in wdt_turnoff() (git-fixes). - watchdog: sp805: Fix kernel doc description (git-fixes). - wcn36xx: Move hal_buf allocation to devm_kmalloc in probe (git-fixes). - wilc1000: write value to WILC_INTR2_ENABLE register (git-fixes). - wireless: carl9170: fix LEDS build errors & warnings (git-fixes). - wireless: wext-spy: Fix out-of-bounds warning (git-fixes). - wl1251: Fix possible buffer overflow in wl1251_cmd_scan (git-fixes). - wlcore/wl12xx: Fix wl12xx get_mac error if device is in ELP (git-fixes). - workqueue: fix UAF in pwq_unbound_release_workfn() (bsc#1188973). - x86/kvm: Disable all PV features on crash (bsc#1185308). - x86/kvm: Disable all PV features on crash (bsc#1185308). - x86/kvm: Disable kvmclock on all CPUs on shutdown (bsc#1185308). - x86/kvm: Disable kvmclock on all CPUs on shutdown (bsc#1185308). - x86/kvm: Fix pr_info() for async PF setup/teardown (bsc#1185308). - x86/kvm: Fix pr_info() for async PF setup/teardown (bsc#1185308). - x86/kvm: Teardown PV features on boot CPU as well (bsc#1185308). - x86/kvm: Teardown PV features on boot CPU as well (bsc#1185308). - x86/kvm: Unify kvm_pv_guest_cpu_reboot() with kvm_guest_cpu_offline() (bsc#1185308). - x86/kvm: Unify kvm_pv_guest_cpu_reboot() with kvm_guest_cpu_offline() (bsc#1185308). - xen/events: reset active flag for lateeoi events later (git-fixes). - xfrm: Fix xfrm offload fallback fail case (bsc#1176447). - xfrm: delete xfrm4_output_finish xfrm6_output_finish declarations (bsc#1176447). - xfrm: xfrm_state_mtu should return at least 1280 for ipv6 (bsc#1185377). - xhci: Fix lost USB 2 remote wake (git-fixes). - xhci: solve a double free problem while doing s4 (git-fixes). - xsk: Fix missing validation for skb and unaligned mode (jsc#SLE-13706). kernel-devel-5.3.18-59.19.1.noarch.rpm True kernel-docs-5.3.18-59.19.1.noarch.rpm True kernel-docs-5.3.18-59.19.1.nosrc.rpm True kernel-docs-html-5.3.18-59.19.1.noarch.rpm True kernel-macros-5.3.18-59.19.1.noarch.rpm True kernel-obs-build-5.3.18-59.19.1.x86_64.rpm True kernel-source-5.3.18-59.19.1.noarch.rpm True kernel-source-5.3.18-59.19.1.src.rpm True kernel-source-vanilla-5.3.18-59.19.1.noarch.rpm True cluster-md-kmp-default-5.3.18-59.19.1.x86_64.rpm True cluster-md-kmp-preempt-5.3.18-59.19.1.x86_64.rpm True dlm-kmp-default-5.3.18-59.19.1.x86_64.rpm True dlm-kmp-preempt-5.3.18-59.19.1.x86_64.rpm True gfs2-kmp-default-5.3.18-59.19.1.x86_64.rpm True gfs2-kmp-preempt-5.3.18-59.19.1.x86_64.rpm True kernel-debug-5.3.18-59.19.1.nosrc.rpm True kernel-debug-5.3.18-59.19.1.x86_64.rpm True kernel-debug-devel-5.3.18-59.19.1.x86_64.rpm True kernel-debug-livepatch-devel-5.3.18-59.19.1.x86_64.rpm True kernel-default-5.3.18-59.19.1.nosrc.rpm True kernel-default-5.3.18-59.19.1.x86_64.rpm True kernel-default-base-5.3.18-59.19.1.18.10.1.src.rpm True kernel-default-base-5.3.18-59.19.1.18.10.1.x86_64.rpm True kernel-default-base-rebuild-5.3.18-59.19.1.18.10.1.x86_64.rpm True kernel-default-devel-5.3.18-59.19.1.x86_64.rpm True kernel-default-extra-5.3.18-59.19.1.x86_64.rpm True kernel-default-livepatch-5.3.18-59.19.1.x86_64.rpm True kernel-default-livepatch-devel-5.3.18-59.19.1.x86_64.rpm True kernel-default-optional-5.3.18-59.19.1.x86_64.rpm True kernel-kvmsmall-5.3.18-59.19.1.nosrc.rpm True kernel-kvmsmall-5.3.18-59.19.1.x86_64.rpm True kernel-kvmsmall-devel-5.3.18-59.19.1.x86_64.rpm True kernel-kvmsmall-livepatch-devel-5.3.18-59.19.1.x86_64.rpm True kernel-obs-build-5.3.18-59.19.1.src.rpm True kernel-obs-qa-5.3.18-59.19.1.src.rpm True kernel-obs-qa-5.3.18-59.19.1.x86_64.rpm True kernel-preempt-5.3.18-59.19.1.nosrc.rpm True kernel-preempt-5.3.18-59.19.1.x86_64.rpm True kernel-preempt-devel-5.3.18-59.19.1.x86_64.rpm True kernel-preempt-extra-5.3.18-59.19.1.x86_64.rpm True kernel-preempt-livepatch-devel-5.3.18-59.19.1.x86_64.rpm True kernel-preempt-optional-5.3.18-59.19.1.x86_64.rpm True kernel-syms-5.3.18-59.19.1.src.rpm True kernel-syms-5.3.18-59.19.1.x86_64.rpm True kselftests-kmp-default-5.3.18-59.19.1.x86_64.rpm True kselftests-kmp-preempt-5.3.18-59.19.1.x86_64.rpm True ocfs2-kmp-default-5.3.18-59.19.1.x86_64.rpm True ocfs2-kmp-preempt-5.3.18-59.19.1.x86_64.rpm True reiserfs-kmp-default-5.3.18-59.19.1.x86_64.rpm True reiserfs-kmp-preempt-5.3.18-59.19.1.x86_64.rpm True cluster-md-kmp-default-5.3.18-59.19.1.s390x.rpm True dlm-kmp-default-5.3.18-59.19.1.s390x.rpm True gfs2-kmp-default-5.3.18-59.19.1.s390x.rpm True kernel-default-5.3.18-59.19.1.s390x.rpm True kernel-default-base-5.3.18-59.19.1.18.10.1.s390x.rpm True kernel-default-base-rebuild-5.3.18-59.19.1.18.10.1.s390x.rpm True kernel-default-devel-5.3.18-59.19.1.s390x.rpm True kernel-default-extra-5.3.18-59.19.1.s390x.rpm True kernel-default-livepatch-5.3.18-59.19.1.s390x.rpm True kernel-default-livepatch-devel-5.3.18-59.19.1.s390x.rpm True kernel-default-optional-5.3.18-59.19.1.s390x.rpm True kernel-obs-build-5.3.18-59.19.1.s390x.rpm True kernel-obs-qa-5.3.18-59.19.1.s390x.rpm True kernel-syms-5.3.18-59.19.1.s390x.rpm True kernel-zfcpdump-5.3.18-59.19.1.nosrc.rpm True kernel-zfcpdump-5.3.18-59.19.1.s390x.rpm True kselftests-kmp-default-5.3.18-59.19.1.s390x.rpm True ocfs2-kmp-default-5.3.18-59.19.1.s390x.rpm True reiserfs-kmp-default-5.3.18-59.19.1.s390x.rpm True cluster-md-kmp-default-5.3.18-59.19.1.ppc64le.rpm True dlm-kmp-default-5.3.18-59.19.1.ppc64le.rpm True gfs2-kmp-default-5.3.18-59.19.1.ppc64le.rpm True kernel-debug-5.3.18-59.19.1.ppc64le.rpm True kernel-debug-devel-5.3.18-59.19.1.ppc64le.rpm True kernel-debug-livepatch-devel-5.3.18-59.19.1.ppc64le.rpm True kernel-default-5.3.18-59.19.1.ppc64le.rpm True kernel-default-base-5.3.18-59.19.1.18.10.1.ppc64le.rpm True kernel-default-base-rebuild-5.3.18-59.19.1.18.10.1.ppc64le.rpm True kernel-default-devel-5.3.18-59.19.1.ppc64le.rpm True kernel-default-extra-5.3.18-59.19.1.ppc64le.rpm True kernel-default-livepatch-5.3.18-59.19.1.ppc64le.rpm True kernel-default-livepatch-devel-5.3.18-59.19.1.ppc64le.rpm True kernel-default-optional-5.3.18-59.19.1.ppc64le.rpm True kernel-kvmsmall-5.3.18-59.19.1.ppc64le.rpm True kernel-kvmsmall-devel-5.3.18-59.19.1.ppc64le.rpm True kernel-kvmsmall-livepatch-devel-5.3.18-59.19.1.ppc64le.rpm True kernel-obs-build-5.3.18-59.19.1.ppc64le.rpm True kernel-obs-qa-5.3.18-59.19.1.ppc64le.rpm True kernel-syms-5.3.18-59.19.1.ppc64le.rpm True kselftests-kmp-default-5.3.18-59.19.1.ppc64le.rpm True ocfs2-kmp-default-5.3.18-59.19.1.ppc64le.rpm True reiserfs-kmp-default-5.3.18-59.19.1.ppc64le.rpm True cluster-md-kmp-64kb-5.3.18-59.19.1.aarch64.rpm True cluster-md-kmp-default-5.3.18-59.19.1.aarch64.rpm True cluster-md-kmp-preempt-5.3.18-59.19.1.aarch64.rpm True dlm-kmp-64kb-5.3.18-59.19.1.aarch64.rpm True dlm-kmp-default-5.3.18-59.19.1.aarch64.rpm True dlm-kmp-preempt-5.3.18-59.19.1.aarch64.rpm True dtb-aarch64-5.3.18-59.19.1.src.rpm True dtb-al-5.3.18-59.19.1.aarch64.rpm True dtb-allwinner-5.3.18-59.19.1.aarch64.rpm True dtb-altera-5.3.18-59.19.1.aarch64.rpm True dtb-amd-5.3.18-59.19.1.aarch64.rpm True dtb-amlogic-5.3.18-59.19.1.aarch64.rpm True dtb-apm-5.3.18-59.19.1.aarch64.rpm True dtb-arm-5.3.18-59.19.1.aarch64.rpm True dtb-broadcom-5.3.18-59.19.1.aarch64.rpm True dtb-cavium-5.3.18-59.19.1.aarch64.rpm True dtb-exynos-5.3.18-59.19.1.aarch64.rpm True dtb-freescale-5.3.18-59.19.1.aarch64.rpm True dtb-hisilicon-5.3.18-59.19.1.aarch64.rpm True dtb-lg-5.3.18-59.19.1.aarch64.rpm True dtb-marvell-5.3.18-59.19.1.aarch64.rpm True dtb-mediatek-5.3.18-59.19.1.aarch64.rpm True dtb-nvidia-5.3.18-59.19.1.aarch64.rpm True dtb-qcom-5.3.18-59.19.1.aarch64.rpm True dtb-renesas-5.3.18-59.19.1.aarch64.rpm True dtb-rockchip-5.3.18-59.19.1.aarch64.rpm True dtb-socionext-5.3.18-59.19.1.aarch64.rpm True dtb-sprd-5.3.18-59.19.1.aarch64.rpm True dtb-xilinx-5.3.18-59.19.1.aarch64.rpm True dtb-zte-5.3.18-59.19.1.aarch64.rpm True gfs2-kmp-64kb-5.3.18-59.19.1.aarch64.rpm True gfs2-kmp-default-5.3.18-59.19.1.aarch64.rpm True gfs2-kmp-preempt-5.3.18-59.19.1.aarch64.rpm True kernel-64kb-5.3.18-59.19.1.aarch64.rpm True kernel-64kb-5.3.18-59.19.1.nosrc.rpm True kernel-64kb-devel-5.3.18-59.19.1.aarch64.rpm True kernel-64kb-extra-5.3.18-59.19.1.aarch64.rpm True kernel-64kb-livepatch-devel-5.3.18-59.19.1.aarch64.rpm True kernel-64kb-optional-5.3.18-59.19.1.aarch64.rpm True kernel-default-5.3.18-59.19.1.aarch64.rpm True kernel-default-base-5.3.18-59.19.1.18.10.1.aarch64.rpm True kernel-default-base-rebuild-5.3.18-59.19.1.18.10.1.aarch64.rpm True kernel-default-devel-5.3.18-59.19.1.aarch64.rpm True kernel-default-extra-5.3.18-59.19.1.aarch64.rpm True kernel-default-livepatch-5.3.18-59.19.1.aarch64.rpm True kernel-default-livepatch-devel-5.3.18-59.19.1.aarch64.rpm True kernel-default-optional-5.3.18-59.19.1.aarch64.rpm True kernel-obs-build-5.3.18-59.19.1.aarch64.rpm True kernel-obs-qa-5.3.18-59.19.1.aarch64.rpm True kernel-preempt-5.3.18-59.19.1.aarch64.rpm True kernel-preempt-devel-5.3.18-59.19.1.aarch64.rpm True kernel-preempt-extra-5.3.18-59.19.1.aarch64.rpm True kernel-preempt-livepatch-devel-5.3.18-59.19.1.aarch64.rpm True kernel-preempt-optional-5.3.18-59.19.1.aarch64.rpm True kernel-syms-5.3.18-59.19.1.aarch64.rpm True kselftests-kmp-64kb-5.3.18-59.19.1.aarch64.rpm True kselftests-kmp-default-5.3.18-59.19.1.aarch64.rpm True kselftests-kmp-preempt-5.3.18-59.19.1.aarch64.rpm True ocfs2-kmp-64kb-5.3.18-59.19.1.aarch64.rpm True ocfs2-kmp-default-5.3.18-59.19.1.aarch64.rpm True ocfs2-kmp-preempt-5.3.18-59.19.1.aarch64.rpm True reiserfs-kmp-64kb-5.3.18-59.19.1.aarch64.rpm True reiserfs-kmp-default-5.3.18-59.19.1.aarch64.rpm True reiserfs-kmp-preempt-5.3.18-59.19.1.aarch64.rpm True openSUSE-SLE-15.3-2021-2793 Security update for openexr important SUSE Updates openSUSE-SLE 15.3 This update for openexr fixes the following issues: - CVE-2021-20298 [bsc#1188460]: Fixed Out-of-memory in B44Compressor - CVE-2021-20299 [bsc#1188459]: Fixed Null-dereference READ in Imf_2_5:Header:operator - CVE-2021-20300 [bsc#1188458]: Fixed Integer-overflow in Imf_2_5:hufUncompress - CVE-2021-20302 [bsc#1188462]: Fixed Floating-point-exception in Imf_2_5:precalculateTileInfot - CVE-2021-20303 [bsc#1188457]: Fixed Heap-buffer-overflow in Imf_2_5::copyIntoFrameBuffer - CVE-2021-20304 [bsc#1188461]: Fixed Undefined-shift in Imf_2_5:hufDecode libIlmImf-2_2-23-2.2.1-3.35.1.x86_64.rpm libIlmImf-2_2-23-32bit-2.2.1-3.35.1.x86_64.rpm libIlmImfUtil-2_2-23-2.2.1-3.35.1.x86_64.rpm libIlmImfUtil-2_2-23-32bit-2.2.1-3.35.1.x86_64.rpm openexr-2.2.1-3.35.1.src.rpm openexr-2.2.1-3.35.1.x86_64.rpm openexr-devel-2.2.1-3.35.1.x86_64.rpm openexr-doc-2.2.1-3.35.1.x86_64.rpm libIlmImf-2_2-23-2.2.1-3.35.1.s390x.rpm libIlmImfUtil-2_2-23-2.2.1-3.35.1.s390x.rpm openexr-2.2.1-3.35.1.s390x.rpm openexr-devel-2.2.1-3.35.1.s390x.rpm openexr-doc-2.2.1-3.35.1.s390x.rpm libIlmImf-2_2-23-2.2.1-3.35.1.ppc64le.rpm libIlmImfUtil-2_2-23-2.2.1-3.35.1.ppc64le.rpm openexr-2.2.1-3.35.1.ppc64le.rpm openexr-devel-2.2.1-3.35.1.ppc64le.rpm openexr-doc-2.2.1-3.35.1.ppc64le.rpm libIlmImf-2_2-23-2.2.1-3.35.1.aarch64.rpm libIlmImfUtil-2_2-23-2.2.1-3.35.1.aarch64.rpm openexr-2.2.1-3.35.1.aarch64.rpm openexr-devel-2.2.1-3.35.1.aarch64.rpm openexr-doc-2.2.1-3.35.1.aarch64.rpm openSUSE-SLE-15.3-2021-2782 Recommended update for yast2-installation important SUSE Updates openSUSE-SLE 15.3 This update for yast2-installation fixes the following issues: - Activate devices before probing to fix an issue when volume groups are incomplete due to inactive multipathing after upgrade. (bsc#1187220) yast2-installation-4.3.41-3.7.2.noarch.rpm yast2-installation-4.3.41-3.7.2.src.rpm yast2-proxy-4.3.3-3.5.1.noarch.rpm yast2-proxy-4.3.3-3.5.1.src.rpm openSUSE-SLE-15.3-2021-2950 Recommended update for pcre2 moderate SUSE Updates openSUSE-SLE 15.3 This update for pcre2 fixes the following issue: - Equalizes the result of a function that may have different output on s390x if compared to older (bsc#1187937) PHP versions. libpcre2-16-0-10.31-3.3.1.x86_64.rpm libpcre2-16-0-32bit-10.31-3.3.1.x86_64.rpm libpcre2-32-0-10.31-3.3.1.x86_64.rpm libpcre2-32-0-32bit-10.31-3.3.1.x86_64.rpm libpcre2-8-0-10.31-3.3.1.x86_64.rpm libpcre2-8-0-32bit-10.31-3.3.1.x86_64.rpm libpcre2-posix2-10.31-3.3.1.x86_64.rpm libpcre2-posix2-32bit-10.31-3.3.1.x86_64.rpm pcre2-10.31-3.3.1.src.rpm pcre2-devel-10.31-3.3.1.x86_64.rpm pcre2-devel-static-10.31-3.3.1.x86_64.rpm pcre2-doc-10.31-3.3.1.noarch.rpm pcre2-tools-10.31-3.3.1.x86_64.rpm libpcre2-16-0-10.31-3.3.1.s390x.rpm libpcre2-32-0-10.31-3.3.1.s390x.rpm libpcre2-8-0-10.31-3.3.1.s390x.rpm libpcre2-posix2-10.31-3.3.1.s390x.rpm pcre2-devel-10.31-3.3.1.s390x.rpm pcre2-devel-static-10.31-3.3.1.s390x.rpm pcre2-tools-10.31-3.3.1.s390x.rpm libpcre2-16-0-10.31-3.3.1.ppc64le.rpm libpcre2-32-0-10.31-3.3.1.ppc64le.rpm libpcre2-8-0-10.31-3.3.1.ppc64le.rpm libpcre2-posix2-10.31-3.3.1.ppc64le.rpm pcre2-devel-10.31-3.3.1.ppc64le.rpm pcre2-devel-static-10.31-3.3.1.ppc64le.rpm pcre2-tools-10.31-3.3.1.ppc64le.rpm libpcre2-16-0-10.31-3.3.1.aarch64.rpm libpcre2-32-0-10.31-3.3.1.aarch64.rpm libpcre2-8-0-10.31-3.3.1.aarch64.rpm libpcre2-posix2-10.31-3.3.1.aarch64.rpm pcre2-devel-10.31-3.3.1.aarch64.rpm pcre2-devel-static-10.31-3.3.1.aarch64.rpm pcre2-tools-10.31-3.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-2641 Security update for python-reportlab moderate SUSE Updates openSUSE-SLE 15.3 This update for python-reportlab fixes the following issues: - CVE-2020-28463: Fixed Server-side Request Forgery via img tags (bsc#1182503). python-reportlab-3.4.0-3.6.1.src.rpm python2-reportlab-3.4.0-3.6.1.x86_64.rpm python3-reportlab-3.4.0-3.6.1.x86_64.rpm python2-reportlab-3.4.0-3.6.1.s390x.rpm python3-reportlab-3.4.0-3.6.1.s390x.rpm python2-reportlab-3.4.0-3.6.1.ppc64le.rpm python3-reportlab-3.4.0-3.6.1.ppc64le.rpm python2-reportlab-3.4.0-3.6.1.aarch64.rpm python3-reportlab-3.4.0-3.6.1.aarch64.rpm openSUSE-SLE-15.3-2021-2645 Security update for the Linux Kernel important SUSE Updates openSUSE-SLE 15.3 The SUSE Linux Enterprise 15 SP3 Azure kernel was updated to receive various security and bugfixes. The following security bugs were fixed: - CVE-2021-3659: Fixed a NULL pointer dereference in llsec_key_alloc() in net/mac802154/llsec.c (bsc#1188876). - CVE-2021-21781: Fixed a information disclosure vulnerability in the ARM SIGPAGE (bsc#1188445). - CVE-2021-22543: Fixed improper handling of VM_IO|VM_PFNMAP vmas in KVM, which could bypass RO checks and can lead to pages being freed while still accessible by the VMM and guest. This allowed users with the ability to start and control a VM to read/write random pages of memory and can result in local privilege escalation (bsc#1186482). - CVE-2021-37576: Fixed an issue on the powerpc platform, where a KVM guest OS user could cause host OS memory corruption via rtas_args.nargs (bsc#1188838). - CVE-2021-3609: Fixed a potential local privilege escalation in the CAN BCM networking protocol (bsc#1187215). - CVE-2021-3612: Fixed an out-of-bounds memory write flaw in the joystick devices subsystem. This flaw allowed a local user to crash the system or possibly escalate their privileges on the system. (bsc#1187585) - CVE-2021-35039: Fixed mishandling of signature verification. Without CONFIG_MODULE_SIG, verification that a kernel module is signed, for loading via init_module, did not occur for a module.sig_enforce=1 command-line argument (bsc#1188080). The following non-security bugs were fixed: - ACPI: AMBA: Fix resource name in /proc/iomem (git-fixes). - ACPI: APEI: fix synchronous external aborts in user-mode (git-fixes). - ACPI: DPTF: Fix reading of attributes (git-fixes). - ACPI: EC: Make more Asus laptops use ECDT _GPE (git-fixes). - ACPI: PM / fan: Put fan device IDs into separate header file (git-fixes). - ACPI: bus: Call kobject_put() in acpi_init() error path (git-fixes). - ACPI: processor idle: Fix up C-state latency if not ordered (git-fixes). - ACPI: property: Constify stubs for CONFIG_ACPI=n case (git-fixes). - ACPI: resources: Add checks for ACPI IRQ override (git-fixes). - ACPI: sysfs: Fix a buffer overrun problem with description_show() (git-fixes). - ACPI: video: Add quirk for the Dell Vostro 3350 (git-fixes). - ACPICA: Fix memory leak caused by _CID repair function (git-fixes). - ALSA: ac97: fix PM reference leak in ac97_bus_remove() (git-fixes). - ALSA: bebob: add support for ToneWeal FW66 (git-fixes). - ALSA: firewire-motu: fix detection for S/PDIF source on optical interface in v2 protocol (git-fixes). - ALSA: firewire-motu: fix stream format for MOTU 8pre FireWire (git-fixes). - ALSA: hda/realtek: Add another ALC236 variant support (git-fixes). - ALSA: hda/realtek: Apply LED fixup for HP Dragonfly G1, too (git-fixes). - ALSA: hda/realtek: Fix bass speaker DAC mapping for Asus UM431D (git-fixes). - ALSA: hda/realtek: Fix pop noise and 2 Front Mic issues on a machine (git-fixes). - ALSA: hda/realtek: Improve fixup for HP Spectre x360 15-df0xxx (git-fixes). - ALSA: hda/realtek: fix mute/micmute LEDs for HP EliteBook 830 G8 Notebook PC (git-fixes). - ALSA: hda/realtek: fix mute/micmute LEDs for HP EliteBook x360 830 G8 (git-fixes). - ALSA: hda/realtek: fix mute/micmute LEDs for HP ProBook 445 G8 (git-fixes). - ALSA: hda/realtek: fix mute/micmute LEDs for HP ProBook 450 G8 (git-fixes). - ALSA: hda/realtek: fix mute/micmute LEDs for HP ProBook 630 G8 (git-fixes). - ALSA: hda: Add IRQ check for platform_get_irq() (git-fixes). - ALSA: hda: intel-dsp-cfg: add missing ElkhartLake PCI ID (git-fixes). - ALSA: hdmi: Expose all pins on MSI MS-7C94 board (git-fixes). - ALSA: intel8x0: Fix breakage at ac97 clock measurement (git-fixes). - ALSA: isa: Fix error return code in snd_cmi8330_probe() (git-fixes). - ALSA: pcm - fix mmap capability check for the snd-dummy driver (git-fixes). - ALSA: pcm: Call substream ack() method upon compat mmap commit (git-fixes). - ALSA: pcm: Fix mmap capability check (git-fixes). - ALSA: ppc: fix error return code in snd_pmac_probe() (git-fixes). - ALSA: sb: Fix potential ABBA deadlock in CSP driver (git-fixes). - ALSA: sb: Fix potential double-free of CSP mixer elements (git-fixes). - ALSA: usb-audio: Add missing proc text entry for BESPOKEN type (git-fixes). - ALSA: usb-audio: Add registration quirk for JBL Quantum headsets (git-fixes). - ALSA: usb-audio: Fix OOB access at proc output (git-fixes). - ALSA: usb-audio: fix rate on Ozone Z90 USB headset (git-fixes). - ALSA: usb-audio: scarlett2: Fix 18i8 Gen 2 PCM Input count (git-fixes). - ALSA: usb-audio: scarlett2: Fix 6i6 Gen 2 line out descriptions (git-fixes). - ALSA: usb-audio: scarlett2: Fix data_mutex lock (git-fixes). - ALSA: usb-audio: scarlett2: Fix scarlett2_*_ctl_put() return values (git-fixes). - ALSA: usb-audio: scarlett2: Fix wrong resume call (git-fixes). - ALSA: usb-audio: scarlett2: Read mixer volumes at init time (git-fixes). - ALSA: usb-audio: scarlett2: Read mux at init time (git-fixes). - ALSA: usx2y: Avoid camelCase (git-fixes). - ALSA: usx2y: Do not call free_pages_exact() with NULL address (git-fixes). - ARM: ensure the signal page contains defined contents (bsc#1188445). - ASoC: Intel: kbl_da7219_max98357a: shrink platform_id below 20 characters (git-fixes). - ASoC: Intel: sof_sdw: add SOF_RT715_DAI_ID_FIX for AlderLake (git-fixes). - ASoC: Intel: sof_sdw: add mutual exclusion between PCH DMIC and RT715 (git-fixes). - ASoC: SOF: loader: Use snd_sof_dsp_block_read() instead sof_block_read() (git-fixes). - ASoC: atmel-i2s: Fix usage of capture and playback at the same time (git-fixes). - ASoC: cs42l42: Correct definition of CS42L42_ADC_PDN_MASK (git-fixes). - ASoC: fsl_spdif: Fix error handler with pm_runtime_enable (git-fixes). - ASoC: fsl_spdif: Fix unexpected interrupt after suspend (git-fixes). - ASoC: hisilicon: fix missing clk_disable_unprepare() on error in hi6210_i2s_startup() (git-fixes). - ASoC: img: Fix PM reference leak in img_i2s_in_probe() (git-fixes). - ASoC: intel/boards: add missing MODULE_DEVICE_TABLE (git-fixes). - ASoC: max98373-sdw: add missing memory allocation check (git-fixes). - ASoC: max98373-sdw: use first_hw_init flag on resume (git-fixes). - ASoC: mediatek: mtk-btcvsd: Fix an error handling path in 'mtk_btcvsd_snd_probe()' (git-fixes). - ASoC: rk3328: fix missing clk_disable_unprepare() on error in rk3328_platform_probe() (git-fixes). - ASoC: rsnd: tidyup loop on rsnd_adg_clk_query() (git-fixes). - ASoC: rt1308-sdw: use first_hw_init flag on resume (git-fixes). - ASoC: rt5631: Fix regcache sync errors on resume (git-fixes). - ASoC: rt5682-sdw: set regcache_cache_only false before reading RT5682_DEVICE_ID (git-fixes). - ASoC: rt5682-sdw: use first_hw_init flag on resume (git-fixes). - ASoC: rt5682: Disable irq on shutdown (git-fixes). - ASoC: rt5682: Fix a problem with error handling in the io init function of the soundwire (git-fixes). - ASoC: rt5682: fix getting the wrong device id when the suspend_stress_test (git-fixes). - ASoC: rt700-sdw: use first_hw_init flag on resume (git-fixes). - ASoC: rt711-sdw: use first_hw_init flag on resume (git-fixes). - ASoC: rt715-sdw: use first_hw_init flag on resume (git-fixes). - ASoC: soc-core: Fix the error return code in snd_soc_of_parse_audio_routing() (git-fixes). - ASoC: soc-pcm: fix the return value in dpcm_apply_symmetry() (git-fixes). - ASoC: tegra: Set driver_name=tegra for all machine drivers (git-fixes). - ASoC: wm_adsp: Correct wm_coeff_tlv_get handling (git-fixes). - Bluetooth: Fix alt settings for incoming SCO with transparent coding format (git-fixes). - Bluetooth: Fix handling of HCI_LE_Advertising_Set_Terminated event (git-fixes). - Bluetooth: Fix the HCI to MGMT status conversion table (git-fixes). - Bluetooth: L2CAP: Fix invalid access if ECRED Reconfigure fails (git-fixes). - Bluetooth: L2CAP: Fix invalid access on ECRED Connection response (git-fixes). - Bluetooth: Remove spurious error message (git-fixes). - Bluetooth: Shutdown controller after workqueues are flushed or cancelled (git-fixes). - Bluetooth: btintel: Add infrastructure to read controller information (bsc#1188893). - Bluetooth: btintel: Check firmware version before download (bsc#1188893). - Bluetooth: btintel: Collect tlv based active firmware build info in FW mode (bsc#1188893). - Bluetooth: btintel: Consolidate intel_version parsing (bsc#1188893). - Bluetooth: btintel: Consolidate intel_version_tlv parsing (bsc#1188893). - Bluetooth: btintel: Fix endianness issue for TLV version information (bsc#1188893). - Bluetooth: btintel: Fix offset calculation boot address parameter (bsc#1188893). - Bluetooth: btintel: Functions to send firmware header / payload (bsc#1188893). - Bluetooth: btintel: Move operational checks after version check (bsc#1188893). - Bluetooth: btintel: Refactor firmware download function (bsc#1188893). - Bluetooth: btintel: Reorganized bootloader mode tlv checks in intel_version_tlv parsing (bsc#1188893). - Bluetooth: btintel: Replace zero-length array with flexible-array member (bsc#1188893). - Bluetooth: btintel: Skip reading firmware file version while in bootloader mode (bsc#1188893). - Bluetooth: btqca: Do not modify firmware contents in-place (git-fixes). - Bluetooth: btusb: Add *setup* function for new generation Intel controllers (bsc#1188893). - Bluetooth: btusb: Add support USB ALT 3 for WBS (git-fixes). - Bluetooth: btusb: Add support for GarfieldPeak controller (bsc#1188893). - Bluetooth: btusb: Consolidate code for waiting firmware download (bsc#1188893). - Bluetooth: btusb: Define a function to construct firmware filename (bsc#1188893). - Bluetooth: btusb: Enable MSFT extension for Intel controllers (bsc#1188893). - Bluetooth: btusb: Fix failing to init controllers with operation firmware (bsc#1188893). - Bluetooth: btusb: Fixed too many in-token issue for Mediatek Chip (git-fixes). - Bluetooth: btusb: Helper function to download firmware to Intel adapters (bsc#1188893). - Bluetooth: btusb: Map Typhoon peak controller to BTUSB_INTEL_NEWGEN (bsc#1188893). - Bluetooth: btusb: Update boot parameter specific to SKU (bsc#1188893). - Bluetooth: btusb: fix bt fiwmare downloading failure issue for qca btsoc (git-fixes). - Bluetooth: btusb: print firmware file name on error loading firmware (bsc#1188893). - Bluetooth: hci_intel: drop strange le16_to_cpu() against u8 values (bsc#1188893). - Bluetooth: hci_intel: enable on new platform (bsc#1188893). - Bluetooth: hci_intel: switch to list_for_each_entry() (bsc#1188893). - Bluetooth: hci_qca: fix potential GPF (git-fixes). - Bluetooth: mgmt: Fix slab-out-of-bounds in tlv_data_is_valid (git-fixes). - Bluetooth: mgmt: Fix the command returns garbage parameter value (git-fixes). - HID: do not use down_interruptible() when unbinding devices (git-fixes). - HID: wacom: Correct base usage for capacitive ExpressKey status bits (git-fixes). - Input: hideep - fix the uninitialized use in hideep_nvm_unlock() (git-fixes). - Input: hil_kbd - fix error return code in hil_dev_connect() (git-fixes). - Input: ili210x - add missing negation for touch indication on ili210x (git-fixes). - Input: usbtouchscreen - fix control-request directions (git-fixes). - KVM: LAPIC: Prevent setting the tscdeadline timer if the lapic is hw disabled (bsc#1188771). - KVM: SVM: document KVM_MEM_ENCRYPT_OP, let userspace detect if SEV is available (bsc#1188703). - KVM: nVMX: Consult only the "basic" exit reason when routing nested exit (bsc#1188773). - KVM: nVMX: Ensure 64-bit shift when checking VMFUNC bitmap (bsc#1188774). - KVM: nVMX: Preserve exception priority irrespective of exiting behavior (bsc#1188777). - PCI/sysfs: Fix dsm_label_utf16s_to_utf8s() buffer overrun (git-fixes). - PCI: Add AMD RS690 quirk to enable 64-bit DMA (git-fixes). - PCI: Leave Apple Thunderbolt controllers on for s2idle or standby (git-fixes). - PCI: Leave Apple Thunderbolt controllers on for s2idle or standby (git-fixes). - PCI: aardvark: Fix checking for PIO Non-posted Request (git-fixes). - PCI: aardvark: Implement workaround for the readback value of VEND_ID (git-fixes). - PCI: aardvark: Implement workaround for the readback value of VEND_ID (git-fixes). - PCI: intel-gw: Fix INTx enable (git-fixes). - PCI: intel-gw: Fix INTx enable (git-fixes). - PCI: iproc: Fix multi-MSI base vector number allocation (git-fixes). - PCI: iproc: Fix multi-MSI base vector number allocation (git-fixes). - PCI: iproc: Support multi-MSI only on uniprocessor kernel (git-fixes). - PCI: quirks: fix false kABI positive (git-fixes). - PCI: tegra194: Fix tegra_pcie_ep_raise_msi_irq() ill-defined shift (git-fixes). - PCI: tegra194: Fix tegra_pcie_ep_raise_msi_irq() ill-defined shift (git-fixes). - PCI: tegra: Add missing MODULE_DEVICE_TABLE (git-fixes). - RDMA/cma: Fix incorrect Packet Lifetime calculation (jsc#SLE-8449). - RDMA/cma: Protect RMW with qp_mutex (git-fixes). - RDMA/hns: Remove unused parameter udata (jsc#SLE-15176). - RDMA/mlx4: Remove unused parameter udata (jsc#SLE-15176). - RDMA/mlx5: Remove unused parameter udata (jsc#SLE-15176). - RDMA/rtrs-clt: Check if the queue_depth has changed during a reconnection (jsc#SLE-15176). - RDMA/rtrs-clt: Check state of the rtrs_clt_sess before reading its stats (jsc#SLE-15176). - RDMA/rtrs-clt: Fix memory leak of not-freed sess->stats and stats->pcpu_stats (jsc#SLE-15176). - RDMA/rtrs-srv: Fix memory leak of unfreed rtrs_srv_stats object (jsc#SLE-15176). - RDMA/rtrs-srv: Fix memory leak when having multiple sessions (jsc#SLE-15176). - RDMA/rtrs-srv: Replace atomic_t with percpu_ref for ids_inflight (jsc#SLE-15176). - RDMA/rtrs-srv: Set minimal max_send_wr and max_recv_wr (jsc#SLE-15176). - RDMA/rtrs: Do not reset hb_missed_max after re-connection (jsc#SLE-15176). - RDMA/srp: Fix a recently introduced memory leak (jsc#SLE-15176). - Revert "ACPI: resources: Add checks for ACPI IRQ override" (git-fixes). - Revert "ALSA: bebob/oxfw: fix Kconfig entry for Mackie d.2 Pro" (git-fixes). - Revert "Bluetooth: btintel: Fix endianness issue for TLV version information" (bsc#1188893). - Revert "USB: quirks: ignore remote wake-up on Fibocom L850-GL LTE modem" (git-fixes). - Revert "be2net: disable bh with spin_lock in be_process_mcc" (git-fixes). - Revert "drm/i915: Propagate errors on awaiting already signaled fences" (git-fixes). - Revert "drm: add a locked version of drm_is_current_master" (git-fixes). - Revert "ibmvnic: remove duplicate napi_schedule call in open function" (bsc#1065729). - Revert "iwlwifi: remove wide_cmd_header field" (bsc#1187495). - USB: cdc-acm: blacklist Heimann USB Appset device (git-fixes). - USB: serial: cp210x: add ID for CEL EM3588 USB ZigBee stick (git-fixes). - USB: serial: cp210x: fix comments for GE CS1000 (git-fixes). - USB: serial: option: add support for u-blox LARA-R6 family (git-fixes). - USB: usb-storage: Add LaCie Rugged USB3-FW to IGNORE_UAS (git-fixes). - [xarray] iov_iter_fault_in_readable() should do nothing in xarray case (git-fixes). - amdgpu: fix GEM obj leak in amdgpu_display_user_framebuffer_create (bsc#1152472). - ata: ahci_sunxi: Disable DIPM (git-fixes). - ath10k: Fix an error code in ath10k_add_interface() (git-fixes). - ath10k: add missing error return code in ath10k_pci_probe() (git-fixes). - ath10k: go to path err_unsupported when chip id is not supported (git-fixes). - ath10k: remove unused more_frags variable (git-fixes). - ath9k: Fix kernel NULL pointer dereference during ath_reset_internal() (git-fixes). - backlight: lm3630a: Fix return code of .update_status() callback (git-fixes). - backlight: lm3630a_bl: Put fwnode in error case during ->probe() (git-fixes). - bcache: avoid oversized read request in cache missing code path (bsc#1184631). - bcache: remove bcache device self-defined readahead (bsc#1184631). - blk-mq: Add blk_mq_delay_run_hw_queues() API call (bsc#1180092). - blk-mq: In blk_mq_dispatch_rq_list() "no budget" is a reason to kick (bsc#1180092). - blk-mq: Put driver tag in blk_mq_dispatch_rq_list() when no budget (bsc#1180092). - blk-mq: Rerun dispatching in the case of budget contention (bsc#1180092). - blk-mq: insert flush request to the front of dispatch queue (bsc#1180092). - blk-mq: insert passthrough request into hctx->dispatch directly (bsc#1180092). - bnxt_en: Add missing check for BNXT_STATE_ABORT_ERR in bnxt_fw_rset_task() (jsc#SLE-8371 bsc#1153274). - bnxt_en: Check abort error state in bnxt_half_open_nic() (jsc#SLE-8371 bsc#1153274). - bnxt_en: Refresh RoCE capabilities in bnxt_ulp_probe() (jsc#SLE-8371 bsc#1153274). - bnxt_en: do not disable an already disabled PCI device (git-fixes). - bonding: Add struct bond_ipesc to manage SA (bsc#1176447). - bonding: disallow setting nested bonding + ipsec offload (bsc#1176447). - bonding: fix build issue (git-fixes). - bonding: fix incorrect return value of bond_ipsec_offload_ok() (bsc#1176447). - bonding: fix null dereference in bond_ipsec_add_sa() (bsc#1176447). - bonding: fix suspicious RCU usage in bond_ipsec_add_sa() (bsc#1176447). - bonding: fix suspicious RCU usage in bond_ipsec_del_sa() (bsc#1176447). - bonding: fix suspicious RCU usage in bond_ipsec_offload_ok() (bsc#1176447). - bpf: Fix integer overflow in argument calculation for bpf_map_area_alloc (bsc#1154353). - bpftool: Properly close va_list 'ap' by va_end() on error (bsc#1155518). - brcmfmac: Fix a double-free in brcmf_sdio_bus_reset (git-fixes). - brcmfmac: correctly report average RSSI in station info (git-fixes). - brcmfmac: fix setting of station info chains bitmask (git-fixes). - brcmsmac: mac80211_if: Fix a resource leak in an error handling path (git-fixes). - cadence: force nonlinear buffers to be cloned (git-fixes). - can: ems_usb: fix memory leak (git-fixes). - can: esd_usb2: fix memory leak (git-fixes). - can: gw: synchronize rcu operations before removing gw job entry (git-fixes). - can: hi311x: fix a signedness bug in hi3110_cmd() (git-fixes). - can: hi311x: hi3110_can_probe(): silence clang warning (git-fixes). - can: mcba_usb_start(): add missing urb->transfer_dma initialization (git-fixes). - can: peak_pciefd: pucan_handle_status(): fix a potential starvation issue in TX path (git-fixes). - can: raw: raw_setsockopt(): fix raw_rcv panic for sock UAF (git-fixes). - can: usb_8dev: fix memory leak (git-fixes). - ceph: do not WARN if we're still opening a session to an MDS (bsc#1188748). - cfg80211: call cfg80211_leave_ocb when switching away from OCB (git-fixes). - char: pcmcia: error out if 'num_bytes_read' is greater than 4 in set_protocol() (git-fixes). - cifs: Fix preauth hash corruption (git-fixes). - cifs: Return correct error code from smb2_get_enc_key (git-fixes). - cifs: do not fail __smb_send_rqst if non-fatal signals are pending (git-fixes). - cifs: fix interrupted close commands (git-fixes). - cifs: fix memory leak in smb2_copychunk_range (git-fixes). - clk: actions: Fix SD clocks factor table on Owl S500 SoC (git-fixes). - clk: actions: Fix UART clock dividers on Owl S500 SoC (git-fixes). - clk: actions: Fix bisp_factor_table based clocks on Owl S500 SoC (git-fixes). - clk: imx8mq: remove SYS PLL 1/2 clock gates (git-fixes). - clk: meson: g12a: fix gp0 and hifi ranges (git-fixes). - clk: renesas: r8a77995: Add ZA2 clock (git-fixes). - clk: renesas: rcar-gen3: Update Z clock rate formula in comments (git-fixes). - clk: si5341: Avoid divide errors due to bogus register contents (git-fixes). - clk: si5341: Update initialization magic (git-fixes). - clk: tegra: Ensure that PLLU configuration is applied properly (git-fixes). - clk: zynqmp: pll: Remove some dead code (git-fixes). - clocksource/arm_arch_timer: Improve Allwinner A64 timer workaround (git-fixes). - clocksource: Retry clock read if long delays detected (git-fixes). - coresight: Propagate symlink failure (git-fixes). - coresight: core: Fix use of uninitialized pointer (git-fixes). - cpu/hotplug: Cure the cpusets trainwreck (git fixes (sched/hotplug)). - cpufreq: sc520_freq: add 'fallthrough' to one case (git-fixes). - crypto: ccp - Fix a resource leak in an error handling path (git-fixes). - crypto: ixp4xx - dma_unmap the correct address (git-fixes). - crypto: nitrox - fix unchecked variable in nitrox_register_interrupts (git-fixes). - crypto: nx - add missing MODULE_DEVICE_TABLE (git-fixes). - crypto: omap-sham - Fix PM reference leak in omap sham ops (git-fixes). - crypto: qat - check return code of qat_hal_rd_rel_reg() (git-fixes). - crypto: qat - remove unused macro in FW loader (git-fixes). - crypto: sun4i-ss - IV register does not work on A10 and A13 (git-fixes). - crypto: sun4i-ss - checking sg length is not sufficient (git-fixes). - crypto: sun4i-ss - initialize need_fallback (git-fixes). - crypto: ux500 - Fix error return code in hash_hw_final() (git-fixes). - crypto: virtio: Fix dest length calculation in __virtio_crypto_skcipher_do_req() (git-fixes). - crypto: virtio: Fix src/dst scatterlist calculation in __virtio_crypto_skcipher_do_req() (git-fixes). - cw1200: Revert unnecessary patches that fix unreal use-after-free bugs (git-fixes). - cw1200: add missing MODULE_DEVICE_TABLE (git-fixes). - cxgb4: fix IRQ free race during driver unload (git-fixes). - dma-buf/sync_file: Do not leak fences on merge failure (git-fixes). - dmaengine: fsl-qdma: check dma_set_mask return value (git-fixes). - dmaengine: mediatek: do not issue a new desc if one is still current (git-fixes). - dmaengine: mediatek: free the proper desc in desc_free handler (git-fixes). - dmaengine: mediatek: use GFP_NOWAIT instead of GFP_ATOMIC in prep_dma (git-fixes). - dmaengine: rcar-dmac: Fix PM reference leak in rcar_dmac_probe() (git-fixes). - dmaengine: zynqmp_dma: Fix PM reference leak in zynqmp_dma_alloc_chan_resourc() (git-fixes). - docs: admin-guide: update description for kernel.hotplug sysctl (git-fixes). - docs: virt/kvm: close inline string literal (bsc#1188703). - dpaa2-eth: fix memory leak in XDP_REDIRECT (git-fixes). - dpaa2-eth: fix memory leak in XDP_REDIRECT (git-fixes). - drm/amd/amdgpu/sriov disable all ip hw status by default (git-fixes). - drm/amd/dc: Fix a missing check bug in dm_dp_mst_detect() (git-fixes). - drm/amd/display: Avoid HDCP over-read and corruption (git-fixes). - drm/amd/display: Fix DCN 3.01 DSCCLK validation (git-fixes). - drm/amd/display: Fix build warnings (git-fixes). - drm/amd/display: Fix off-by-one error in DML (git-fixes). - drm/amd/display: Release MST resources on switch from MST to SST (git-fixes). - drm/amd/display: Set DISPCLK_MAX_ERRDET_CYCLES to 7 (git-fixes). - drm/amd/display: Verify Gamma & Degamma LUT sizes in amdgpu_dm_atomic_check (git-fixes). - drm/amd/display: fix HDCP reset sequence on reinitialize (git-fixes). - drm/amd/display: fix incorrrect valid irq check (git-fixes). - drm/amd/display: fix use_max_lb flag for 420 pixel formats (git-fixes). - drm/amdgpu: Do not query CE and UE errors (bsc#1152472) - drm/amdgpu: Update NV SIMD-per-CU to 2 (git-fixes). - drm/amdgpu: enable sdma0 tmz for Raven/Renoir(V2) (git-fixes). - drm/amdgpu: remove unsafe optimization to drop preamble ib (git-fixes). - drm/amdgpu: update golden setting for sienna_cichlid (git-fixes). - drm/amdgpu: wait for moving fence after pinning (git-fixes). - drm/amdkfd: Fix circular lock in nocpsch path (git-fixes). - drm/amdkfd: Walk through list with dqm lock hold (git-fixes). - drm/amdkfd: fix circular locking on get_wave_state (git-fixes). - drm/amdkfd: use allowed domain for vmbo validation (git-fixes). - drm/arm/malidp: Always list modifiers (git-fixes). - drm/bridge/sii8620: fix dependency on extcon (git-fixes). - drm/bridge: Fix the stop condition of drm_bridge_chain_pre_enable() (git-fixes). - drm/bridge: cdns: Fix PM reference leak in cdns_dsi_transfer() (git-fixes). - drm/bridge: nwl-dsi: Force a full modeset when crtc_state->active is changed to be true (git-fixes). - drm/dp_mst: Do not set proposed vcpi directly (git-fixes). - drm/gma500: Add the missed drm_gem_object_put() in psb_user_framebuffer_create() (git-fixes). - drm/i915/display: Do not zero past infoframes.vsc (git-fixes). - drm/i915/gvt: Clear d3_entered on elsp cmd submission (git-fixes). - drm/i915/selftests: use vma_lookup() in __igt_mmap() (git-fixes). - drm/mcde/panel: Inverse misunderstood flag (bsc#1152472) - drm/mediatek: Fix PM reference leak in mtk_crtc_ddp_hw_init() (git-fixes). - drm/msm/dpu: Fix error return code in dpu_mdss_init() (git-fixes). - drm/msm/dpu: Fix sm8250_mdp register length (git-fixes). - drm/msm/mdp4: Fix modifier support enabling (git-fixes). - drm/msm: Fix error return code in msm_drm_init() (git-fixes). - drm/msm: Small msm_gem_purge() fix (bsc#1152489) - drm/mxsfb: Do not select DRM_KMS_FB_HELPER (git-fixes). - drm/nouveau: Do not set allow_fb_modifiers explicitly (git-fixes). - drm/nouveau: fix dma_address check for CPU/GPU sync (git-fixes). - drm/nouveau: wait for moving fence after pinning v2 (git-fixes). - drm/panel: nt35510: Do not fail if DSI read fails (git-fixes). - drm/panel: raspberrypi-touchscreen: Prevent double-free (git-fixes). - drm/radeon: Add the missed drm_gem_object_put() in radeon_user_framebuffer_create() (git-fixes). - drm/radeon: Call radeon_suspend_kms() in radeon_pci_shutdown() for Loongson64 (git-fixes). - drm/radeon: Fix a missing check bug in radeon_dp_mst_detect() (bsc#1152489) - drm/radeon: wait for moving fence after pinning (git-fixes). - drm/rockchip: cdn-dp-core: add missing clk_disable_unprepare() on error in cdn_dp_grf_write() (git-fixes). - drm/rockchip: cdn-dp: fix sign extension on an int multiply for a u64 result (git-fixes). - drm/rockchip: dsi: move all lane config except LCDC mux to bind() (git-fixes). - drm/rockchip: dsi: remove extra component_del() call (git-fixes). - drm/rockchip: lvds: Fix an error handling path (git-fixes). - drm/sched: Avoid data corruptions (git-fixes). - drm/scheduler: Fix hang when sched_entity released (git-fixes). - drm/stm: Fix bus_flags handling (bsc#1152472) - drm/tegra: Do not set allow_fb_modifiers explicitly (git-fixes). - drm/vc4: Fix clock source for VEC PixelValve on BCM2711 (git-fixes). - drm/vc4: crtc: Skip the TXP (git-fixes). - drm/vc4: fix argument ordering in vc4_crtc_get_margins() (git-fixes). - drm/vc4: hdmi: Fix PM reference leak in vc4_hdmi_encoder_pre_crtc_co() (git-fixes). - drm/vc4: hdmi: Fix error path of hpd-gpios (git-fixes). - drm/vc4: hdmi: Make sure the controller is powered in detect (bsc#1152489) - drm/vc4: hdmi: Prevent clock unbalance (git-fixes). - drm/vc4: txp: Properly set the possible_crtcs mask (git-fixes). - drm/virtio: Fix double free on probe failure (git-fixes). - drm/vmwgfx: Fix cpu updates of coherent multisample surfaces (git-fixes). - drm/vmwgfx: Mark a surface gpu-dirty after the SVGA3dCmdDXGenMips command (git-fixes). - drm/zte: Do not select DRM_KMS_FB_HELPER (git-fixes). - drm: Return -ENOTTY for non-drm ioctls (git-fixes). - drm: add a locked version of drm_is_current_master (git-fixes). - drm: bridge/panel: Cleanup connector on bridge detach (bsc#1152489) - drm: bridge: add missing word in Analogix help text (git-fixes). - drm: qxl: ensure surf.data is ininitialized (git-fixes). - drm: rockchip: add missing registers for RK3066 (git-fixes). - drm: rockchip: add missing registers for RK3188 (git-fixes). - drm: rockchip: set alpha_en to 0 if it is not used (git-fixes). - e1000e: Check the PCIm state (git-fixes). - e1000e: Fix an error handling path in 'e1000_probe()' (git-fixes). - efi/tpm: Differentiate missing and invalid final event log table (bsc#1188036). - extcon: extcon-max8997: Fix IRQ freeing at error path (git-fixes). - extcon: intel-mrfld: Sync hardware and software state on init (git-fixes). - extcon: max8997: Add missing modalias string (git-fixes). - extcon: sm5502: Drop invalid register write in sm5502_reg_data (git-fixes). - fbmem: Do not delete the mode that is still in use (git-fixes). - fbmem: add margin check to fb_check_caps() (git-fixes). - firmware/efi: Tell memblock about EFI iomem reservations (git-fixes). - firmware: arm_scmi: Fix possible scmi_linux_errmap buffer overflow (git-fixes). - firmware: arm_scmi: Fix range check for the maximum number of pending messages (git-fixes). - firmware: tegra: Fix error return code in tegra210_bpmp_init() (git-fixes). - fm10k: Fix an error handling path in 'fm10k_probe()' (git-fixes). - fpga: machxo2-spi: Address warning about unused variable (git-fixes). - fpga: stratix10-soc: Add missing fpga_mgr_free() call (git-fixes). - fuse: check connected before queueing on fpq->io (bsc#1188267). - fuse: ignore PG_workingset after stealing (bsc#1188268). - fuse: reject internal errno (bsc#1188269). - gpio: AMD8111 and TQMX86 require HAS_IOPORT_MAP (git-fixes). - gpio: pca953x: Add support for the On Semi pca9655 (git-fixes). - gpio: zynq: Check return value of pm_runtime_get_sync (git-fixes). - gtp: fix an use-before-init in gtp_newlink() (git-fixes). - gve: Add DQO fields for core data structures (bsc#1176940). - gve: Add Gvnic stats AQ command and ethtool show/set-priv-flags (bsc#1176940). - gve: Add dqo descriptors (bsc#1176940). - gve: Add stats for gve (bsc#1176940). - gve: Add support for DQO RX PTYPE map (bsc#1176940). - gve: Add support for raw addressing device option (bsc#1176940). - gve: Add support for raw addressing in the tx path (bsc#1176940). - gve: Add support for raw addressing to the rx path (bsc#1176940). - gve: Batch AQ commands for creating and destroying queues (bsc#1176940). - gve: Check TX QPL was actually assigned (bsc#1176940). - gve: DQO: Add RX path (bsc#1176940). - gve: DQO: Add TX path (bsc#1176940). - gve: DQO: Add core netdev features (bsc#1176940). - gve: DQO: Add ring allocation and initialization (bsc#1176940). - gve: DQO: Configure interrupts on device up (bsc#1176940). - gve: DQO: Fix off by one in gve_rx_dqo() (bsc#1176940). - gve: DQO: Remove incorrect prefetch (bsc#1176940). - gve: Enable Link Speed Reporting in the driver (bsc#1176940). - gve: Fix an error handling path in 'gve_probe()' (git-fixes). - gve: Fix swapped vars when fetching max queues (git-fixes). - gve: Fix warnings reported for DQO patchset (bsc#1176940). - gve: Get and set Rx copybreak via ethtool (bsc#1176940). - gve: Introduce a new model for device options (bsc#1176940). - gve: Introduce per netdev `enum gve_queue_format` (bsc#1176940). - gve: Make gve_rx_slot_page_info.page_offset an absolute offset (bsc#1176940). - gve: Move some static functions to a common file (bsc#1176940). - gve: NIC stats for report-stats and for ethtool (bsc#1176940). - gve: Propagate error codes to caller (bsc#1176940). - gve: Replace zero-length array with flexible-array member (bsc#1176940). - gve: Rx Buffer Recycling (bsc#1176940). - gve: Simplify code and axe the use of a deprecated API (bsc#1176940). - gve: Update adminq commands to support DQO queues (bsc#1176940). - gve: Use dev_info/err instead of netif_info/err (bsc#1176940). - gve: Use link status register to report link status (bsc#1176940). - gve: adminq: DQO specific device descriptor logic (bsc#1176940). - gve: gve_rx_copy: Move padding to an argument (bsc#1176940). - hwmon: (max31722) Remove non-standard ACPI device IDs (git-fixes). - hwmon: (max31790) Fix fan speed reporting for fan7..12 (git-fixes). - hwmon: (max31790) Fix pwmX_enable attributes (git-fixes). - hwmon: (max31790) Report correct current pwm duty cycles (git-fixes). - hwrng: exynos - Fix runtime PM imbalance on error (git-fixes). - i2c: core: Disable client irq on reboot/shutdown (git-fixes). - i2c: designware: Adjust bus_freq_hz when refuse high speed mode set (git-fixes). - i2c: dev: Add __user annotation (git-fixes). - i2c: robotfuzz-osif: fix control-request directions (git-fixes). - i40e: Fix autoneg disabling for non-10GBaseT links (git-fixes). - i40e: Fix error handling in i40e_vsi_open (git-fixes). - i40e: Fix missing rtnl locking when setting up pf switch (jsc#SLE-13701). - i40e: fix PTP on 5Gb links (jsc#SLE-13701). - iavf: Fix an error handling path in 'iavf_probe()' (git-fixes). - ibmvnic: Allow device probe if the device is not ready at boot (bsc#1184114 ltc#192237). - ibmvnic: Remove the proper scrq flush (bsc#1188504 ltc#192075). - ibmvnic: Use 'skb_frag_address()' instead of hand coding it (bsc#1184114 ltc#192237). - ibmvnic: Use list_for_each_entry() to simplify code in ibmvnic.c (bsc#1184114 ltc#192237). - ibmvnic: Use strscpy() instead of strncpy() (bsc#1184114 ltc#192237). - ibmvnic: account for bufs already saved in indir_buf (jsc#SLE-17268 jsc#SLE-17043 bsc#1179243 ltc#189290). - ibmvnic: clean pending indirect buffs during reset (jsc#SLE-17268 jsc#SLE-17043 bsc#1179243 ltc#189290). - ibmvnic: fix kernel build warning (bsc#1184114 ltc#192237). - ibmvnic: fix kernel build warning in strncpy (bsc#1184114 ltc#192237). - ibmvnic: fix kernel build warnings in build_hdr_descs_arr (bsc#1184114 ltc#192237). - ibmvnic: fix send_request_map incompatible argument (bsc#1184114 ltc#192237). - ibmvnic: free tx_pool if tso_pool alloc fails (bsc#1085224 ltc#164363). - ibmvnic: parenthesize a check (bsc#1184114 ltc#192237 bsc#1183871 ltc#192139 git-fixes). - ibmvnic: retry reset if there are no other resets (bsc#1184350 ltc#191533). - ibmvnic: set ltb->buff to NULL after freeing (bsc#1094840 ltc#167098). - ice: Re-organizes reqstd/avail {R, T}XQ check/code for efficiency (jsc#SLE-7926). - igb: Check if num of q_vectors is smaller than max before array access (git-fixes). - igb: Fix an error handling path in 'igb_probe()' (git-fixes). - igb: Fix position of assignment to *ring (git-fixes). - igb: Fix use-after-free error during reset (git-fixes). - igc: Fix an error handling path in 'igc_probe()' (git-fixes). - igc: Fix use-after-free error during reset (git-fixes). - igc: change default return of igc_read_phy_reg() (git-fixes). - iio: accel: bma180: Fix buffer alignment in iio_push_to_buffers_with_timestamp() (git-fixes). - iio: accel: bma180: Use explicit member assignment (git-fixes). - iio: accel: bma220: Fix buffer alignment in iio_push_to_buffers_with_timestamp() (git-fixes). - iio: accel: hid: Fix buffer alignment in iio_push_to_buffers_with_timestamp() (git-fixes). - iio: accel: kxcjk-1013: Fix buffer alignment in iio_push_to_buffers_with_timestamp() (git-fixes). - iio: accel: mxc4005: Fix overread of data and alignment issue (git-fixes). - iio: accel: stk8312: Fix buffer alignment in iio_push_to_buffers_with_timestamp() (git-fixes). - iio: accel: stk8ba50: Fix buffer alignment in iio_push_to_buffers_with_timestamp() (git-fixes). - iio: adc: at91-sama5d2: Fix buffer alignment in iio_push_to_buffers_with_timestamp() (git-fixes). - iio: adc: hx711: Fix buffer alignment in iio_push_to_buffers_with_timestamp() (git-fixes). - iio: adc: mxs-lradc: Fix buffer alignment in iio_push_to_buffers_with_timestamp() (git-fixes). - iio: adc: ti-ads1015: Fix buffer alignment in iio_push_to_buffers_with_timestamp() (git-fixes). - iio: adc: ti-ads8688: Fix alignment of buffer in iio_push_to_buffers_with_timestamp() (git-fixes). - iio: adc: vf610: Fix buffer alignment in iio_push_to_buffers_with_timestamp() (git-fixes). - iio: adis16400: do not return ints in irq handlers (git-fixes). - iio: adis_buffer: do not return ints in irq handlers (git-fixes). - iio: at91-sama5d2_adc: remove usage of iio_priv_to_dev() helper (git-fixes). - iio: gyro: bmg160: Fix buffer alignment in iio_push_to_buffers_with_timestamp() (git-fixes). - iio: gyro: fxa21002c: Balance runtime pm + use pm_runtime_resume_and_get() (git-fixes). - iio: humidity: am2315: Fix buffer alignment in iio_push_to_buffers_with_timestamp() (git-fixes). - iio: light: isl29125: Fix buffer alignment in iio_push_to_buffers_with_timestamp() (git-fixes). - iio: light: tcs3414: Fix buffer alignment in iio_push_to_buffers_with_timestamp() (git-fixes). - iio: light: tcs3472: Fix buffer alignment in iio_push_to_buffers_with_timestamp() (git-fixes). - iio: light: tcs3472: do not free unallocated IRQ (git-fixes). - iio: light: vcnl4035: Fix buffer alignment in iio_push_to_buffers_with_timestamp() (git-fixes). - iio: ltr501: ltr501_read_ps(): add missing endianness conversion (git-fixes). - iio: ltr501: ltr559: fix initialization of LTR501_ALS_CONTR (git-fixes). - iio: ltr501: mark register holding upper 8 bits of ALS_DATA{0,1} and PS_DATA as volatile, too (git-fixes). - iio: magn: bmc150: Balance runtime pm + use pm_runtime_resume_and_get() (git-fixes). - iio: magn: bmc150: Fix buffer alignment in iio_push_to_buffers_with_timestamp() (git-fixes). - iio: magn: hmc5843: Fix buffer alignment in iio_push_to_buffers_with_timestamp() (git-fixes). - iio: magn: rm3100: Fix alignment of buffer in iio_push_to_buffers_with_timestamp() (git-fixes). - iio: potentiostat: lmp91000: Fix alignment of buffer in iio_push_to_buffers_with_timestamp() (git-fixes). - iio: prox: as3935: Fix buffer alignment in iio_push_to_buffers_with_timestamp() (git-fixes). - iio: prox: isl29501: Fix buffer alignment in iio_push_to_buffers_with_timestamp() (git-fixes). - iio: prox: pulsed-light: Fix buffer alignment in iio_push_to_buffers_with_timestamp() (git-fixes). - iio: prox: srf08: Fix buffer alignment in iio_push_to_buffers_with_timestamp() (git-fixes). - iio: si1133: fix format string warnings (git-fixes). - iio:accel:mxc4005: Drop unnecessary explicit casts in regmap_bulk_read calls (git-fixes). - integrity: use arch_ima_get_secureboot instead of checking EFI_SECURE_BOOT when loading MokListRT (bsc#1188366). - intel_th: Wait until port is in reset before programming it (git-fixes). - iwl-trans: move dev_cmd_offs, page_offs to a common trans header (bsc#1187495). - iwlwifi: Fix softirq/hardirq disabling in iwl_pcie_enqueue_hcmd() (git-fixes). - iwlwifi: Fix softirq/hardirq disabling in iwl_pcie_gen2_enqueue_hcmd() (git-fixes). - iwlwifi: acpi: evaluate dsm to disable 5.8GHz channels (bsc#1187495). - iwlwifi: acpi: in non acpi compilations remove iwl_sar_geo_init (bsc#1187495). - iwlwifi: acpi: prepare SAR profile selection code for multiple sizes (bsc#1187495). - iwlwifi: acpi: remove dummy definition of iwl_sar_set_profile() (bsc#1187495). - iwlwifi: acpi: rename geo structs to contain versioning (bsc#1187495). - iwlwifi: acpi: support ppag table command v2 (bsc#1187495). - iwlwifi: add a common struct for all iwl_tx_power_cmd versions (bsc#1187495). - iwlwifi: add trans op to set PNVM (bsc#1187495). - iwlwifi: align RX status flags with firmware (bsc#1187495). - iwlwifi: api: fix u32 -> __le32 (bsc#1187495). - iwlwifi: bump FW API to 57 for AX devices (bsc#1187495). - iwlwifi: bump FW API to 59 for AX devices (bsc#1187495). - iwlwifi: calib: Demote seemingly unintentional kerneldoc header (bsc#1187495). - iwlwifi: dbg: Do not touch the tlv data (bsc#1187495). - iwlwifi: dbg: add debug host notification (DHN) time point (bsc#1187495). - iwlwifi: dbg: add dumping special device memory (bsc#1187495). - iwlwifi: dbg: remove IWL_FW_INI_TIME_POINT_WDG_TIMEOUT (bsc#1187495). - iwlwifi: do not export acpi functions unnecessarily (bsc#1187495). - iwlwifi: dvm: Demote a couple of nonconformant kernel-doc headers (bsc#1187495). - iwlwifi: dvm: Demote non-compliant kernel-doc headers (bsc#1187495). - iwlwifi: dvm: devices: Fix function documentation formatting issues (bsc#1187495). - iwlwifi: dvm: lib: Demote non-compliant kernel-doc headers (bsc#1187495). - iwlwifi: dvm: rxon: Demote non-conformant kernel-doc headers (bsc#1187495). - iwlwifi: dvm: scan: Demote a few nonconformant kernel-doc headers (bsc#1187495). - iwlwifi: dvm: sta: Demote a bunch of nonconformant kernel-doc headers (bsc#1187495). - iwlwifi: dvm: tx: Demote non-compliant kernel-doc headers (bsc#1187495). - iwlwifi: enable twt by default (bsc#1187495). - iwlwifi: fix 11ax disabled bit in the regulatory capability flags (bsc#1187495). - iwlwifi: fix sar geo table initialization (bsc#1187495). - iwlwifi: fw: add default value for iwl_fw_lookup_cmd_ver (bsc#1187495). - iwlwifi: fw: move assert descriptor parser to common code (bsc#1187495). - iwlwifi: increase PNVM load timeout (bsc#1187495). - iwlwifi: iwl-drv: Provide descriptions debugfs dentries (bsc#1187495). - iwlwifi: iwl-trans: move tfd to trans layer (bsc#1187495). - iwlwifi: move PNVM implementation to common code (bsc#1187495). - iwlwifi: move all bus-independent TX functions to common code (bsc#1187495). - iwlwifi: move bc_pool to a common trans header (bsc#1187495). - iwlwifi: move bc_table_dword to a common trans header (bsc#1187495). - iwlwifi: msix: limit max RX queues for 9000 family (bsc#1187495). - iwlwifi: mvm: Add FTM initiator RTT smoothing logic (bsc#1187495). - iwlwifi: mvm: Do not install CMAC/GMAC key in AP mode (bsc#1187495). - iwlwifi: mvm: add PROTECTED_TWT firmware API (bsc#1187495). - iwlwifi: mvm: add a get lmac id function (bsc#1187495). - iwlwifi: mvm: add an option to add PASN station (bsc#1187495). - iwlwifi: mvm: add d3 prints (bsc#1187495). - iwlwifi: mvm: add support for new WOWLAN_TSC_RSC_PARAM version (bsc#1187495). - iwlwifi: mvm: add support for new version of WOWLAN_TKIP_SETTING_API_S (bsc#1187495). - iwlwifi: mvm: add support for range request command ver 11 (bsc#1187495). - iwlwifi: mvm: add support for responder dynamic config command version 3 (bsc#1187495). - iwlwifi: mvm: assign SAR table revision to the command later (bsc#1187495). - iwlwifi: mvm: avoid possible NULL pointer dereference (bsc#1187495). - iwlwifi: mvm: clear all scan UIDs (bsc#1187495). - iwlwifi: mvm: d3: parse wowlan status version 11 (bsc#1187495). - iwlwifi: mvm: d3: support GCMP ciphers (bsc#1187495). - iwlwifi: mvm: do not change band on bound PHY contexts (git-fixes). - iwlwifi: mvm: do not check if CSA event is running before removing (bsc#1187495). - iwlwifi: mvm: do not send a CSA command the firmware does not know (bsc#1187495). - iwlwifi: mvm: fix error print when session protection ends (git-fixes). - iwlwifi: mvm: fix suspicious rcu usage warnings (bsc#1187495). - iwlwifi: mvm: fix the type we use in the PPAG table validity checks (bsc#1187495). - iwlwifi: mvm: get number of stations from TLV (bsc#1187495). - iwlwifi: mvm: ignore the scan duration parameter (bsc#1187495). - iwlwifi: mvm: initiator: add option for adding a PASN responder (bsc#1187495). - iwlwifi: mvm: location: set the HLTK when PASN station is added (bsc#1187495). - iwlwifi: mvm: ops: Remove unused static struct 'iwl_mvm_debug_names' (bsc#1187495). - iwlwifi: mvm: prepare roc_done_wk to work sync (bsc#1187495). - iwlwifi: mvm: process ba-notifications also when sta rcu is invalid (bsc#1187495). - iwlwifi: mvm: re-enable TX after channel switch (bsc#1187495). - iwlwifi: mvm: read and parse SKU ID if available (bsc#1187495). - iwlwifi: mvm: remove memset of kek_kck command (bsc#1187495). - iwlwifi: mvm: remove redundant log in iwl_mvm_tvqm_enable_txq() (bsc#1187495). - iwlwifi: mvm: remove redundant support_umac_log field (bsc#1187495). - iwlwifi: mvm: responder: allow to set only the HLTK for an associated station (bsc#1187495). - iwlwifi: mvm: ring the doorbell and wait for PNVM load completion (bsc#1187495). - iwlwifi: mvm: rs-fw: handle VHT extended NSS capability (bsc#1187495). - iwlwifi: mvm: send stored PPAG command instead of local (bsc#1187495). - iwlwifi: mvm: set PROTECTED_TWT feature if supported by firmware (bsc#1187495). - iwlwifi: mvm: set PROTECTED_TWT in MAC data policy (bsc#1187495). - iwlwifi: mvm: set enabled in the PPAG command properly (bsc#1187495). - iwlwifi: mvm: stop claiming NL80211_EXT_FEATURE_SET_SCAN_DWELL (bsc#1187495). - iwlwifi: mvm: store PPAG enabled/disabled flag properly (bsc#1187495). - iwlwifi: mvm: support ADD_STA_CMD_API_S ver 12 (bsc#1187495). - iwlwifi: mvm: support more GTK rekeying algorithms (bsc#1187495). - iwlwifi: mvm: support new KEK KCK api (bsc#1187495). - iwlwifi: mvm: tx: Demote misuse of kernel-doc headers (bsc#1187495). - iwlwifi: mvm: use CHECKSUM_COMPLETE (bsc#1187495). - iwlwifi: mvm: utils: Fix some doc-rot (bsc#1187495). - iwlwifi: pcie: avoid potential PNVM leaks (bsc#1187495). - iwlwifi: pcie: do not disable interrupts for reg_lock (bsc#1187495). - iwlwifi: pcie: fix context info freeing (git-fixes). - iwlwifi: pcie: fix the xtal latency value for a few qu devices (bsc#1187495). - iwlwifi: pcie: free IML DMA memory allocation (git-fixes). - iwlwifi: pcie: implement set_pnvm op (bsc#1187495). - iwlwifi: pcie: make iwl_pcie_txq_update_byte_cnt_tbl bus independent (bsc#1187495). - iwlwifi: pcie: properly set LTR workarounds on 22000 devices (bsc#1187495). - iwlwifi: phy-ctxt: add new API VER 3 for phy context cmd (bsc#1187495). - iwlwifi: pnvm: do not skip everything when not reloading (bsc#1187495). - iwlwifi: pnvm: do not try to load after failures (bsc#1187495). - iwlwifi: pnvm: increment the pointer before checking the TLV (bsc#1187495). - iwlwifi: pnvm: set the PNVM again if it was already loaded (bsc#1187495). - iwlwifi: provide gso_type to GSO packets (bsc#1187495). - iwlwifi: queue: bail out on invalid freeing (bsc#1187495). - iwlwifi: read and parse PNVM file (bsc#1187495). - iwlwifi: regulatory: regulatory capabilities api change (bsc#1187495). - iwlwifi: remove iwl_validate_sar_geo_profile() export (bsc#1187495). - iwlwifi: remove wide_cmd_header field (bsc#1187495). - iwlwifi: rs: Demote non-compliant kernel-doc headers (bsc#1187495). - iwlwifi: rs: align to new TLC config command API (bsc#1187495). - iwlwifi: rs: set RTS protection for all non legacy rates (bsc#1187495). - iwlwifi: sta: defer ADDBA transmit in case reclaimed SN != next SN (bsc#1187495). - iwlwifi: stats: add new api fields for statistics cmd/ntfy (bsc#1187495). - iwlwifi: support REDUCE_TX_POWER_CMD version 6 (bsc#1187495). - iwlwifi: support version 3 of GEO_TX_POWER_LIMIT (bsc#1187495). - iwlwifi: support version 5 of the alive notification (bsc#1187495). - iwlwifi: thermal: support new temperature measurement API (bsc#1187495). - iwlwifi: update prph scratch structure to include PNVM data (bsc#1187495). - iwlwifi: use correct group for alive notification (bsc#1187495). - iwlwifi: wowlan: adapt to wowlan status API version 10 (bsc#1187495). - iwlwifi: yoyo: add support for internal buffer allocation in D3 (bsc#1187495). - ixgbe: Fix an error handling path in 'ixgbe_probe()' (git-fixes). - ixgbe: Fix packet corruption due to missing DMA sync (git-fixes). - ixgbevf: use xso.real_dev instead of xso.dev in callback functions of struct xfrmdev_ops (bsc#1176447). - kABI compatibility fix for max98373_priv struct (git-fixes). - kABI workaround for btintel symbol changes (bsc#1188893). - kABI workaround for intel_th_driver (git-fixes). - kABI workaround for pci/quirks.c (git-fixes). - kABI: restore struct tcpc_config definition (git-fixes). - kabi/severities: ignore kABI of iwlwifi symbols (bsc#1187495) iwlwifi driver consists of several modules and all exported symbols are internal uses. Let's ignore kABI checks of those. - kernel-binary.spec: Exctract s390 decompression code (jsc#SLE-17042). - kernel-binary.spec: Fix up usrmerge for non-modular kernels. - kernel-binary.spec: Remove obsolete and wrong comment mkmakefile is repleced by echo on newer kernel - kprobes: Do not expose probe addresses to non-CAP_SYSLOG (git-fixes). - kprobes: Fix NULL pointer dereference at kprobe_ftrace_handler (git-fixes). - kprobes: Fix compiler warning for !CONFIG_KPROBES_ON_FTRACE (git-fixes). - kprobes: Fix to check probe enabled before disarm_kprobe_ftrace() (git-fixes). - kprobes: fix kill kprobe which has been marked as gone (git-fixes). - kvm: LAPIC: Restore guard to prevent illegal APIC register access (bsc#1188772). - kvm: i8254: remove redundant assignment to pointer s (bsc#1188770). - leds: as3645a: Fix error return code in as3645a_parse_node() (git-fixes). - leds: class: The -ENOTSUPP should never be seen by user space (git-fixes). - leds: ktd2692: Fix an error handling path (git-fixes). - leds: lm3532: select regmap I2C API (git-fixes). - lib/decompress_unlz4.c: correctly handle zero-padding around initrds (git-fixes). - lib/decompressors: remove set but not used variabled 'level' (git-fixes). - lib: vsprintf: Fix handling of number field widths in vsscanf (git-fixes). - libbpf: Fixes incorrect rx_ring_setup_done (bsc#1155518). - liquidio: Fix unintentional sign extension issue on left shift of u16 (git-fixes). - mISDN: fix possible use-after-free in HFC_cleanup() (git-fixes). - mac80211: consider per-CPU statistics if present (git-fixes). - mac80211: remove iwlwifi specific workaround NDPs of null_response (git-fixes). - mac80211: remove iwlwifi specific workaround that broke sta NDP tx (git-fixes). - mac80211: remove warning in ieee80211_get_sband() (git-fixes). - mac80211: reset profile_periodicity/ema_ap (git-fixes). - mac80211_hwsim: add concurrent channels scanning support over virtio (git-fixes). - mac80211_hwsim: drop pending frames on stop (git-fixes). - math: Export mul_u64_u64_div_u64 (git-fixes). - media, bpf: Do not copy more entries than user space requested (git-fixes). - media: Fix Media Controller API config checks (git-fixes). - media: I2C: change 'RST' to "RSET" to fix multiple build errors (git-fixes). - media: au0828: fix a NULL vs IS_ERR() check (git-fixes). - media: bt8xx: Fix a missing check bug in bt878_probe (git-fixes). - media: cobalt: fix race condition in setting HPD (git-fixes). - media: cpia2: fix memory leak in cpia2_usb_probe (git-fixes). - media: dtv5100: fix control-request directions (git-fixes). - media: dvb-usb: fix wrong definition (git-fixes). - media: dvb_net: avoid speculation from net slot (git-fixes). - media: dvd_usb: memory leak in cinergyt2_fe_attach (git-fixes). - media: em28xx: Fix possible memory leak of em28xx struct (git-fixes). - media: exynos-gsc: fix pm_runtime_get_sync() usage count (git-fixes). - media: exynos4-is: Fix a use after free in isp_video_release (git-fixes). - media: gspca/gl860: fix zero-length control requests (git-fixes). - media: gspca/sq905: fix control-request direction (git-fixes). - media: gspca/sunplus: fix zero-length control requests (git-fixes). - media: imx-csi: Skip first few frames from a BT.656 source (git-fixes). - media: imx: imx7_mipi_csis: Fix logging of only error event counters (git-fixes). - media: mdk-mdp: fix pm_runtime_get_sync() usage count (git-fixes). - media: mtk-vcodec: fix PM runtime get logic (git-fixes). - media: ngene: Fix out-of-bounds bug in ngene_command_config_free_buf() (git-fixes). - media: pvrusb2: fix warning in pvr2_i2c_core_done (git-fixes). - media: rc: i2c: Fix an error message (git-fixes). - media: rtl28xxu: fix zero-length control request (git-fixes). - media: s5p-g2d: Fix a memory leak on ctx->fh.m2m_ctx (git-fixes). - media: s5p-jpeg: fix pm_runtime_get_sync() usage count (git-fixes). - media: sh_vou: fix pm_runtime_get_sync() usage count (git-fixes). - media: siano: Fix out-of-bounds warnings in smscore_load_firmware_family2() (git-fixes). - media: siano: fix device register error path (git-fixes). - media: st-hva: Fix potential NULL pointer dereferences (git-fixes). - media: sti/bdisp: fix pm_runtime_get_sync() usage count (git-fixes). - media: sti: fix obj-$(config) targets (git-fixes). - media: tc358743: Fix error return code in tc358743_probe_of() (git-fixes). - media: uvcvideo: Fix pixel format change for Elgato Cam Link 4K (git-fixes). - media: v4l2-async: Fix trivial documentation typo (git-fixes). - media: v4l2-core: Avoid the dangling pointer in v4l2_fh_release (git-fixes). - media: zr364xx: fix memory leak in zr364xx_start_readpipe (git-fixes). - memory: atmel-ebi: add missing of_node_put for loop iteration (git-fixes). - memory: fsl_ifc: fix leak of IO mapping on probe failure (git-fixes). - memory: fsl_ifc: fix leak of IO mapping on probe failure (git-fixes). - memory: fsl_ifc: fix leak of private memory on probe failure (git-fixes). - memory: fsl_ifc: fix leak of private memory on probe failure (git-fixes). - memory: pl353: Fix error return code in pl353_smc_probe() (git-fixes). - memstick: rtsx_usb_ms: fix UAF (git-fixes). - mfd: cpcap: Fix cpcap dmamask not set warnings (git-fixes). - mfd: da9052/stmpe: Add and modify MODULE_DEVICE_TABLE (git-fixes). - misc/libmasm/module: Fix two use after free in ibmasm_init_one (git-fixes). - misc: alcor_pci: fix inverted branch condition (git-fixes). - misc: alcor_pci: fix null-ptr-deref when there is no PCI bridge (git-fixes). - mm, futex: fix shared futex pgoff on shmem huge page (git fixes (kernel/futex)). - mmc: block: Disable CMDQ on the ioctl path (git-fixes). - mmc: core: Allow UHS-I voltage switch for SDSC cards if supported (git-fixes). - mmc: core: clear flags before allowing to retune (git-fixes). - mmc: sdhci-esdhc-imx: remove unused is_imx6q_usdhc (git-fixes). - mmc: sdhci-sprd: use sdhci_sprd_writew (git-fixes). - mmc: sdhci: Fix warning message when accessing RPMB in HS400 mode (git-fixes). - mmc: usdhi6rol0: fix error return code in usdhi6_probe() (git-fixes). - mmc: via-sdmmc: add a check against NULL pointer dereference (git-fixes). - mmc: vub3000: fix control-request direction (git-fixes). - mt76: fix possible NULL pointer dereference in mt76_tx (git-fixes). - mt76: mt7603: set 0 as min coverage_class value (git-fixes). - mt76: mt7615: fix endianness in mt7615_mcu_set_eeprom (git-fixes). - mt76: mt7615: fix fixed-rate tx status reporting (git-fixes). - mt76: mt7615: increase MCU command timeout (git-fixes). - mt76: mt7915: fix IEEE80211_HE_PHY_CAP7_MAX_NC for station mode (git-fixes). - mt76: set dma-done flag for flushed descriptors (git-fixes). - mtd: partitions: redboot: seek fis-index-block in the right node (git-fixes). - mtd: rawnand: marvell: add missing clk_disable_unprepare() on error in marvell_nfc_resume() (git-fixes). - mvpp2: suppress warning (git-fixes). - mwifiex: re-fix for unaligned accesses (git-fixes). - net/mlx5: Do not fail driver on failure to create debugfs (git-fixes). - net/mlx5e: Block offload of outer header csum for GRE tunnel (git-fixes). - net/sched: act_ct: remove and free nf_table callbacks (jsc#SLE-15172). - net: Make PTP-specific drivers depend on PTP_1588_CLOCK (git-fixes). - net: atlantic: fix ip dst and ipv6 address filters (git-fixes). - net: dp83867: Fix OF_MDIO config check (git-fixes). - net: ethernet: ti: Remove TI_CPTS_MOD workaround (git-fixes). - net: fec_ptp: fix issue caused by refactor the fec_devtype (git-fixes). - net: gve: convert strlcpy to strscpy (bsc#1176940). - net: gve: remove duplicated allowed (bsc#1176940). - net: hns3: Clear the CMDQ registers before unmapping BAR region (git-fixes). - net: ipw2x00,iwlegacy,iwlwifi: Remove in_interrupt() from debug macros (bsc#1187495). - net: iwlwifi: Remove in_interrupt() from tracing macro (bsc#1187495). - net: marvell: Fix OF_MDIO config check (git-fixes). - net: mvpp2: Put fwnode in error case during ->probe() (git-fixes). - net: netdevsim: use xso.real_dev instead of xso.dev in callback functions of struct xfrmdev_ops (bsc#1176447). - net: phy: fix save wrong speed and duplex problem if autoneg is on (git-fixes). - net: phy: microchip_t1: add lan87xx_phy_init to initialize the lan87xx phy (git-fixes). - net: phy: microchip_t1: add lan87xx_phy_init to initialize the lan87xx phy (git-fixes). - net: phy: realtek: add delay to fix RXC generation issue (git-fixes). - net: usb: fix possible use-after-free in smsc75xx_bind (git-fixes). - net: wilc1000: clean up resource in error path of init mon interface (git-fixes). - netfilter: ctnetlink: suspicious RCU usage in ctnetlink_dump_helpinfo (bsc#1176447). - nfc: nfcsim: fix use after free during module unload (git-fixes). - nvme-rdma: fix in-casule data send for chained sgls (git-fixes). - nvme-rdma: introduce nvme_rdma_sgl structure (git-fixes). - nvme-tcp: rerun io_work if req_list is not empty (git-fixes). - nvme: verify MNAN value if ANA is enabled (bsc#1185791). - pinctrl/amd: Add device HID for new AMD GPIO controller (git-fixes). - pinctrl: mcp23s08: Fix missing unlock on error in mcp23s08_irq() (git-fixes). - pinctrl: mcp23s08: fix race condition in irq handler (git-fixes). - pinctrl: stm32: fix the reported number of GPIO lines per bank (git-fixes). - platform/chrome: cros_ec_lightbar: Reduce ligthbar get version command (git-fixes). - platform/x86: dell-smbios-wmi: Fix oops on rmmod dell_smbios (git-fixes). - platform/x86: intel_int0002_vgpio: Only call enable_irq_wake() when using s2idle (git-fixes). - platform/x86: intel_int0002_vgpio: Pass irqchip when adding gpiochip (git-fixes). - platform/x86: intel_int0002_vgpio: Remove dev_err() usage after platform_get_irq() (git-fixes). - platform/x86: intel_int0002_vgpio: Use device_init_wakeup (git-fixes). - platform/x86: toshiba_acpi: Fix missing error code in toshiba_acpi_setup_keyboard() (git-fixes). - power: reset: gpio-poweroff: add missing MODULE_DEVICE_TABLE (git-fixes). - power: supply: ab8500: Avoid NULL pointers (git-fixes). - power: supply: ab8500: add missing MODULE_DEVICE_TABLE (git-fixes). - power: supply: charger-manager: add missing MODULE_DEVICE_TABLE (git-fixes). - power: supply: max17042: Do not enforce (incorrect) interrupt trigger type (git-fixes). - power: supply: sc2731_charger: Add missing MODULE_DEVICE_TABLE (git-fixes). - power: supply: sc27xx: Add missing MODULE_DEVICE_TABLE (git-fixes). - powerpc/64s: Move branch cache flushing bcctr variant to ppc-ops.h (bsc#1188885 ltc#193722). - powerpc/64s: rename pnv|pseries_setup_rfi_flush to _setup_security_mitigations (bsc#1188885 ltc#193722). - powerpc/mm: Fix lockup on kernel exec fault (bsc#1156395). - powerpc/papr_scm: Properly handle UUID types and API (bsc#1113295, git-fixes). - powerpc/pesries: Get STF barrier requirement from H_GET_CPU_CHARACTERISTICS (bsc#1188885 ltc#193722). - powerpc/pseries: Get entry and uaccess flush required bits from H_GET_CPU_CHARACTERISTICS (bsc#1188885 ltc#193722). - powerpc/pseries: add new branch prediction security bits for link stack (bsc#1188885 ltc#193722). - powerpc/pseries: export LPAR security flavor in lparcfg (bsc#1188885 ltc#193722). - powerpc/security: Add a security feature for STF barrier (bsc#1188885 ltc#193722). - powerpc/security: Allow for processors that flush the link stack using the special bcctr (bsc#1188885 ltc#193722). - powerpc/security: Fix link stack flush instruction (bsc#1188885 ltc#193722). - powerpc/security: change link stack flush state to the flush type enum (bsc#1188885 ltc#193722). - powerpc/security: make display of branch cache flush more consistent (bsc#1188885 ltc#193722). - powerpc/security: re-name count cache flush to branch cache flush (bsc#1188885 ltc#193722). - powerpc/security: split branch cache flush toggle from code patching (bsc#1188885 ltc#193722). - powerpc/stacktrace: Fix spurious "stale" traces in raise_backtrace_ipi() (bsc#1156395). - powerpc/stacktrace: Include linux/delay.h (bsc#1156395). - powerpc: Offline CPU in stop_this_cpu() (bsc#1156395). - prctl: PR_{G,S}ET_IO_FLUSHER to support controlling memory reclaim (bsc#1188752). - ptp_qoriq: fix overflow in ptp_qoriq_adjfine() u64 calcalation (git-fixes). - pwm: img: Fix PM reference leak in img_pwm_enable() (git-fixes). - pwm: imx1: Do not disable clocks at device remove time (git-fixes). - pwm: spear: Do not modify HW state in .remove callback (git-fixes). - qemu_fw_cfg: Make fw_cfg_rev_attr a proper kobj_attribute (git-fixes). - r8152: Avoid memcpy() over-reading of ETH_SS_STATS (git-fixes). - r8152: Fix a deadlock by doubly PM resume (bsc#1186194). - r8152: Fix potential PM refcount imbalance (bsc#1186194). - r8169: Avoid memcpy() over-reading of ETH_SS_STATS (git-fixes). - r8169: avoid link-up interrupt issue on RTL8106e if user enables ASPM (git-fixes). - random32: Fix implicit truncation warning in prandom_seed_state() (git-fixes). - ravb: Fix bit fields checking in ravb_hwtstamp_get() (git-fixes). - rbd: always kick acquire on "acquired" and "released" notifications (bsc#1188746). - rbd: do not hold lock_rwsem while running_list is being drained (bsc#1188747). - regulator: da9052: Ensure enough delay time for .set_voltage_time_sel (git-fixes). - regulator: hi6421: Fix getting wrong drvdata (git-fixes). - regulator: hi6421: Use correct variable type for regmap api val argument (git-fixes). - regulator: hi655x: Fix pass wrong pointer to config.driver_data (git-fixes). - regulator: uniphier: Add missing MODULE_DEVICE_TABLE (git-fixes). - replaced with upstream security mitigation cleanup - reset: a10sr: add missing of_match_table reference (git-fixes). - reset: bail if try_module_get() fails (git-fixes). - reset: brcmstb: Add missing MODULE_DEVICE_TABLE (git-fixes). - reset: ti-syscon: fix to_ti_syscon_reset_data macro (git-fixes). - rpm/kernel-binary.spec.in: Do not install usrmerged kernel on Leap (boo#1184804). - rpm/kernel-binary.spec.in: Remove zdebug define used only once. - rsi: Assign beacon rate settings to the correct rate_info descriptor field (git-fixes). - rtc: fix snprintf() checking in is_rtc_hctosys() (git-fixes). - rtc: max77686: Do not enforce (incorrect) interrupt trigger type (git-fixes). - rtc: mxc_v2: add missing MODULE_DEVICE_TABLE (git-fixes). - rtc: stm32: Fix unbalanced clk_disable_unprepare() on probe error path (git-fixes). - rtl8xxxu: Fix device info for RTL8192EU devices (git-fixes). - rtw88: 8822c: fix lc calibration timing (git-fixes). - scsi: fc: Add 256GBit speed setting to SCSI FC transport (bsc#1188101). - scsi: ibmvfc: Fix command state accounting and stale response detection (jsc#SLE-15442 bsc#1180814 ltc#187461 git-fixes). - scsi: qedf: Do not put host in qedf_vport_create() unconditionally (bsc#1170511). - serial: 8250: Actually allow UPF_MAGIC_MULTIPLIER baud rates (git-fixes). - serial: 8250_pci: Add support for new HPE serial device (git-fixes). - serial: fsl_lpuart: remove RTSCTS handling from get_mctrl() (git-fixes). - serial: fsl_lpuart: remove RTSCTS handling from get_mctrl() (git-fixes). - serial: mvebu-uart: correctly calculate minimal possible baudrate (git-fixes). - serial: mvebu-uart: do not allow changing baudrate when uartclk is not available (git-fixes). - serial: mvebu-uart: fix calculation of clock divisor (git-fixes). - serial: tegra-tcu: Reorder channel initialization (git-fixes). - serial_cs: Add Option International GSM-Ready 56K/ISDN modem (git-fixes). - serial_cs: remove wrong GLOBETROTTER.cis entry (git-fixes). - sfp: Fix error handing in sfp_probe() (git-fixes). - skbuff: Fix build with SKB extensions disabled (jsc#SLE-15172). - skbuff: Release nfct refcount on napi stolen or re-used skbs (jsc#SLE-15172). - soc/tegra: fuse: Fix Tegra234-only builds (git-fixes). - soc: fsl: qbman: Delete useless kfree code (bsc#1188176). - soc: fsl: qbman: Ensure device cleanup is run for kexec (bsc#1188176). - soundwire: stream: Fix test for DP prepare complete (git-fixes). - spi: Make of_register_spi_device also set the fwnode (git-fixes). - spi: cadence: Correct initialisation of runtime PM again (git-fixes). - spi: fspi: dynamically alloc AHB memory (bsc#1188121). - spi: imx: add a check for speed_hz before calculating the clock (git-fixes). - spi: mediatek: fix fifo rx mode (git-fixes). - spi: nxp-fspi: Use devm API to fix missed unregistration of controller (bsc#1188121). - spi: omap-100k: Fix the length judgment problem (git-fixes). - spi: spi-loopback-test: Fix 'tx_buf' might be 'rx_buf' (git-fixes). - spi: spi-nxp-fspi: Add ACPI support (bsc#1188121). - spi: spi-nxp-fspi: Add support for IP read only (bsc#1188121). - spi: spi-nxp-fspi: Enable the Octal Mode in MCR0 (bsc#1188121). - spi: spi-nxp-fspi: Fix a NULL vs IS_ERR() check in probe (bsc#1188121). - spi: spi-nxp-fspi: Implement errata workaround for LS1028A (bsc#1188121). - spi: spi-sun6i: Fix chipselect/clock bug (git-fixes). - spi: spi-topcliff-pch: Fix potential double free in pch_spi_process_messages() (git-fixes). - spi: stm32-qspi: Remove unused qspi field of struct stm32_qspi_flash (git-fixes). - spi: tegra114: Fix an error message (git-fixes). - ssb: Fix error return code in ssb_bus_scan() (git-fixes). - ssb: sdio: Do not overwrite const buffer if block_write fails (git-fixes). - staging: gdm724x: check for buffer overflow in gdm_lte_multi_sdu_pkt() (git-fixes). - staging: gdm724x: check for overflow in gdm_lte_netif_rx() (git-fixes). - staging: rtl8712: fix memory leak in rtl871x_load_fw_cb (git-fixes). - staging: rtl8712: remove redundant check in r871xu_drv_init (git-fixes). - staging: rtl8723bs: fix macro value for 2.4Ghz only device (git-fixes). - thermal/core: Correct function name thermal_zone_device_unregister() (git-fixes). - thermal/drivers/int340x/processor_thermal: Fix tcc setting (git-fixes). - thermal/drivers/rcar_gen3_thermal: Fix coefficient calculations (git-fixes). - thunderbolt: Bond lanes only when dual_link_port != NULL in alloc_dev_default() (git-fixes). - timers: Fix get_next_timer_interrupt() with no timers pending (git-fixes) - tpm, tpm_tis: Decorate tpm_get_timeouts() with request_locality() (bsc#1188036). - tpm, tpm_tis: Decorate tpm_tis_gen_interrupt() with request_locality() (bsc#1188036). - tpm, tpm_tis: Extend locality handling to TPM2 in tpm_tis_gen_interrupt() (bsc#1188036). - tpm, tpm_tis: Reserve locality in tpm_tis_resume() (bsc#1188036). - tpm: efi: Use local variable for calculating final log size (git-fixes). - tracepoint: Add tracepoint_probe_register_may_exist() for BPF tracing (git-fixes). - tracing/histograms: Fix parsing of "sym-offset" modifier (git-fixes). - tracing: Do not reference char * as a string in histograms (git-fixes). - tracing: Resize tgid_map to pid_max, not PID_MAX_DEFAULT (git-fixes). - tracing: Simplify & fix saved_tgids logic (git-fixes). - tty: nozomi: Fix a resource leak in an error handling function (git-fixes). - tty: nozomi: Fix the error handling path of 'nozomi_card_init()' (git-fixes). - tty: serial: 8250: serial_cs: Fix a memory leak in error handling path (git-fixes). - tty: serial: fsl_lpuart: fix the potential risk of division or modulo by zero (git-fixes). - usb: dwc2: Do not reset the core after setting turnaround time (git-fixes). - usb: dwc2: gadget: Fix sending zero length packet in DDMA mode (git-fixes). - usb: dwc3: Fix debugfs creation flow (git-fixes). - usb: gadget: eem: fix echo command packet response issue (git-fixes). - usb: gadget: f_fs: Fix setting of device and driver data cross-references (git-fixes). - usb: gadget: f_hid: fix endianness issue with descriptors (git-fixes). - usb: gadget: hid: fix error return code in hid_bind() (git-fixes). - usb: hub: Disable USB 3 device initiated lpm if exit latency is too high (git-fixes). - usb: hub: Fix link power management max exit latency (MEL) calculations (git-fixes). - usb: max-3421: Prevent corruption of freed memory (git-fixes). - usb: renesas_usbhs: Fix superfluous irqs happen after usb_pkt_pop() (git-fixes). - usb: typec: Add the missed altmode_id_remove() in typec_register_altmode() (git-fixes). - usb: typec: fusb302: Always provide fwnode for the port (git-fixes). - usb: typec: fusb302: fix "op-sink-microwatt" default that was in mW (git-fixes). - usb: typec: tcpm: Error handling for tcpm_register_partner_altmodes (git-fixes). - usb: typec: tcpm: Move mod_delayed_work(&port->vdm_state_machine) call into tcpm_queue_vdm() (git-fixes). - usb: typec: tcpm: Refactor tcpm_handle_vdm_request (git-fixes). - usb: typec: tcpm: Refactor tcpm_handle_vdm_request payload handling (git-fixes). - usb: typec: tcpm: Remove tcpc_config configuration mechanism (git-fixes). - usb: typec: tcpm: Switch to use fwnode_property_count_uXX() (git-fixes). - usb: typec: tcpm: move to SNK_UNATTACHED if sink removed for DRP (git-fixes). - usb: typec: tcpm: set correct data role for non-DRD (git-fixes). - usb: typec: tcpm: update power supply once partner accepts (git-fixes). - usb: typec: ucsi: Hold con->lock for the entire duration of ucsi_register_port() (git-fixes). - usb: typec: ucsi: Put fwnode in any case during ->probe() (git-fixes). - usb: typec: wcove: Fx wrong kernel doc format (git-fixes). - uuid: Add inline helpers to import / export UUIDs (bsc#1113295, git-fixes). - vfio/pci: Handle concurrent vma faults (git-fixes). - vfs: Convert functionfs to use the new mount API (git -fixes). - video: fbdev: imxfb: Fix an error message (git-fixes). - virtio_console: Assure used length from device is limited (git-fixes). - virtio_net: move tx vq operation under tx queue lock (git-fixes). - visorbus: fix error return code in visorchipset_init() (git-fixes). - vmxnet3: fix cksum offload issues for tunnels with non-default udp ports (git-fixes). - vxlan: add missing rcu_read_lock() in neigh_reduce() (git-fixes). - w1: ds2438: fixing bug that would always get page0 (git-fixes). - watchdog: Fix possible use-after-free by calling del_timer_sync() (git-fixes). - watchdog: Fix possible use-after-free in wdt_startup() (git-fixes). - watchdog: aspeed: fix hardware timeout calculation (git-fixes). - watchdog: iTCO_wdt: Account for rebooting on second timeout (git-fixes). - watchdog: sc520_wdt: Fix possible use-after-free in wdt_turnoff() (git-fixes). - watchdog: sp805: Fix kernel doc description (git-fixes). - wcn36xx: Move hal_buf allocation to devm_kmalloc in probe (git-fixes). - wilc1000: write value to WILC_INTR2_ENABLE register (git-fixes). - wireless: carl9170: fix LEDS build errors & warnings (git-fixes). - wireless: wext-spy: Fix out-of-bounds warning (git-fixes). - wl1251: Fix possible buffer overflow in wl1251_cmd_scan (git-fixes). - wlcore/wl12xx: Fix wl12xx get_mac error if device is in ELP (git-fixes). - workqueue: fix UAF in pwq_unbound_release_workfn() (bsc#1188973). - x86/kvm: Disable all PV features on crash (bsc#1185308). - x86/kvm: Disable all PV features on crash (bsc#1185308). - x86/kvm: Disable kvmclock on all CPUs on shutdown (bsc#1185308). - x86/kvm: Disable kvmclock on all CPUs on shutdown (bsc#1185308). - x86/kvm: Fix pr_info() for async PF setup/teardown (bsc#1185308). - x86/kvm: Fix pr_info() for async PF setup/teardown (bsc#1185308). - x86/kvm: Teardown PV features on boot CPU as well (bsc#1185308). - x86/kvm: Teardown PV features on boot CPU as well (bsc#1185308). - x86/kvm: Unify kvm_pv_guest_cpu_reboot() with kvm_guest_cpu_offline() (bsc#1185308). - x86/kvm: Unify kvm_pv_guest_cpu_reboot() with kvm_guest_cpu_offline() (bsc#1185308). - xen/events: reset active flag for lateeoi events later (git-fixes). - xfrm: Fix xfrm offload fallback fail case (bsc#1176447). - xfrm: delete xfrm4_output_finish xfrm6_output_finish declarations (bsc#1176447). - xfrm: xfrm_state_mtu should return at least 1280 for ipv6 (bsc#1185377). - xhci: Fix lost USB 2 remote wake (git-fixes). - xhci: solve a double free problem while doing s4 (git-fixes). - xsk: Fix missing validation for skb and unaligned mode (jsc#SLE-13706). cluster-md-kmp-azure-5.3.18-38.17.1.x86_64.rpm True dlm-kmp-azure-5.3.18-38.17.1.x86_64.rpm True gfs2-kmp-azure-5.3.18-38.17.1.x86_64.rpm True kernel-azure-5.3.18-38.17.1.nosrc.rpm True kernel-azure-5.3.18-38.17.1.x86_64.rpm True kernel-azure-devel-5.3.18-38.17.1.x86_64.rpm True kernel-azure-extra-5.3.18-38.17.1.x86_64.rpm True kernel-azure-livepatch-devel-5.3.18-38.17.1.x86_64.rpm True kernel-azure-optional-5.3.18-38.17.1.x86_64.rpm True kernel-devel-azure-5.3.18-38.17.1.noarch.rpm True kernel-source-azure-5.3.18-38.17.1.noarch.rpm True kernel-source-azure-5.3.18-38.17.1.src.rpm True kernel-syms-azure-5.3.18-38.17.1.src.rpm True kernel-syms-azure-5.3.18-38.17.1.x86_64.rpm True kselftests-kmp-azure-5.3.18-38.17.1.x86_64.rpm True ocfs2-kmp-azure-5.3.18-38.17.1.x86_64.rpm True reiserfs-kmp-azure-5.3.18-38.17.1.x86_64.rpm True openSUSE-SLE-15.3-2021-2783 Recommended update for yast2-country important SUSE Updates openSUSE-SLE 15.3 This update for yast2-country fixes the following issues: - AutoYaST: allow empty /profile/timezone/timezone setting, meaning to keep the UTC default (bsc#1188406). - Fix the Comment entry in the desktop file so the tooltip in the control center is properly translated (bsc#1187270). yast2-country-4.3.16-3.6.1.src.rpm yast2-country-4.3.16-3.6.1.x86_64.rpm yast2-country-data-4.3.16-3.6.1.x86_64.rpm yast2-country-4.3.16-3.6.1.s390x.rpm yast2-country-data-4.3.16-3.6.1.s390x.rpm yast2-country-4.3.16-3.6.1.ppc64le.rpm yast2-country-data-4.3.16-3.6.1.ppc64le.rpm yast2-country-4.3.16-3.6.1.aarch64.rpm yast2-country-data-4.3.16-3.6.1.aarch64.rpm openSUSE-SLE-15.3-2021-2997 Recommended update for python3 moderate SUSE Updates openSUSE-SLE 15.3 This update for python3 fixes the following issues: - Fixed an issue when the missing 'stropts.h' causing build errors for different python modules. (bsc#1187338) libpython3_6m1_0-3.6.13-10.3.1.x86_64.rpm libpython3_6m1_0-32bit-3.6.13-10.3.1.x86_64.rpm python3-3.6.13-10.3.1.src.rpm python3-3.6.13-10.3.1.x86_64.rpm python3-32bit-3.6.13-10.3.1.x86_64.rpm python3-base-3.6.13-10.3.1.x86_64.rpm python3-base-32bit-3.6.13-10.3.1.x86_64.rpm python3-core-3.6.13-10.3.1.src.rpm python3-curses-3.6.13-10.3.1.x86_64.rpm python3-dbm-3.6.13-10.3.1.x86_64.rpm python3-devel-3.6.13-10.3.1.x86_64.rpm python3-doc-devhelp-3.6.13-10.3.1.x86_64.rpm python3-documentation-3.6.13-10.3.1.src.rpm python3-idle-3.6.13-10.3.1.x86_64.rpm python3-testsuite-3.6.13-10.3.1.x86_64.rpm python3-tk-3.6.13-10.3.1.x86_64.rpm python3-tools-3.6.13-10.3.1.x86_64.rpm libpython3_6m1_0-3.6.13-10.3.1.s390x.rpm python3-3.6.13-10.3.1.s390x.rpm python3-base-3.6.13-10.3.1.s390x.rpm python3-curses-3.6.13-10.3.1.s390x.rpm python3-dbm-3.6.13-10.3.1.s390x.rpm python3-devel-3.6.13-10.3.1.s390x.rpm python3-doc-devhelp-3.6.13-10.3.1.s390x.rpm python3-idle-3.6.13-10.3.1.s390x.rpm python3-testsuite-3.6.13-10.3.1.s390x.rpm python3-tk-3.6.13-10.3.1.s390x.rpm python3-tools-3.6.13-10.3.1.s390x.rpm libpython3_6m1_0-3.6.13-10.3.1.ppc64le.rpm python3-3.6.13-10.3.1.ppc64le.rpm python3-base-3.6.13-10.3.1.ppc64le.rpm python3-curses-3.6.13-10.3.1.ppc64le.rpm python3-dbm-3.6.13-10.3.1.ppc64le.rpm python3-devel-3.6.13-10.3.1.ppc64le.rpm python3-doc-devhelp-3.6.13-10.3.1.ppc64le.rpm python3-idle-3.6.13-10.3.1.ppc64le.rpm python3-testsuite-3.6.13-10.3.1.ppc64le.rpm python3-tk-3.6.13-10.3.1.ppc64le.rpm python3-tools-3.6.13-10.3.1.ppc64le.rpm libpython3_6m1_0-3.6.13-10.3.1.aarch64.rpm python3-3.6.13-10.3.1.aarch64.rpm python3-base-3.6.13-10.3.1.aarch64.rpm python3-curses-3.6.13-10.3.1.aarch64.rpm python3-dbm-3.6.13-10.3.1.aarch64.rpm python3-devel-3.6.13-10.3.1.aarch64.rpm python3-doc-devhelp-3.6.13-10.3.1.aarch64.rpm python3-idle-3.6.13-10.3.1.aarch64.rpm python3-testsuite-3.6.13-10.3.1.aarch64.rpm python3-tk-3.6.13-10.3.1.aarch64.rpm python3-tools-3.6.13-10.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-3294 Security update for nodejs8 important SUSE Updates openSUSE-SLE 15.3 nodejs8 was updated to fix the following security issues: - CVE-2021-22930: http2: fixes use after free on close in stream canceling (bsc#1188917) nodejs8-8.17.0-10.15.11.src.rpm nodejs8-8.17.0-10.15.11.x86_64.rpm nodejs8-devel-8.17.0-10.15.11.x86_64.rpm nodejs8-docs-8.17.0-10.15.11.noarch.rpm npm8-8.17.0-10.15.11.x86_64.rpm nodejs8-8.17.0-10.15.11.s390x.rpm nodejs8-devel-8.17.0-10.15.11.s390x.rpm npm8-8.17.0-10.15.11.s390x.rpm nodejs8-8.17.0-10.15.11.ppc64le.rpm nodejs8-devel-8.17.0-10.15.11.ppc64le.rpm npm8-8.17.0-10.15.11.ppc64le.rpm nodejs8-8.17.0-10.15.11.aarch64.rpm nodejs8-devel-8.17.0-10.15.11.aarch64.rpm npm8-8.17.0-10.15.11.aarch64.rpm openSUSE-SLE-15.3-2021-3043 Recommended update for nvme-cli moderate SUSE Updates openSUSE-SLE 15.3 nvme-cli was updated to fix the following issues: - Do not print error message when opening controller (bsc#1186719) - Fix failures during 'nvme list' (bsc#1186719) - Only connect to matching controllers (bsc#1186719) - Skip connect if transport type doesn't match (bsc#1187287 bsc#1187860) - Ignore non live controllers when scanning subsystems (bsc#1186719 bsc#1187287) - Remove UUID validation heuristic (bsc#1187890) - Do not segfault when controller is not available (bsc#1189046) - Use correct default port for discovery (bsc#1189195 bsc#1187858) nvme-cli-1.13-3.7.1.src.rpm nvme-cli-1.13-3.7.1.x86_64.rpm nvme-cli-regress-script-1.13-3.7.1.x86_64.rpm nvme-cli-1.13-3.7.1.s390x.rpm nvme-cli-regress-script-1.13-3.7.1.s390x.rpm nvme-cli-1.13-3.7.1.ppc64le.rpm nvme-cli-regress-script-1.13-3.7.1.ppc64le.rpm nvme-cli-1.13-3.7.1.aarch64.rpm nvme-cli-regress-script-1.13-3.7.1.aarch64.rpm openSUSE-SLE-15.3-2021-3033 Recommended update for yast2-theme low SUSE Updates openSUSE-SLE 15.3 This update for yast2-theme fixes the following issues: - Fix the icons' style and minify them. yast2-theme-4.3.9-3.3.1.noarch.rpm yast2-theme-4.3.9-3.3.1.src.rpm openSUSE-SLE-15.3-2021-2909 Recommended update for ndctl moderate SUSE Updates openSUSE-SLE 15.3 This update for ndctl fixes the following issues: - Enable aarch64 build. (bsc#1188502) libndctl-devel-71.1-3.3.1.x86_64.rpm libndctl6-71.1-3.3.1.x86_64.rpm ndctl-71.1-3.3.1.src.rpm ndctl-71.1-3.3.1.x86_64.rpm libndctl-devel-71.1-3.3.1.ppc64le.rpm libndctl6-71.1-3.3.1.ppc64le.rpm ndctl-71.1-3.3.1.ppc64le.rpm openSUSE-SLE-15.3-2021-2951 Recommended update for scap-security-guide moderate SUSE Updates openSUSE-SLE 15.3 This update for scap-security-guide fixes the following issues: Updated to 0.1.57 release (jsc#ECO-3319) - Small bugfixes for SUSE Linux Enterprise STIG profiles. - CIS profile for RHEL 7 is updated. - Initial CIS profiles for Ubuntu 20.04. - Major improvement of RHEL 9 content. scap-security-guide-0.1.57-1.16.1.noarch.rpm scap-security-guide-0.1.57-1.16.1.src.rpm scap-security-guide-debian-0.1.57-1.16.1.noarch.rpm scap-security-guide-redhat-0.1.57-1.16.1.noarch.rpm scap-security-guide-ubuntu-0.1.57-1.16.1.noarch.rpm openSUSE-SLE-15.3-2021-2786 Recommended update for bash important SUSE Updates openSUSE-SLE 15.3 This update for bash fixes the following issues: - Allow process group assignment even for modern kernels (bsc#1057452, bsc#1188287) bash-4.4-19.6.1.src.rpm bash-4.4-19.6.1.x86_64.rpm bash-devel-4.4-19.6.1.x86_64.rpm bash-doc-4.4-19.6.1.noarch.rpm bash-lang-4.4-19.6.1.noarch.rpm bash-loadables-4.4-19.6.1.x86_64.rpm libreadline7-32bit-7.0-19.6.1.x86_64.rpm libreadline7-7.0-19.6.1.x86_64.rpm readline-devel-32bit-7.0-19.6.1.x86_64.rpm readline-devel-7.0-19.6.1.x86_64.rpm readline-devel-static-7.0-19.6.1.x86_64.rpm readline-doc-7.0-19.6.1.noarch.rpm bash-4.4-19.6.1.s390x.rpm bash-devel-4.4-19.6.1.s390x.rpm bash-loadables-4.4-19.6.1.s390x.rpm libreadline7-7.0-19.6.1.s390x.rpm readline-devel-7.0-19.6.1.s390x.rpm readline-devel-static-7.0-19.6.1.s390x.rpm bash-4.4-19.6.1.ppc64le.rpm bash-devel-4.4-19.6.1.ppc64le.rpm bash-loadables-4.4-19.6.1.ppc64le.rpm libreadline7-7.0-19.6.1.ppc64le.rpm readline-devel-7.0-19.6.1.ppc64le.rpm readline-devel-static-7.0-19.6.1.ppc64le.rpm bash-4.4-19.6.1.aarch64.rpm bash-devel-4.4-19.6.1.aarch64.rpm bash-loadables-4.4-19.6.1.aarch64.rpm libreadline7-7.0-19.6.1.aarch64.rpm readline-devel-7.0-19.6.1.aarch64.rpm readline-devel-static-7.0-19.6.1.aarch64.rpm openSUSE-SLE-15.3-2021-2760 Security update for c-ares important SUSE Updates openSUSE-SLE 15.3 This update for c-ares fixes the following issues: Version update to git snapshot 1.17.1+20200724: - CVE-2021-3672: fixed missing input validation on hostnames returned by DNS servers (bsc#1188881) - If ares_getaddrinfo() was terminated by an ares_destroy(), it would cause crash - Crash in sortaddrinfo() if the list size equals 0 due to an unexpected DNS response - Expand number of escaped characters in DNS replies as per RFC1035 5.1 to prevent spoofing - Use unbuffered /dev/urandom for random data to prevent early startup performance issues c-ares-1.17.1+20200724-3.14.1.src.rpm c-ares-devel-1.17.1+20200724-3.14.1.x86_64.rpm c-ares-utils-1.17.1+20200724-3.14.1.x86_64.rpm libcares2-1.17.1+20200724-3.14.1.x86_64.rpm libcares2-32bit-1.17.1+20200724-3.14.1.x86_64.rpm c-ares-devel-1.17.1+20200724-3.14.1.s390x.rpm c-ares-utils-1.17.1+20200724-3.14.1.s390x.rpm libcares2-1.17.1+20200724-3.14.1.s390x.rpm c-ares-devel-1.17.1+20200724-3.14.1.ppc64le.rpm c-ares-utils-1.17.1+20200724-3.14.1.ppc64le.rpm libcares2-1.17.1+20200724-3.14.1.ppc64le.rpm c-ares-devel-1.17.1+20200724-3.14.1.aarch64.rpm c-ares-utils-1.17.1+20200724-3.14.1.aarch64.rpm libcares2-1.17.1+20200724-3.14.1.aarch64.rpm openSUSE-SLE-15.3-2021-2937 Security update for libesmtp important SUSE Updates openSUSE-SLE 15.3 This update for libesmtp fixes the following issues: - CVE-2019-19977: Fixed stack-based buffer over-read in ntlm/ntlmstruct.c (bsc#1160462). libesmtp-1.0.6-150.4.1.src.rpm libesmtp-1.0.6-150.4.1.x86_64.rpm libesmtp-devel-1.0.6-150.4.1.x86_64.rpm libesmtp-1.0.6-150.4.1.s390x.rpm libesmtp-devel-1.0.6-150.4.1.s390x.rpm libesmtp-1.0.6-150.4.1.ppc64le.rpm libesmtp-devel-1.0.6-150.4.1.ppc64le.rpm libesmtp-1.0.6-150.4.1.aarch64.rpm libesmtp-devel-1.0.6-150.4.1.aarch64.rpm openSUSE-SLE-15.3-2021-3002 Recommended update for cronie moderate SUSE Updates openSUSE-SLE 15.3 This update for cronie fixes the following issue: - Increase the limit of allowed entries in 'crontab' files. (bsc#1187508) cron-4.2-70.14.4.1.x86_64.rpm cronie-1.5.1-70.14.4.1.src.rpm cronie-1.5.1-70.14.4.1.x86_64.rpm cronie-anacron-1.5.1-70.14.4.1.x86_64.rpm cron-4.2-70.14.4.1.s390x.rpm cronie-1.5.1-70.14.4.1.s390x.rpm cronie-anacron-1.5.1-70.14.4.1.s390x.rpm cron-4.2-70.14.4.1.ppc64le.rpm cronie-1.5.1-70.14.4.1.ppc64le.rpm cronie-anacron-1.5.1-70.14.4.1.ppc64le.rpm cron-4.2-70.14.4.1.aarch64.rpm cronie-1.5.1-70.14.4.1.aarch64.rpm cronie-anacron-1.5.1-70.14.4.1.aarch64.rpm openSUSE-SLE-15.3-2021-3010 Recommended update for pesign-obs-integration moderate SUSE Updates openSUSE-SLE 15.3 This update for pesign-obs-integration fixes the following issues: - Fixed slowness when MALLOC_PERTURB_ is set (bsc#1188636) pesign-obs-integration-10.1-13.3.1.src.rpm pesign-obs-integration-10.1-13.3.1.x86_64.rpm pesign-obs-integration-10.1-13.3.1.s390x.rpm pesign-obs-integration-10.1-13.3.1.ppc64le.rpm pesign-obs-integration-10.1-13.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-2858 Security update for qemu moderate SUSE Updates openSUSE-SLE 15.3 This update for qemu fixes the following issues: Security issues fixed: - usbredir: free call on invalid pointer in bufp_alloc (bsc#1189145, CVE-2021-3682) - NULL pointer dereference in ESP (bsc#1180433, CVE-2020-35504) (bsc#1180434, CVE-2020-35505) (bsc#1180435, CVE-2020-35506) - NULL pointer dereference issue in megasas-gen2 host bus adapter (bsc#1180432, CVE-2020-35503) - eepro100: stack overflow via infinite recursion (bsc#1182651, CVE-2021-20255) - usb: unbounded stack allocation in usbredir (bsc#1186012, CVE-2021-3527) Non-security issues fixed: - Use max host physical address if -cpu max is used (bsc#1188299) qemu-5.2.0-103.2.src.rpm qemu-5.2.0-103.2.x86_64.rpm qemu-arm-5.2.0-103.2.x86_64.rpm qemu-audio-alsa-5.2.0-103.2.x86_64.rpm qemu-audio-pa-5.2.0-103.2.x86_64.rpm qemu-audio-spice-5.2.0-103.2.x86_64.rpm qemu-block-curl-5.2.0-103.2.x86_64.rpm qemu-block-dmg-5.2.0-103.2.x86_64.rpm qemu-block-gluster-5.2.0-103.2.x86_64.rpm qemu-block-iscsi-5.2.0-103.2.x86_64.rpm qemu-block-nfs-5.2.0-103.2.x86_64.rpm qemu-block-rbd-5.2.0-103.2.x86_64.rpm qemu-block-ssh-5.2.0-103.2.x86_64.rpm qemu-chardev-baum-5.2.0-103.2.x86_64.rpm qemu-chardev-spice-5.2.0-103.2.x86_64.rpm qemu-extra-5.2.0-103.2.x86_64.rpm qemu-guest-agent-5.2.0-103.2.x86_64.rpm qemu-hw-display-qxl-5.2.0-103.2.x86_64.rpm qemu-hw-display-virtio-gpu-5.2.0-103.2.x86_64.rpm qemu-hw-display-virtio-gpu-pci-5.2.0-103.2.x86_64.rpm qemu-hw-display-virtio-vga-5.2.0-103.2.x86_64.rpm qemu-hw-s390x-virtio-gpu-ccw-5.2.0-103.2.x86_64.rpm qemu-hw-usb-redirect-5.2.0-103.2.x86_64.rpm qemu-hw-usb-smartcard-5.2.0-103.2.x86_64.rpm qemu-ipxe-1.0.0+-103.2.noarch.rpm qemu-ivshmem-tools-5.2.0-103.2.x86_64.rpm qemu-ksm-5.2.0-103.2.x86_64.rpm qemu-kvm-5.2.0-103.2.x86_64.rpm qemu-lang-5.2.0-103.2.x86_64.rpm qemu-microvm-5.2.0-103.2.noarch.rpm qemu-ppc-5.2.0-103.2.x86_64.rpm qemu-s390x-5.2.0-103.2.x86_64.rpm qemu-seabios-1.14.0_0_g155821a-103.2.noarch.rpm qemu-sgabios-8-103.2.noarch.rpm qemu-skiboot-5.2.0-103.2.noarch.rpm qemu-tools-5.2.0-103.2.x86_64.rpm qemu-ui-curses-5.2.0-103.2.x86_64.rpm qemu-ui-gtk-5.2.0-103.2.x86_64.rpm qemu-ui-opengl-5.2.0-103.2.x86_64.rpm qemu-ui-spice-app-5.2.0-103.2.x86_64.rpm qemu-ui-spice-core-5.2.0-103.2.x86_64.rpm qemu-vgabios-1.14.0_0_g155821a-103.2.noarch.rpm qemu-vhost-user-gpu-5.2.0-103.2.x86_64.rpm qemu-x86-5.2.0-103.2.x86_64.rpm qemu-5.2.0-103.2.s390x.rpm qemu-arm-5.2.0-103.2.s390x.rpm qemu-audio-alsa-5.2.0-103.2.s390x.rpm qemu-audio-pa-5.2.0-103.2.s390x.rpm qemu-audio-spice-5.2.0-103.2.s390x.rpm qemu-block-curl-5.2.0-103.2.s390x.rpm qemu-block-dmg-5.2.0-103.2.s390x.rpm qemu-block-gluster-5.2.0-103.2.s390x.rpm qemu-block-iscsi-5.2.0-103.2.s390x.rpm qemu-block-nfs-5.2.0-103.2.s390x.rpm qemu-block-rbd-5.2.0-103.2.s390x.rpm qemu-block-ssh-5.2.0-103.2.s390x.rpm qemu-chardev-baum-5.2.0-103.2.s390x.rpm qemu-chardev-spice-5.2.0-103.2.s390x.rpm qemu-extra-5.2.0-103.2.s390x.rpm qemu-guest-agent-5.2.0-103.2.s390x.rpm qemu-hw-display-qxl-5.2.0-103.2.s390x.rpm qemu-hw-display-virtio-gpu-5.2.0-103.2.s390x.rpm qemu-hw-display-virtio-gpu-pci-5.2.0-103.2.s390x.rpm qemu-hw-display-virtio-vga-5.2.0-103.2.s390x.rpm qemu-hw-s390x-virtio-gpu-ccw-5.2.0-103.2.s390x.rpm qemu-hw-usb-redirect-5.2.0-103.2.s390x.rpm qemu-hw-usb-smartcard-5.2.0-103.2.s390x.rpm qemu-ivshmem-tools-5.2.0-103.2.s390x.rpm qemu-ksm-5.2.0-103.2.s390x.rpm qemu-kvm-5.2.0-103.2.s390x.rpm qemu-lang-5.2.0-103.2.s390x.rpm qemu-ppc-5.2.0-103.2.s390x.rpm qemu-s390x-5.2.0-103.2.s390x.rpm qemu-tools-5.2.0-103.2.s390x.rpm qemu-ui-curses-5.2.0-103.2.s390x.rpm qemu-ui-gtk-5.2.0-103.2.s390x.rpm qemu-ui-opengl-5.2.0-103.2.s390x.rpm qemu-ui-spice-app-5.2.0-103.2.s390x.rpm qemu-ui-spice-core-5.2.0-103.2.s390x.rpm qemu-vhost-user-gpu-5.2.0-103.2.s390x.rpm qemu-x86-5.2.0-103.2.s390x.rpm qemu-5.2.0-103.2.ppc64le.rpm qemu-arm-5.2.0-103.2.ppc64le.rpm qemu-audio-alsa-5.2.0-103.2.ppc64le.rpm qemu-audio-pa-5.2.0-103.2.ppc64le.rpm qemu-audio-spice-5.2.0-103.2.ppc64le.rpm qemu-block-curl-5.2.0-103.2.ppc64le.rpm qemu-block-dmg-5.2.0-103.2.ppc64le.rpm qemu-block-gluster-5.2.0-103.2.ppc64le.rpm qemu-block-iscsi-5.2.0-103.2.ppc64le.rpm qemu-block-nfs-5.2.0-103.2.ppc64le.rpm qemu-block-rbd-5.2.0-103.2.ppc64le.rpm qemu-block-ssh-5.2.0-103.2.ppc64le.rpm qemu-chardev-baum-5.2.0-103.2.ppc64le.rpm qemu-chardev-spice-5.2.0-103.2.ppc64le.rpm qemu-extra-5.2.0-103.2.ppc64le.rpm qemu-guest-agent-5.2.0-103.2.ppc64le.rpm qemu-hw-display-qxl-5.2.0-103.2.ppc64le.rpm qemu-hw-display-virtio-gpu-5.2.0-103.2.ppc64le.rpm qemu-hw-display-virtio-gpu-pci-5.2.0-103.2.ppc64le.rpm qemu-hw-display-virtio-vga-5.2.0-103.2.ppc64le.rpm qemu-hw-s390x-virtio-gpu-ccw-5.2.0-103.2.ppc64le.rpm qemu-hw-usb-redirect-5.2.0-103.2.ppc64le.rpm qemu-hw-usb-smartcard-5.2.0-103.2.ppc64le.rpm qemu-ivshmem-tools-5.2.0-103.2.ppc64le.rpm qemu-ksm-5.2.0-103.2.ppc64le.rpm qemu-lang-5.2.0-103.2.ppc64le.rpm qemu-ppc-5.2.0-103.2.ppc64le.rpm qemu-s390x-5.2.0-103.2.ppc64le.rpm qemu-tools-5.2.0-103.2.ppc64le.rpm qemu-ui-curses-5.2.0-103.2.ppc64le.rpm qemu-ui-gtk-5.2.0-103.2.ppc64le.rpm qemu-ui-opengl-5.2.0-103.2.ppc64le.rpm qemu-ui-spice-app-5.2.0-103.2.ppc64le.rpm qemu-ui-spice-core-5.2.0-103.2.ppc64le.rpm qemu-vhost-user-gpu-5.2.0-103.2.ppc64le.rpm qemu-x86-5.2.0-103.2.ppc64le.rpm qemu-5.2.0-103.2.aarch64.rpm qemu-arm-5.2.0-103.2.aarch64.rpm qemu-audio-alsa-5.2.0-103.2.aarch64.rpm qemu-audio-pa-5.2.0-103.2.aarch64.rpm qemu-audio-spice-5.2.0-103.2.aarch64.rpm qemu-block-curl-5.2.0-103.2.aarch64.rpm qemu-block-dmg-5.2.0-103.2.aarch64.rpm qemu-block-gluster-5.2.0-103.2.aarch64.rpm qemu-block-iscsi-5.2.0-103.2.aarch64.rpm qemu-block-nfs-5.2.0-103.2.aarch64.rpm qemu-block-rbd-5.2.0-103.2.aarch64.rpm qemu-block-ssh-5.2.0-103.2.aarch64.rpm qemu-chardev-baum-5.2.0-103.2.aarch64.rpm qemu-chardev-spice-5.2.0-103.2.aarch64.rpm qemu-extra-5.2.0-103.2.aarch64.rpm qemu-guest-agent-5.2.0-103.2.aarch64.rpm qemu-hw-display-qxl-5.2.0-103.2.aarch64.rpm qemu-hw-display-virtio-gpu-5.2.0-103.2.aarch64.rpm qemu-hw-display-virtio-gpu-pci-5.2.0-103.2.aarch64.rpm qemu-hw-display-virtio-vga-5.2.0-103.2.aarch64.rpm qemu-hw-s390x-virtio-gpu-ccw-5.2.0-103.2.aarch64.rpm qemu-hw-usb-redirect-5.2.0-103.2.aarch64.rpm qemu-hw-usb-smartcard-5.2.0-103.2.aarch64.rpm qemu-ivshmem-tools-5.2.0-103.2.aarch64.rpm qemu-ksm-5.2.0-103.2.aarch64.rpm qemu-lang-5.2.0-103.2.aarch64.rpm qemu-ppc-5.2.0-103.2.aarch64.rpm qemu-s390x-5.2.0-103.2.aarch64.rpm qemu-tools-5.2.0-103.2.aarch64.rpm qemu-ui-curses-5.2.0-103.2.aarch64.rpm qemu-ui-gtk-5.2.0-103.2.aarch64.rpm qemu-ui-opengl-5.2.0-103.2.aarch64.rpm qemu-ui-spice-app-5.2.0-103.2.aarch64.rpm qemu-ui-spice-core-5.2.0-103.2.aarch64.rpm qemu-vhost-user-gpu-5.2.0-103.2.aarch64.rpm qemu-x86-5.2.0-103.2.aarch64.rpm openSUSE-SLE-15.3-2021-2956 Recommended update for openCryptoki moderate SUSE Updates openSUSE-SLE 15.3 This update for openCryptoki fixes the following issues: - Opencryptoki slot daemon not able to start after migration. (bsc#1188879) openCryptoki-3.15.1-5.6.1.src.rpm openCryptoki-3.15.1-5.6.1.x86_64.rpm openCryptoki-64bit-3.15.1-5.6.1.x86_64.rpm openCryptoki-devel-3.15.1-5.6.1.x86_64.rpm openCryptoki-3.15.1-5.6.1.s390x.rpm openCryptoki-64bit-3.15.1-5.6.1.s390x.rpm openCryptoki-devel-3.15.1-5.6.1.s390x.rpm openCryptoki-3.15.1-5.6.1.ppc64le.rpm openCryptoki-64bit-3.15.1-5.6.1.ppc64le.rpm openCryptoki-devel-3.15.1-5.6.1.ppc64le.rpm openCryptoki-3.15.1-5.6.1.aarch64.rpm openCryptoki-64bit-3.15.1-5.6.1.aarch64.rpm openCryptoki-devel-3.15.1-5.6.1.aarch64.rpm openSUSE-SLE-15.3-2021-2837 Security update for mariadb moderate SUSE Updates openSUSE-SLE 15.3 This update for mariadb fixes the following issues: Update to version 10.2.40 (bsc#1189320): - fixes for the following security vulnerabilities: CVE-2021-2372 and CVE-2021-2389 In additon the follwing was changed: - Increase NOFILE limit on service configuration (bsc#1180014) The default 'NOFILE' setting on mariadb service configuration is to low and may cause instability on higher loads. mariadb-10.4.21-3.14.1.src.rpm mariadb-galera-10.4.21-3.14.1.x86_64.rpm mariadb-galera-10.4.21-3.14.1.s390x.rpm mariadb-galera-10.4.21-3.14.1.ppc64le.rpm mariadb-galera-10.4.21-3.14.1.aarch64.rpm openSUSE-SLE-15.3-2021-2789 Security update for qemu moderate SUSE Updates openSUSE-SLE 15.3 This update for qemu fixes the following issues: Security issues fixed: - usbredir: free call on invalid pointer in bufp_alloc (bsc#1189145, CVE-2021-3682) - NULL pointer dereference in ESP (bsc#1180433, CVE-2020-35504) (bsc#1180434, CVE-2020-35505) (bsc#1180435, CVE-2020-35506) - NULL pointer dereference issue in megasas-gen2 host bus adapter (bsc#1180432, CVE-2020-35503) - eepro100: stack overflow via infinite recursion (bsc#1182651, CVE-2021-20255) - usb: unbounded stack allocation in usbredir (bsc#1186012, CVE-2021-3527) qemu-4.2.1-11.28.1.src.rpm qemu-s390-4.2.1-11.28.1.x86_64.rpm qemu-s390-4.2.1-11.28.1.s390x.rpm qemu-s390-4.2.1-11.28.1.ppc64le.rpm qemu-s390-4.2.1-11.28.1.aarch64.rpm openSUSE-SLE-15.3-2021-2677 Recommended update for shim-susesigned moderate SUSE Updates openSUSE-SLE 15.3 This update for shim-susesigned fixes the following issues: - Sync with Microsoft signed shim to Thu Jul 15 08:13:26 UTC 2021. - avoid deleting the mirrored RT variables (bsc#1187696) - relax the check for import_mok_state() when Secure Boot is off. (bsc#1185261) - ignore the odd LoadOptions length (bsc#1185232) - shim-install: reset def_shim_efi to "shim.efi" if the given file doesn't exist - fix the size of rela sections for AArch64 - disable exporting vendor-dbx to MokListXRT since writing a large RT variable could crash some machines (bsc#1185261) - Avoid the potential crash when calling QueryVariableInfo in EFI 1.10 machines (bsc#1187260) - avoid buffer overflow when copying data to the MOK config table (bsc#1185232) - shim-install: instead of assuming "removable" for Azure, remove fallback.efi from \EFI\Boot and copy grub.efi/cfg to \EFI\Boot to make \EFI\Boot bootable and keep the boot option created by efibootmgr (bsc#1185464, bsc#1185961) - shim-install: always assume "removable" for Azure to avoid the endless reset loop (bsc#1185464) shim-susesigned-15.4-3.3.1.aarch64.rpm shim-susesigned-15.4-3.3.1.src.rpm openSUSE-SLE-15.3-2021-2787 Security update for go1.15 moderate SUSE Updates openSUSE-SLE 15.3 This update for go1.15 fixes the following issues: Update to go1.15.15: - go#47473 net/http: panic due to racy read of persistConn after handler panic (CVE-2021-36221 bsc#1189162) - go#47347 cmd/go: "go list -f '{{.Stale}}'" stack overflow with cyclic imports - go#47014 cmd/go: go mod vendor: open C:\Users\LICENSE: Access is denied. - go#46927 cmd/compile: register conflict between external linker and duffzero on arm64 - go#46857 runtime: ppc64x binaries randomly segfault on linux 5.13rc6 go1.15-1.15.15-1.39.1.src.rpm go1.15-1.15.15-1.39.1.x86_64.rpm go1.15-doc-1.15.15-1.39.1.x86_64.rpm go1.15-race-1.15.15-1.39.1.x86_64.rpm go1.15-1.15.15-1.39.1.s390x.rpm go1.15-doc-1.15.15-1.39.1.s390x.rpm go1.15-1.15.15-1.39.1.ppc64le.rpm go1.15-doc-1.15.15-1.39.1.ppc64le.rpm go1.15-1.15.15-1.39.1.aarch64.rpm go1.15-doc-1.15.15-1.39.1.aarch64.rpm go1.15-race-1.15.15-1.39.1.aarch64.rpm openSUSE-SLE-15.3-2021-2885 Recommended update for publicsuffix low SUSE Updates openSUSE-SLE 15.3 This update for publicsuffix fixes the following issues: - Updates the list of known/accepted domains with recent data (bsc#1189124). publicsuffix-20210804-3.6.1.noarch.rpm publicsuffix-20210804-3.6.1.src.rpm openSUSE-SLE-15.3-2021-2788 Security update for go1.16 moderate SUSE Updates openSUSE-SLE 15.3 This update for go1.16 fixes the following issues: Update to go1.16.7: - go#47473 net/http: panic due to racy read of persistConn after handler panic (CVE-2021-36221 bsc#1189162) - go#47348 cmd/go: "go list -f '{{.Stale}}'" stack overflow with cyclic imports - go#47332 time: Timer reset broken under heavy use since go1.16 timer optimizations added - go#47289 cmd/link: build error with cgo in Windows, redefinition of go.map.zero - go#47015 cmd/go: go mod vendor: open C:\Users\LICENSE: Access is denied. - go#46928 cmd/compile: register conflict between external linker and duffzero on arm64 - go#46858 runtime: ppc64x binaries randomly segfault on linux 5.13rc6 - go#46551 cmd/go: unhelpful error message when running "go install" on a replaced-but-not-required package go1.16-1.16.7-1.23.1.src.rpm go1.16-1.16.7-1.23.1.x86_64.rpm go1.16-doc-1.16.7-1.23.1.x86_64.rpm go1.16-race-1.16.7-1.23.1.x86_64.rpm go1.16-1.16.7-1.23.1.s390x.rpm go1.16-doc-1.16.7-1.23.1.s390x.rpm go1.16-1.16.7-1.23.1.ppc64le.rpm go1.16-doc-1.16.7-1.23.1.ppc64le.rpm go1.16-1.16.7-1.23.1.aarch64.rpm go1.16-doc-1.16.7-1.23.1.aarch64.rpm go1.16-race-1.16.7-1.23.1.aarch64.rpm openSUSE-SLE-15.3-2021-2689 Security update for cpio important SUSE Updates openSUSE-SLE 15.3 This update for cpio fixes the following issues: It was possible to trigger Remote code execution due to a integer overflow (CVE-2021-38185, bsc#1189206) UPDATE: This update was buggy and could lead to hangs, so it has been retracted. There will be a follow up update. cpio-2.12-3.6.1.src.rpm cpio-2.12-3.6.1.x86_64.rpm cpio-lang-2.12-3.6.1.noarch.rpm cpio-mt-2.12-3.6.1.x86_64.rpm cpio-2.12-3.6.1.s390x.rpm cpio-mt-2.12-3.6.1.s390x.rpm cpio-2.12-3.6.1.ppc64le.rpm cpio-mt-2.12-3.6.1.ppc64le.rpm cpio-2.12-3.6.1.aarch64.rpm cpio-mt-2.12-3.6.1.aarch64.rpm openSUSE-SLE-15.3-2021-2774 Security update for MozillaFirefox important SUSE Updates openSUSE-SLE 15.3 This update for MozillaFirefox fixes the following issues: Firefox Extended Support Release 78.13.0 ESR (MFSA 2021-34, bsc#1188891): - CVE-2021-29986: Race condition when resolving DNS names could have led to memory corruption - CVE-2021-29988: Memory corruption as a result of incorrect style treatment - CVE-2021-29984: Incorrect instruction reordering during JIT optimization - CVE-2021-29980: Uninitialized memory in a canvas object could have led to memory corruption - CVE-2021-29985: Use-after-free media channels - CVE-2021-29989: Memory safety bugs fixed in Firefox 91 and Firefox ESR 78.13 MozillaFirefox-78.13.0-8.49.1.src.rpm MozillaFirefox-78.13.0-8.49.1.x86_64.rpm MozillaFirefox-branding-upstream-78.13.0-8.49.1.x86_64.rpm MozillaFirefox-buildsymbols-78.13.0-8.49.1.x86_64.rpm MozillaFirefox-devel-78.13.0-8.49.1.x86_64.rpm MozillaFirefox-translations-common-78.13.0-8.49.1.x86_64.rpm MozillaFirefox-translations-other-78.13.0-8.49.1.x86_64.rpm MozillaFirefox-78.13.0-8.49.1.s390x.rpm MozillaFirefox-branding-upstream-78.13.0-8.49.1.s390x.rpm MozillaFirefox-devel-78.13.0-8.49.1.s390x.rpm MozillaFirefox-translations-common-78.13.0-8.49.1.s390x.rpm MozillaFirefox-translations-other-78.13.0-8.49.1.s390x.rpm MozillaFirefox-78.13.0-8.49.1.ppc64le.rpm MozillaFirefox-branding-upstream-78.13.0-8.49.1.ppc64le.rpm MozillaFirefox-devel-78.13.0-8.49.1.ppc64le.rpm MozillaFirefox-translations-common-78.13.0-8.49.1.ppc64le.rpm MozillaFirefox-translations-other-78.13.0-8.49.1.ppc64le.rpm MozillaFirefox-78.13.0-8.49.1.aarch64.rpm MozillaFirefox-branding-upstream-78.13.0-8.49.1.aarch64.rpm MozillaFirefox-devel-78.13.0-8.49.1.aarch64.rpm MozillaFirefox-translations-common-78.13.0-8.49.1.aarch64.rpm MozillaFirefox-translations-other-78.13.0-8.49.1.aarch64.rpm openSUSE-SLE-15.3-2021-2773 Security update for haproxy important SUSE Updates openSUSE-SLE 15.3 This update for haproxy fixes the following issues: - Fixes HAProxy vulnerabilities on H2 (bsc#1189366). haproxy-2.0.14-11.7.1.src.rpm haproxy-2.0.14-11.7.1.x86_64.rpm haproxy-2.0.14-11.7.1.s390x.rpm haproxy-2.0.14-11.7.1.ppc64le.rpm haproxy-2.0.14-11.7.1.aarch64.rpm openSUSE-SLE-15.3-2021-2835 Security update for mariadb moderate SUSE Updates openSUSE-SLE 15.3 This update for mariadb fixes the following issues: Update to version 10.2.40 [bsc#1189320]: - fixes for the following security vulnerabilities: CVE-2021-2372 and CVE-2021-2389 libmysqld-devel-10.2.40-3.43.1.x86_64.rpm libmysqld19-10.2.40-3.43.1.x86_64.rpm mariadb-10.2.40-3.43.1.src.rpm libmysqld-devel-10.2.40-3.43.1.s390x.rpm libmysqld19-10.2.40-3.43.1.s390x.rpm libmysqld-devel-10.2.40-3.43.1.ppc64le.rpm libmysqld19-10.2.40-3.43.1.ppc64le.rpm libmysqld-devel-10.2.40-3.43.1.aarch64.rpm libmysqld19-10.2.40-3.43.1.aarch64.rpm openSUSE-SLE-15.3-2021-3026 Recommended update for oracleasm moderate SUSE Updates openSUSE-SLE 15.3 This update for oracleasm fixes the following issues: - Added 4 upstream commits/patches, as requested by support (bsc#1189119): - Fix incorrectly set flag - Fix memory leak - Add 'ENXIO' handling - Tracing update oracleasm-2.0.8-19.3.2.src.rpm oracleasm-kmp-default-2.0.8_k5.3.18_59.19-19.3.2.x86_64.rpm oracleasm-kmp-preempt-2.0.8_k5.3.18_59.19-19.3.2.x86_64.rpm oracleasm-kmp-rt-2.0.8_k5.3.18_8.13-19.3.2.x86_64.rpm oracleasm-kmp-default-2.0.8_k5.3.18_59.19-19.3.2.s390x.rpm oracleasm-kmp-default-2.0.8_k5.3.18_59.19-19.3.2.ppc64le.rpm oracleasm-kmp-64kb-2.0.8_k5.3.18_59.19-19.3.2.aarch64.rpm oracleasm-kmp-default-2.0.8_k5.3.18_59.19-19.3.2.aarch64.rpm oracleasm-kmp-preempt-2.0.8_k5.3.18_59.19-19.3.2.aarch64.rpm openSUSE-SLE-15.3-2021-2938 Recommended update for openldap2 moderate SUSE Updates openSUSE-SLE 15.3 This update for openldap2 fixes the following issue: - openldap2-contrib is shipped to the Legacy Module. (bsc#1184614) libldap-2_4-2-2.4.46-9.58.1.x86_64.rpm libldap-2_4-2-32bit-2.4.46-9.58.1.x86_64.rpm libldap-data-2.4.46-9.58.1.noarch.rpm openldap2-2.4.46-9.58.1.src.rpm openldap2-2.4.46-9.58.1.x86_64.rpm openldap2-back-meta-2.4.46-9.58.1.x86_64.rpm openldap2-back-perl-2.4.46-9.58.1.x86_64.rpm openldap2-back-sock-2.4.46-9.58.1.x86_64.rpm openldap2-back-sql-2.4.46-9.58.1.x86_64.rpm openldap2-client-2.4.46-9.58.1.x86_64.rpm openldap2-contrib-2.4.46-9.58.1.x86_64.rpm openldap2-devel-2.4.46-9.58.1.x86_64.rpm openldap2-devel-32bit-2.4.46-9.58.1.x86_64.rpm openldap2-devel-static-2.4.46-9.58.1.x86_64.rpm openldap2-doc-2.4.46-9.58.1.noarch.rpm openldap2-ppolicy-check-password-1.2-9.58.1.x86_64.rpm libldap-2_4-2-2.4.46-9.58.1.s390x.rpm openldap2-2.4.46-9.58.1.s390x.rpm openldap2-back-meta-2.4.46-9.58.1.s390x.rpm openldap2-back-perl-2.4.46-9.58.1.s390x.rpm openldap2-back-sock-2.4.46-9.58.1.s390x.rpm openldap2-back-sql-2.4.46-9.58.1.s390x.rpm openldap2-client-2.4.46-9.58.1.s390x.rpm openldap2-contrib-2.4.46-9.58.1.s390x.rpm openldap2-devel-2.4.46-9.58.1.s390x.rpm openldap2-devel-static-2.4.46-9.58.1.s390x.rpm openldap2-ppolicy-check-password-1.2-9.58.1.s390x.rpm libldap-2_4-2-2.4.46-9.58.1.ppc64le.rpm openldap2-2.4.46-9.58.1.ppc64le.rpm openldap2-back-meta-2.4.46-9.58.1.ppc64le.rpm openldap2-back-perl-2.4.46-9.58.1.ppc64le.rpm openldap2-back-sock-2.4.46-9.58.1.ppc64le.rpm openldap2-back-sql-2.4.46-9.58.1.ppc64le.rpm openldap2-client-2.4.46-9.58.1.ppc64le.rpm openldap2-contrib-2.4.46-9.58.1.ppc64le.rpm openldap2-devel-2.4.46-9.58.1.ppc64le.rpm openldap2-devel-static-2.4.46-9.58.1.ppc64le.rpm openldap2-ppolicy-check-password-1.2-9.58.1.ppc64le.rpm libldap-2_4-2-2.4.46-9.58.1.aarch64.rpm openldap2-2.4.46-9.58.1.aarch64.rpm openldap2-back-meta-2.4.46-9.58.1.aarch64.rpm openldap2-back-perl-2.4.46-9.58.1.aarch64.rpm openldap2-back-sock-2.4.46-9.58.1.aarch64.rpm openldap2-back-sql-2.4.46-9.58.1.aarch64.rpm openldap2-client-2.4.46-9.58.1.aarch64.rpm openldap2-contrib-2.4.46-9.58.1.aarch64.rpm openldap2-devel-2.4.46-9.58.1.aarch64.rpm openldap2-devel-static-2.4.46-9.58.1.aarch64.rpm openldap2-ppolicy-check-password-1.2-9.58.1.aarch64.rpm openSUSE-SLE-15.3-2021-2874 Security update for MozillaThunderbird important SUSE Updates openSUSE-SLE 15.3 This update for MozillaThunderbird fixes the following issues: Update to version 78.13 (MFSA 2021-35, bsc#1188891) - CVE-2021-29986: Race condition when resolving DNS names could have led to memory corruption - CVE-2021-29988: Memory corruption as a result of incorrect style treatment - CVE-2021-29984: Incorrect instruction reordering during JIT optimization - CVE-2021-29980: Uninitialized memory in a canvas object could have led to memory corruption - CVE-2021-29985: Use-after-free media channels - CVE-2021-29989: Memory safety bugs fixed in Thunderbird 78.13 MozillaThunderbird-78.13.0-8.36.1.src.rpm MozillaThunderbird-78.13.0-8.36.1.x86_64.rpm MozillaThunderbird-translations-common-78.13.0-8.36.1.x86_64.rpm MozillaThunderbird-translations-other-78.13.0-8.36.1.x86_64.rpm MozillaThunderbird-78.13.0-8.36.1.s390x.rpm MozillaThunderbird-translations-common-78.13.0-8.36.1.s390x.rpm MozillaThunderbird-translations-other-78.13.0-8.36.1.s390x.rpm MozillaThunderbird-78.13.0-8.36.1.ppc64le.rpm MozillaThunderbird-translations-common-78.13.0-8.36.1.ppc64le.rpm MozillaThunderbird-translations-other-78.13.0-8.36.1.ppc64le.rpm MozillaThunderbird-78.13.0-8.36.1.aarch64.rpm MozillaThunderbird-translations-common-78.13.0-8.36.1.aarch64.rpm MozillaThunderbird-translations-other-78.13.0-8.36.1.aarch64.rpm openSUSE-SLE-15.3-2021-2939 Security update for mariadb moderate SUSE Updates openSUSE-SLE 15.3 This update for mariadb fixes the following issues: Update to 10.5.12 [bsc#1189320]: - fixes for the following security vulnerabilities: CVE-2021-2372 and CVE-2021-2389 libmariadbd-devel-10.5.12-3.6.1.x86_64.rpm libmariadbd19-10.5.12-3.6.1.x86_64.rpm mariadb-10.5.12-3.6.1.src.rpm mariadb-10.5.12-3.6.1.x86_64.rpm mariadb-bench-10.5.12-3.6.1.x86_64.rpm mariadb-client-10.5.12-3.6.1.x86_64.rpm mariadb-errormessages-10.5.12-3.6.1.noarch.rpm mariadb-rpm-macros-10.5.12-3.6.1.x86_64.rpm mariadb-test-10.5.12-3.6.1.x86_64.rpm mariadb-tools-10.5.12-3.6.1.x86_64.rpm libmariadbd-devel-10.5.12-3.6.1.s390x.rpm libmariadbd19-10.5.12-3.6.1.s390x.rpm mariadb-10.5.12-3.6.1.s390x.rpm mariadb-bench-10.5.12-3.6.1.s390x.rpm mariadb-client-10.5.12-3.6.1.s390x.rpm mariadb-rpm-macros-10.5.12-3.6.1.s390x.rpm mariadb-test-10.5.12-3.6.1.s390x.rpm mariadb-tools-10.5.12-3.6.1.s390x.rpm libmariadbd-devel-10.5.12-3.6.1.ppc64le.rpm libmariadbd19-10.5.12-3.6.1.ppc64le.rpm mariadb-10.5.12-3.6.1.ppc64le.rpm mariadb-bench-10.5.12-3.6.1.ppc64le.rpm mariadb-client-10.5.12-3.6.1.ppc64le.rpm mariadb-rpm-macros-10.5.12-3.6.1.ppc64le.rpm mariadb-test-10.5.12-3.6.1.ppc64le.rpm mariadb-tools-10.5.12-3.6.1.ppc64le.rpm libmariadbd-devel-10.5.12-3.6.1.aarch64.rpm libmariadbd19-10.5.12-3.6.1.aarch64.rpm mariadb-10.5.12-3.6.1.aarch64.rpm mariadb-bench-10.5.12-3.6.1.aarch64.rpm mariadb-client-10.5.12-3.6.1.aarch64.rpm mariadb-rpm-macros-10.5.12-3.6.1.aarch64.rpm mariadb-test-10.5.12-3.6.1.aarch64.rpm mariadb-tools-10.5.12-3.6.1.aarch64.rpm openSUSE-SLE-15.3-2021-2875 Security update for nodejs12 important SUSE Updates openSUSE-SLE 15.3 This update for nodejs12 fixes the following issues: Update to 12.22.5: - CVE-2021-3672/CVE-2021-22931: Improper handling of untypical characters in domain names (bsc#1189370, bsc#1188881) - CVE-2021-22940: Use after free on close http2 on stream canceling (bsc#1189368) - CVE-2021-22939: Incomplete validation of rejectUnauthorized parameter (bsc#1189369) - CVE-2021-22930: http2: fixes use after free on close http2 on stream canceling (bsc#1188917) nodejs12-12.22.5-4.19.1.src.rpm nodejs12-12.22.5-4.19.1.x86_64.rpm nodejs12-devel-12.22.5-4.19.1.x86_64.rpm nodejs12-docs-12.22.5-4.19.1.noarch.rpm npm12-12.22.5-4.19.1.x86_64.rpm nodejs12-12.22.5-4.19.1.s390x.rpm nodejs12-devel-12.22.5-4.19.1.s390x.rpm npm12-12.22.5-4.19.1.s390x.rpm nodejs12-12.22.5-4.19.1.ppc64le.rpm nodejs12-devel-12.22.5-4.19.1.ppc64le.rpm npm12-12.22.5-4.19.1.ppc64le.rpm nodejs12-12.22.5-4.19.1.aarch64.rpm nodejs12-devel-12.22.5-4.19.1.aarch64.rpm npm12-12.22.5-4.19.1.aarch64.rpm openSUSE-SLE-15.3-2021-2954 Security update for apache2 important SUSE Updates openSUSE-SLE 15.3 This update for apache2 fixes the following issues: - CVE-2021-33193: Fixed request splitting via HTTP/2 method injection and mod_proxy (bsc#1189387). apache2-2.4.43-3.25.1.src.rpm apache2-2.4.43-3.25.1.x86_64.rpm apache2-devel-2.4.43-3.25.1.x86_64.rpm apache2-doc-2.4.43-3.25.1.noarch.rpm apache2-event-2.4.43-3.25.1.x86_64.rpm apache2-example-pages-2.4.43-3.25.1.x86_64.rpm apache2-prefork-2.4.43-3.25.1.x86_64.rpm apache2-utils-2.4.43-3.25.1.x86_64.rpm apache2-worker-2.4.43-3.25.1.x86_64.rpm apache2-2.4.43-3.25.1.s390x.rpm apache2-devel-2.4.43-3.25.1.s390x.rpm apache2-event-2.4.43-3.25.1.s390x.rpm apache2-example-pages-2.4.43-3.25.1.s390x.rpm apache2-prefork-2.4.43-3.25.1.s390x.rpm apache2-utils-2.4.43-3.25.1.s390x.rpm apache2-worker-2.4.43-3.25.1.s390x.rpm apache2-2.4.43-3.25.1.ppc64le.rpm apache2-devel-2.4.43-3.25.1.ppc64le.rpm apache2-event-2.4.43-3.25.1.ppc64le.rpm apache2-example-pages-2.4.43-3.25.1.ppc64le.rpm apache2-prefork-2.4.43-3.25.1.ppc64le.rpm apache2-utils-2.4.43-3.25.1.ppc64le.rpm apache2-worker-2.4.43-3.25.1.ppc64le.rpm apache2-2.4.43-3.25.1.aarch64.rpm apache2-devel-2.4.43-3.25.1.aarch64.rpm apache2-event-2.4.43-3.25.1.aarch64.rpm apache2-example-pages-2.4.43-3.25.1.aarch64.rpm apache2-prefork-2.4.43-3.25.1.aarch64.rpm apache2-utils-2.4.43-3.25.1.aarch64.rpm apache2-worker-2.4.43-3.25.1.aarch64.rpm openSUSE-SLE-15.3-2021-3133 Recommended update for grub2, efibootmgr moderate SUSE Updates openSUSE-SLE 15.3 This update for grub2, efibootmgr provides the following fixes: - Ship package grub2-arm64-efi and the required efibootmgr also to ppc64le, s390x and x86_64 (bsc#1186565) - Fix error gfxterm isn't found with multiple terminals (bsc#1187565) - Fix ocasional boot failure after kdump procedure when using XFS (bsc#1186975) efibootmgr-14-4.3.2.src.rpm efibootmgr-14-4.3.2.x86_64.rpm efibootmgr-14-4.3.2.s390x.rpm efibootmgr-14-4.3.2.ppc64le.rpm efibootmgr-14-4.3.2.aarch64.rpm openSUSE-SLE-15.3-2021-2763 Recommended update for cpio critical SUSE Updates openSUSE-SLE 15.3 This update for cpio fixes the following issues: - A regression in last update would cause builds to hang on various architectures(bsc#1189465) cpio-2.12-3.6.2.src.rpm cpio-2.12-3.6.2.x86_64.rpm cpio-lang-2.12-3.6.2.noarch.rpm cpio-mt-2.12-3.6.2.x86_64.rpm cpio-2.12-3.6.2.s390x.rpm cpio-mt-2.12-3.6.2.s390x.rpm cpio-2.12-3.6.2.ppc64le.rpm cpio-mt-2.12-3.6.2.ppc64le.rpm cpio-2.12-3.6.2.aarch64.rpm cpio-mt-2.12-3.6.2.aarch64.rpm openSUSE-SLE-15.3-2021-2953 Security update for nodejs10 moderate SUSE Updates openSUSE-SLE 15.3 This update for nodejs10 fixes the following issues: - CVE-2021-3672: Fixed missing input validation on hostnames (bsc#1188881). - CVE-2021-22930: Fixed use after free on close http2 on stream canceling (bsc#1188917). - CVE-2021-22939: Fixed incomplete validation of rejectUnauthorized parameter (bsc#1189369). - CVE-2021-22931: Fixed improper handling of untypical characters in domain names (bsc#1189370). nodejs10-10.24.1-1.39.2.src.rpm nodejs10-10.24.1-1.39.2.x86_64.rpm nodejs10-devel-10.24.1-1.39.2.x86_64.rpm nodejs10-docs-10.24.1-1.39.2.noarch.rpm npm10-10.24.1-1.39.2.x86_64.rpm nodejs10-10.24.1-1.39.2.s390x.rpm nodejs10-devel-10.24.1-1.39.2.s390x.rpm npm10-10.24.1-1.39.2.s390x.rpm nodejs10-10.24.1-1.39.2.ppc64le.rpm nodejs10-devel-10.24.1-1.39.2.ppc64le.rpm npm10-10.24.1-1.39.2.ppc64le.rpm nodejs10-10.24.1-1.39.2.aarch64.rpm nodejs10-devel-10.24.1-1.39.2.aarch64.rpm npm10-10.24.1-1.39.2.aarch64.rpm openSUSE-SLE-15.3-2021-3224 Recommended update for shim-susesigned moderate SUSE Updates openSUSE-SLE 15.3 This update for shim-susesigned fixes the following issues: Sync with Microsoft signed shim to Thu Jul 15 08:13:26 UTC 2021. This update addresses the "susesigned" shim component. shim was updated to 15.4 (bsc#1182057) - console: Move the countdown function to console.c - fallback: show a countdown menu before reset - MOK: Fix the missing vendor cert in MokListRT - mok: fix the mirroring of RT variables - Add the license change statement for errlog.c and mok.c - Remove a couple of incorrect license claims. - MokManager: Use CompareMem on MokListNode.Type instead of CompareGuid - Make EFI variable copying fatal only on secureboot enabled systems - Remove call to TPM2 get_event_log - tpm: Fix off-by-one error when calculating event size - tpm: Define EFI_VARIABLE_DATA_TREE as packed - tpm: Don't log duplicate identical events - VLogError(): Avoid NULL pointer dereferences in (V)Sprint calls - OpenSSL: always provide OBJ_create() with name strings. - translate_slashes(): don't write to string literals - Fix a use of strlen() instead of Strlen() - shim: Update EFI_LOADED_IMAGE with the second stage loader file path - tpm: Include information about PE/COFF images in the TPM Event Log - Fix a broken tpm type - All newly released openSUSE kernels enable kernel lockdown and signature verification, so there is no need to add the prompt anymore. - Fix the NULL pointer dereference in AuthenticodeVerify() - Remove the build ID to make the binary reproducible when building with AArch64 container - Prevent the build id being added to the binary. That can cause issues with the signature - Allocate MOK config table as BootServicesData to avoid the error message from linux kernel - Handle ignore_db and user_insecure_mode correctly (bsc#1185441) - Relax the maximum variable size check for u-boot - Relax the check for import_mok_state() when Secure Boot is off - Relax the check for the LoadOptions length - Fix the size of rela* sections for AArch64 - Disable exporting vendor-dbx to MokListXRT - Don't call QueryVariableInfo() on EFI 1.10 machines - Avoid buffer overflow when copying the MOK config table - Avoid deleting the mirrored RT variables - Update to 15.3 for SBAT support (bsc#1182057) - Generate vender-specific SBAT metadata - Rename the SBAT variable and fix the self-check of SBAT - Split the keys in vendor-dbx.bin to vendor-dbx-sles and vendor-dbx-opensuse for shim-sles and shim-opensuse to reduce the size of MokListXRT (bsc#1185261) - shim-install: reset def_shim_efi to "shim.efi" if the given file doesn't exist - shim-install: instead of assuming "removable" for Azure, remove fallback.efi from \EFI\Boot and copy grub.efi/cfg to \EFI\Boot to make \EFI\Boot bootable and keep the boot option created by efibootmgr (bsc#1185464, bsc#1185961) - shim-install: always assume "removable" for Azure to avoid the endless reset loop (bsc#1185464) - shim-install: Support changing default shim efi binary in /usr/etc/default/shim and /etc/default/shim (bsc#1177315) - Update dbx-cert.tar.xz and vendor-dbx.bin to block the following sign keys: + SLES-UEFI-SIGN-Certificate-2020-07.crt + openSUSE-UEFI-SIGN-Certificate-2020-07.crt shim-susesigned-15.4-3.10.1.src.rpm shim-susesigned-15.4-3.10.1.x86_64.rpm openSUSE-SLE-15.3-2021-2819 Recommended update for ceph moderate SUSE Updates openSUSE-SLE 15.3 This update for ceph fixes the following issues: - Update to 14.2.22-404-gf74e15c2e55: - Fix for an issue when scrub is not rescheduling. (bsc#1187584) - Update to 14.2.22-403-g54cdaf6e510: - Fixed and isshe when dashboard shows partially deleted RBDs. (bsc#1175086) - Look for plain entries in non-ascii plain namespace too. (bsc#1184517) - Fix monitoring menu item in downstream branding ceph-14.2.22.404+gf74e15c2e55-3.69.2.src.rpm ceph-dashboard-e2e-14.2.22.404+gf74e15c2e55-3.69.2.noarch.rpm ceph-mgr-ssh-14.2.22.404+gf74e15c2e55-3.69.2.noarch.rpm openSUSE-SLE-15.3-2021-2940 Security update for python39 important SUSE Updates openSUSE-SLE 15.3 This update for python39 fixes the following issues: - CVE-2021-29921: Fixed improper input validation of octal string IP addresses (bsc#1185706). - Use versioned python-Sphinx to avoid dependency on other version of Python (bsc#1183858). - Stop providing "python" symbol (bsc#1185588), which means python2 currently. python39-3.9.6-4.3.4.src.rpm python39-3.9.6-4.3.4.x86_64.rpm python39-32bit-3.9.6-4.3.4.x86_64.rpm python39-curses-3.9.6-4.3.4.x86_64.rpm python39-dbm-3.9.6-4.3.4.x86_64.rpm python39-idle-3.9.6-4.3.4.x86_64.rpm python39-tk-3.9.6-4.3.4.x86_64.rpm python39-3.9.6-4.3.4.s390x.rpm python39-curses-3.9.6-4.3.4.s390x.rpm python39-dbm-3.9.6-4.3.4.s390x.rpm python39-idle-3.9.6-4.3.4.s390x.rpm python39-tk-3.9.6-4.3.4.s390x.rpm python39-3.9.6-4.3.4.ppc64le.rpm python39-curses-3.9.6-4.3.4.ppc64le.rpm python39-dbm-3.9.6-4.3.4.ppc64le.rpm python39-idle-3.9.6-4.3.4.ppc64le.rpm python39-tk-3.9.6-4.3.4.ppc64le.rpm python39-3.9.6-4.3.4.aarch64.rpm python39-curses-3.9.6-4.3.4.aarch64.rpm python39-dbm-3.9.6-4.3.4.aarch64.rpm python39-idle-3.9.6-4.3.4.aarch64.rpm python39-tk-3.9.6-4.3.4.aarch64.rpm openSUSE-SLE-15.3-2021-2861 Security update for spectre-meltdown-checker moderate SUSE Updates openSUSE-SLE 15.3 This update for spectre-meltdown-checker fixes the following issues: spectre-meltdown-checker was updated to version 0.44 (bsc#1189477) - feat: add support for SRBDS related vulnerabilities - feat: add zstd kernel decompression (#370) - enh: arm: add experimental support for binary arm images - enh: rsb filling: no longer need the 'strings' tool to check for kernel support in live mode - fix: fwdb: remove Intel extract tempdir on exit - fix: has_vmm: ignore kernel threads when looking for a hypervisor (fixes #278) - fix: fwdb: use the commit date as the intel fwdb version - fix: fwdb: update Intel's repository URL - fix: arm64: CVE-2017-5753: kernels 4.19+ use a different nospec macro - fix: on CPU parse info under FreeBSD - chore: github: add check run on pull requests - chore: fwdb: update to v165.20201021+i20200616 spectre-meltdown-checker-0.44-3.6.1.src.rpm spectre-meltdown-checker-0.44-3.6.1.x86_64.rpm openSUSE-SLE-15.3-2021-2984 Recommended update for crmsh moderate SUSE Updates openSUSE-SLE 15.3 This update for crmsh fixes the following issues: - Fix for the documentation: Note that resource tracing is only supported by OCF resource agents. (bsc#1188966) - Development for 'ui_context': Add info when spell-corrections happen. - Fix for 'parse': Should still be able to show the empty property if it already exists. (bsc#1188290) crmsh-4.3.1+20210811.2a30e37e-5.62.1.noarch.rpm crmsh-4.3.1+20210811.2a30e37e-5.62.1.src.rpm crmsh-scripts-4.3.1+20210811.2a30e37e-5.62.1.noarch.rpm crmsh-test-4.3.1+20210811.2a30e37e-5.62.1.noarch.rpm openSUSE-SLE-15.3-2021-2780 Recommended update for cpio critical SUSE Updates openSUSE-SLE 15.3 This update for cpio fixes the following issues: - A regression in the previous update could lead to crashes (bsc#1189465) cpio-2.12-3.9.1.src.rpm cpio-2.12-3.9.1.x86_64.rpm cpio-lang-2.12-3.9.1.noarch.rpm cpio-mt-2.12-3.9.1.x86_64.rpm cpio-2.12-3.9.1.s390x.rpm cpio-mt-2.12-3.9.1.s390x.rpm cpio-2.12-3.9.1.ppc64le.rpm cpio-mt-2.12-3.9.1.ppc64le.rpm cpio-2.12-3.9.1.aarch64.rpm cpio-mt-2.12-3.9.1.aarch64.rpm openSUSE-SLE-15.3-2021-2827 Security update for openssl-1_0_0 important SUSE Updates openSUSE-SLE 15.3 This update for openssl-1_0_0 fixes the following issues: - CVE-2021-3712: a bug in the code for printing certificate details could lead to a buffer overrun that a malicious actor could exploit to crash the application, causing a denial-of-service attack. [bsc#1189521] libopenssl-1_0_0-devel-1.0.2p-3.40.2.x86_64.rpm libopenssl-1_0_0-devel-32bit-1.0.2p-3.40.2.x86_64.rpm libopenssl10-1.0.2p-3.40.2.x86_64.rpm libopenssl1_0_0-1.0.2p-3.40.2.x86_64.rpm libopenssl1_0_0-32bit-1.0.2p-3.40.2.x86_64.rpm libopenssl1_0_0-hmac-1.0.2p-3.40.2.x86_64.rpm libopenssl1_0_0-hmac-32bit-1.0.2p-3.40.2.x86_64.rpm libopenssl1_0_0-steam-1.0.2p-3.40.2.x86_64.rpm libopenssl1_0_0-steam-32bit-1.0.2p-3.40.2.x86_64.rpm openssl-1_0_0-1.0.2p-3.40.2.src.rpm openssl-1_0_0-1.0.2p-3.40.2.x86_64.rpm openssl-1_0_0-cavs-1.0.2p-3.40.2.x86_64.rpm openssl-1_0_0-doc-1.0.2p-3.40.2.noarch.rpm libopenssl-1_0_0-devel-1.0.2p-3.40.2.s390x.rpm libopenssl10-1.0.2p-3.40.2.s390x.rpm libopenssl1_0_0-1.0.2p-3.40.2.s390x.rpm libopenssl1_0_0-hmac-1.0.2p-3.40.2.s390x.rpm libopenssl1_0_0-steam-1.0.2p-3.40.2.s390x.rpm openssl-1_0_0-1.0.2p-3.40.2.s390x.rpm openssl-1_0_0-cavs-1.0.2p-3.40.2.s390x.rpm libopenssl-1_0_0-devel-1.0.2p-3.40.2.ppc64le.rpm libopenssl10-1.0.2p-3.40.2.ppc64le.rpm libopenssl1_0_0-1.0.2p-3.40.2.ppc64le.rpm libopenssl1_0_0-hmac-1.0.2p-3.40.2.ppc64le.rpm libopenssl1_0_0-steam-1.0.2p-3.40.2.ppc64le.rpm openssl-1_0_0-1.0.2p-3.40.2.ppc64le.rpm openssl-1_0_0-cavs-1.0.2p-3.40.2.ppc64le.rpm libopenssl-1_0_0-devel-1.0.2p-3.40.2.aarch64.rpm libopenssl10-1.0.2p-3.40.2.aarch64.rpm libopenssl1_0_0-1.0.2p-3.40.2.aarch64.rpm libopenssl1_0_0-hmac-1.0.2p-3.40.2.aarch64.rpm libopenssl1_0_0-steam-1.0.2p-3.40.2.aarch64.rpm openssl-1_0_0-1.0.2p-3.40.2.aarch64.rpm openssl-1_0_0-cavs-1.0.2p-3.40.2.aarch64.rpm openSUSE-SLE-15.3-2021-2830 Security update for openssl-1_1 important SUSE Updates openSUSE-SLE 15.3 This update for openssl-1_1 fixes the following security issues: - CVE-2021-3711: A bug in the implementation of the SM2 decryption code could lead to buffer overflows. [bsc#1189520] - CVE-2021-3712: a bug in the code for printing certificate details could lead to a buffer overrun that a malicious actor could exploit to crash the application, causing a denial-of-service attack. [bsc#1189521] libopenssl-1_1-devel-1.1.1d-11.27.1.x86_64.rpm libopenssl-1_1-devel-32bit-1.1.1d-11.27.1.x86_64.rpm libopenssl1_1-1.1.1d-11.27.1.x86_64.rpm libopenssl1_1-32bit-1.1.1d-11.27.1.x86_64.rpm libopenssl1_1-hmac-1.1.1d-11.27.1.x86_64.rpm libopenssl1_1-hmac-32bit-1.1.1d-11.27.1.x86_64.rpm openssl-1_1-1.1.1d-11.27.1.src.rpm openssl-1_1-1.1.1d-11.27.1.x86_64.rpm openssl-1_1-doc-1.1.1d-11.27.1.noarch.rpm libopenssl-1_1-devel-1.1.1d-11.27.1.s390x.rpm libopenssl1_1-1.1.1d-11.27.1.s390x.rpm libopenssl1_1-hmac-1.1.1d-11.27.1.s390x.rpm openssl-1_1-1.1.1d-11.27.1.s390x.rpm libopenssl-1_1-devel-1.1.1d-11.27.1.ppc64le.rpm libopenssl1_1-1.1.1d-11.27.1.ppc64le.rpm libopenssl1_1-hmac-1.1.1d-11.27.1.ppc64le.rpm openssl-1_1-1.1.1d-11.27.1.ppc64le.rpm libopenssl-1_1-devel-1.1.1d-11.27.1.aarch64.rpm libopenssl1_1-1.1.1d-11.27.1.aarch64.rpm libopenssl1_1-hmac-1.1.1d-11.27.1.aarch64.rpm openssl-1_1-1.1.1d-11.27.1.aarch64.rpm openSUSE-SLE-15.3-2021-2941 Security update for sssd important SUSE Updates openSUSE-SLE 15.3 This update for sssd fixes the following issues: - CVE-2021-3621: Fixed shell command injection in sssctl via the logs-fetch and cache-expire subcommands (bsc#1189492). - Add LDAPS support for the AD provider (bsc#1183735). - Improve logs to record the reason why internal watchdog terminates a process (bsc#1187120). - Fix watchdog not terminating tasks (bsc#1187120). libipa_hbac-devel-1.16.1-23.11.1.x86_64.rpm libipa_hbac0-1.16.1-23.11.1.x86_64.rpm libnfsidmap-sss-1.16.1-23.11.1.x86_64.rpm libsss_certmap-devel-1.16.1-23.11.1.x86_64.rpm libsss_certmap0-1.16.1-23.11.1.x86_64.rpm libsss_idmap-devel-1.16.1-23.11.1.x86_64.rpm libsss_idmap0-1.16.1-23.11.1.x86_64.rpm libsss_nss_idmap-devel-1.16.1-23.11.1.x86_64.rpm libsss_nss_idmap0-1.16.1-23.11.1.x86_64.rpm libsss_simpleifp-devel-1.16.1-23.11.1.x86_64.rpm libsss_simpleifp0-1.16.1-23.11.1.x86_64.rpm python3-ipa_hbac-1.16.1-23.11.1.x86_64.rpm python3-sss-murmur-1.16.1-23.11.1.x86_64.rpm python3-sss_nss_idmap-1.16.1-23.11.1.x86_64.rpm python3-sssd-config-1.16.1-23.11.1.x86_64.rpm sssd-1.16.1-23.11.1.src.rpm sssd-1.16.1-23.11.1.x86_64.rpm sssd-ad-1.16.1-23.11.1.x86_64.rpm sssd-common-1.16.1-23.11.1.x86_64.rpm sssd-dbus-1.16.1-23.11.1.x86_64.rpm sssd-ipa-1.16.1-23.11.1.x86_64.rpm sssd-krb5-1.16.1-23.11.1.x86_64.rpm sssd-krb5-common-1.16.1-23.11.1.x86_64.rpm sssd-ldap-1.16.1-23.11.1.x86_64.rpm sssd-proxy-1.16.1-23.11.1.x86_64.rpm sssd-tools-1.16.1-23.11.1.x86_64.rpm sssd-wbclient-1.16.1-23.11.1.x86_64.rpm sssd-wbclient-devel-1.16.1-23.11.1.x86_64.rpm sssd-winbind-idmap-1.16.1-23.11.1.x86_64.rpm libipa_hbac-devel-1.16.1-23.11.1.s390x.rpm libipa_hbac0-1.16.1-23.11.1.s390x.rpm libnfsidmap-sss-1.16.1-23.11.1.s390x.rpm libsss_certmap-devel-1.16.1-23.11.1.s390x.rpm libsss_certmap0-1.16.1-23.11.1.s390x.rpm libsss_idmap-devel-1.16.1-23.11.1.s390x.rpm libsss_idmap0-1.16.1-23.11.1.s390x.rpm libsss_nss_idmap-devel-1.16.1-23.11.1.s390x.rpm libsss_nss_idmap0-1.16.1-23.11.1.s390x.rpm libsss_simpleifp-devel-1.16.1-23.11.1.s390x.rpm libsss_simpleifp0-1.16.1-23.11.1.s390x.rpm python3-ipa_hbac-1.16.1-23.11.1.s390x.rpm python3-sss-murmur-1.16.1-23.11.1.s390x.rpm python3-sss_nss_idmap-1.16.1-23.11.1.s390x.rpm python3-sssd-config-1.16.1-23.11.1.s390x.rpm sssd-1.16.1-23.11.1.s390x.rpm sssd-ad-1.16.1-23.11.1.s390x.rpm sssd-common-1.16.1-23.11.1.s390x.rpm sssd-dbus-1.16.1-23.11.1.s390x.rpm sssd-ipa-1.16.1-23.11.1.s390x.rpm sssd-krb5-1.16.1-23.11.1.s390x.rpm sssd-krb5-common-1.16.1-23.11.1.s390x.rpm sssd-ldap-1.16.1-23.11.1.s390x.rpm sssd-proxy-1.16.1-23.11.1.s390x.rpm sssd-tools-1.16.1-23.11.1.s390x.rpm sssd-wbclient-1.16.1-23.11.1.s390x.rpm sssd-wbclient-devel-1.16.1-23.11.1.s390x.rpm sssd-winbind-idmap-1.16.1-23.11.1.s390x.rpm libipa_hbac-devel-1.16.1-23.11.1.ppc64le.rpm libipa_hbac0-1.16.1-23.11.1.ppc64le.rpm libnfsidmap-sss-1.16.1-23.11.1.ppc64le.rpm libsss_certmap-devel-1.16.1-23.11.1.ppc64le.rpm libsss_certmap0-1.16.1-23.11.1.ppc64le.rpm libsss_idmap-devel-1.16.1-23.11.1.ppc64le.rpm libsss_idmap0-1.16.1-23.11.1.ppc64le.rpm libsss_nss_idmap-devel-1.16.1-23.11.1.ppc64le.rpm libsss_nss_idmap0-1.16.1-23.11.1.ppc64le.rpm libsss_simpleifp-devel-1.16.1-23.11.1.ppc64le.rpm libsss_simpleifp0-1.16.1-23.11.1.ppc64le.rpm python3-ipa_hbac-1.16.1-23.11.1.ppc64le.rpm python3-sss-murmur-1.16.1-23.11.1.ppc64le.rpm python3-sss_nss_idmap-1.16.1-23.11.1.ppc64le.rpm python3-sssd-config-1.16.1-23.11.1.ppc64le.rpm sssd-1.16.1-23.11.1.ppc64le.rpm sssd-ad-1.16.1-23.11.1.ppc64le.rpm sssd-common-1.16.1-23.11.1.ppc64le.rpm sssd-dbus-1.16.1-23.11.1.ppc64le.rpm sssd-ipa-1.16.1-23.11.1.ppc64le.rpm sssd-krb5-1.16.1-23.11.1.ppc64le.rpm sssd-krb5-common-1.16.1-23.11.1.ppc64le.rpm sssd-ldap-1.16.1-23.11.1.ppc64le.rpm sssd-proxy-1.16.1-23.11.1.ppc64le.rpm sssd-tools-1.16.1-23.11.1.ppc64le.rpm sssd-wbclient-1.16.1-23.11.1.ppc64le.rpm sssd-wbclient-devel-1.16.1-23.11.1.ppc64le.rpm sssd-winbind-idmap-1.16.1-23.11.1.ppc64le.rpm libipa_hbac-devel-1.16.1-23.11.1.aarch64.rpm libipa_hbac0-1.16.1-23.11.1.aarch64.rpm libnfsidmap-sss-1.16.1-23.11.1.aarch64.rpm libsss_certmap-devel-1.16.1-23.11.1.aarch64.rpm libsss_certmap0-1.16.1-23.11.1.aarch64.rpm libsss_idmap-devel-1.16.1-23.11.1.aarch64.rpm libsss_idmap0-1.16.1-23.11.1.aarch64.rpm libsss_nss_idmap-devel-1.16.1-23.11.1.aarch64.rpm libsss_nss_idmap0-1.16.1-23.11.1.aarch64.rpm libsss_simpleifp-devel-1.16.1-23.11.1.aarch64.rpm libsss_simpleifp0-1.16.1-23.11.1.aarch64.rpm python3-ipa_hbac-1.16.1-23.11.1.aarch64.rpm python3-sss-murmur-1.16.1-23.11.1.aarch64.rpm python3-sss_nss_idmap-1.16.1-23.11.1.aarch64.rpm python3-sssd-config-1.16.1-23.11.1.aarch64.rpm sssd-1.16.1-23.11.1.aarch64.rpm sssd-ad-1.16.1-23.11.1.aarch64.rpm sssd-common-1.16.1-23.11.1.aarch64.rpm sssd-dbus-1.16.1-23.11.1.aarch64.rpm sssd-ipa-1.16.1-23.11.1.aarch64.rpm sssd-krb5-1.16.1-23.11.1.aarch64.rpm sssd-krb5-common-1.16.1-23.11.1.aarch64.rpm sssd-ldap-1.16.1-23.11.1.aarch64.rpm sssd-proxy-1.16.1-23.11.1.aarch64.rpm sssd-tools-1.16.1-23.11.1.aarch64.rpm sssd-wbclient-1.16.1-23.11.1.aarch64.rpm sssd-wbclient-devel-1.16.1-23.11.1.aarch64.rpm sssd-winbind-idmap-1.16.1-23.11.1.aarch64.rpm openSUSE-SLE-15.3-2021-2934 Recommended update for SAPHanaSR-ScaleOut important SUSE Updates openSUSE-SLE 15.3 This update for SAPHanaSR-ScaleOut fixes the following issues: - change version to 0.180.1 - Extent the SAP HANA ressource agents from single replication automation to multi replication automation (jsc#SLE-17452, jsc#SLE-20081) - The resource start and stop timeout is now configurable by increasing the timeout for the action 'start' and/or 'stop' in the cluster. (bsc#1182545) - Improve handling of return codes in 'saphana_stopSystem' and 'saphana_stop' function. (bsc#1182115) - Integrate man pages back to the base package SAPHanaSR-ScaleOut. - Fixed an issue when HANA failover returns and empty site name. (bsc#1173581) - Add SAPHanaSR-call-monitor - Fixed an issue when HANA is configured to have only one master name server, but no additional master name server candidates, there may be the situation, where the master name server died and so the landscape has no active name server anymore. - Manual page updates: SAPHanaSR-ScaleOut.7 (bsc#1144442) SAPHanaSR-showAttr.8 (bsc#1144312) and others SAPHanaSR-ScaleOut-0.180.1-3.19.1.noarch.rpm SAPHanaSR-ScaleOut-0.180.1-3.19.1.src.rpm SAPHanaSR-ScaleOut-doc-0.180.1-3.19.1.noarch.rpm openSUSE-SLE-15.3-2021-3131 Recommended update for xorg-x11-fonts moderate SUSE Updates openSUSE-SLE 15.3 This update for xorg-x11-fonts fixes the following issues: - Convert the 'helv*.otb' and 'cour*.otb' files in a different way, generating all available font sizes. (bsc#1174895) - As part of the above fix, don't remove the "Regular" suffix from the full name of fonts in 'convertfont.py' This update for fonttosfnt fixes the following issues: - Fix more metric calculations (bsc#1174895): fonttosfnt-1.1.0-3.3.1.src.rpm fonttosfnt-1.1.0-3.3.1.x86_64.rpm xorg-x11-fonts-7.6-13.6.1.noarch.rpm xorg-x11-fonts-7.6-13.6.1.src.rpm xorg-x11-fonts-converted-7.6-13.6.5.noarch.rpm xorg-x11-fonts-converted-7.6-13.6.5.src.rpm xorg-x11-fonts-core-7.6-13.6.1.noarch.rpm xorg-x11-fonts-legacy-7.6-13.6.1.noarch.rpm fonttosfnt-1.1.0-3.3.1.s390x.rpm fonttosfnt-1.1.0-3.3.1.ppc64le.rpm fonttosfnt-1.1.0-3.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-3029 Recommended update for sapconf moderate SUSE Updates openSUSE-SLE 15.3 This update for sapconf fixes the following issues: - Adapt the activity detection of saptune to the upcoming saptune version 3. (bsc#1189496) sapconf-5.0.3-7.18.1.noarch.rpm sapconf-5.0.3-7.18.1.src.rpm openSUSE-SLE-15.3-2021-3017 Security update for wireshark moderate SUSE Updates openSUSE-SLE 15.3 This update for wireshark fixes the following issues: - Update to Wireshark 3.4.7 - CVE-2021-22235: Fixed DNP dissector crash (bsc#1188375). libwireshark14-3.4.7-3.59.1.x86_64.rpm libwiretap11-3.4.7-3.59.1.x86_64.rpm libwsutil12-3.4.7-3.59.1.x86_64.rpm wireshark-3.4.7-3.59.1.src.rpm wireshark-3.4.7-3.59.1.x86_64.rpm wireshark-devel-3.4.7-3.59.1.x86_64.rpm wireshark-ui-qt-3.4.7-3.59.1.x86_64.rpm libwireshark14-3.4.7-3.59.1.s390x.rpm libwiretap11-3.4.7-3.59.1.s390x.rpm libwsutil12-3.4.7-3.59.1.s390x.rpm wireshark-3.4.7-3.59.1.s390x.rpm wireshark-devel-3.4.7-3.59.1.s390x.rpm wireshark-ui-qt-3.4.7-3.59.1.s390x.rpm libwireshark14-3.4.7-3.59.1.ppc64le.rpm libwiretap11-3.4.7-3.59.1.ppc64le.rpm libwsutil12-3.4.7-3.59.1.ppc64le.rpm wireshark-3.4.7-3.59.1.ppc64le.rpm wireshark-devel-3.4.7-3.59.1.ppc64le.rpm wireshark-ui-qt-3.4.7-3.59.1.ppc64le.rpm libwireshark14-3.4.7-3.59.1.aarch64.rpm libwiretap11-3.4.7-3.59.1.aarch64.rpm libwsutil12-3.4.7-3.59.1.aarch64.rpm wireshark-3.4.7-3.59.1.aarch64.rpm wireshark-devel-3.4.7-3.59.1.aarch64.rpm wireshark-ui-qt-3.4.7-3.59.1.aarch64.rpm openSUSE-SLE-15.3-2021-3132 Recommended update for google-guest-oslogin moderate SUSE Updates openSUSE-SLE 15.3 This update for google-guest-oslogin contains the following fixes: - Update to version 20210728.00 (bsc#1188992, bsc#1189041) * JSON object cleanup (#65) - Update to version 20210707.00 * throw exceptions in cache_refresh (#64) - from version 20210702.00 * Use IP address for calling the metadata server. (#63) - Update to version 20210618.00 * flush each group member write (#62) google-guest-oslogin-20210728.00-1.21.1.src.rpm google-guest-oslogin-20210728.00-1.21.1.x86_64.rpm google-guest-oslogin-20210728.00-1.21.1.s390x.rpm google-guest-oslogin-20210728.00-1.21.1.ppc64le.rpm google-guest-oslogin-20210728.00-1.21.1.aarch64.rpm openSUSE-SLE-15.3-2021-2993 Recommended update for gcc moderate SUSE Updates openSUSE-SLE 15.3 This update for gcc fixes the following issues: - With gcc-PIE add -pie even when -fPIC is specified but we are not linking a shared library. [bsc#1185348] - Fix postun of gcc-go alternative. cpp-7-3.9.1.x86_64.rpm gcc-32bit-7-3.9.1.x86_64.rpm gcc-7-3.9.1.src.rpm gcc-7-3.9.1.x86_64.rpm gcc-PIE-7-3.9.1.x86_64.rpm gcc-ada-32bit-7-3.9.1.x86_64.rpm gcc-ada-7-3.9.1.x86_64.rpm gcc-c++-32bit-7-3.9.1.x86_64.rpm gcc-c++-7-3.9.1.x86_64.rpm gcc-fortran-32bit-7-3.9.1.x86_64.rpm gcc-fortran-7-3.9.1.x86_64.rpm gcc-go-32bit-7-3.9.1.x86_64.rpm gcc-go-7-3.9.1.x86_64.rpm gcc-info-7-3.9.1.x86_64.rpm gcc-locale-7-3.9.1.x86_64.rpm gcc-obj-c++-7-3.9.1.x86_64.rpm gcc-objc-32bit-7-3.9.1.x86_64.rpm gcc-objc-7-3.9.1.x86_64.rpm libstdc++-devel-32bit-7-3.9.1.x86_64.rpm libstdc++-devel-7-3.9.1.x86_64.rpm cpp-7-3.9.1.s390x.rpm gcc-32bit-7-3.9.1.s390x.rpm gcc-7-3.9.1.s390x.rpm gcc-PIE-7-3.9.1.s390x.rpm gcc-ada-32bit-7-3.9.1.s390x.rpm gcc-ada-7-3.9.1.s390x.rpm gcc-c++-32bit-7-3.9.1.s390x.rpm gcc-c++-7-3.9.1.s390x.rpm gcc-fortran-32bit-7-3.9.1.s390x.rpm gcc-fortran-7-3.9.1.s390x.rpm gcc-go-32bit-7-3.9.1.s390x.rpm gcc-go-7-3.9.1.s390x.rpm gcc-info-7-3.9.1.s390x.rpm gcc-locale-7-3.9.1.s390x.rpm gcc-obj-c++-7-3.9.1.s390x.rpm gcc-objc-32bit-7-3.9.1.s390x.rpm gcc-objc-7-3.9.1.s390x.rpm libstdc++-devel-32bit-7-3.9.1.s390x.rpm libstdc++-devel-7-3.9.1.s390x.rpm cpp-7-3.9.1.ppc64le.rpm gcc-7-3.9.1.ppc64le.rpm gcc-PIE-7-3.9.1.ppc64le.rpm gcc-ada-7-3.9.1.ppc64le.rpm gcc-c++-7-3.9.1.ppc64le.rpm gcc-fortran-7-3.9.1.ppc64le.rpm gcc-go-7-3.9.1.ppc64le.rpm gcc-info-7-3.9.1.ppc64le.rpm gcc-locale-7-3.9.1.ppc64le.rpm gcc-obj-c++-7-3.9.1.ppc64le.rpm gcc-objc-7-3.9.1.ppc64le.rpm libstdc++-devel-7-3.9.1.ppc64le.rpm cpp-7-3.9.1.aarch64.rpm gcc-7-3.9.1.aarch64.rpm gcc-PIE-7-3.9.1.aarch64.rpm gcc-ada-7-3.9.1.aarch64.rpm gcc-c++-7-3.9.1.aarch64.rpm gcc-fortran-7-3.9.1.aarch64.rpm gcc-go-7-3.9.1.aarch64.rpm gcc-info-7-3.9.1.aarch64.rpm gcc-locale-7-3.9.1.aarch64.rpm gcc-obj-c++-7-3.9.1.aarch64.rpm gcc-objc-7-3.9.1.aarch64.rpm libstdc++-devel-7-3.9.1.aarch64.rpm openSUSE-SLE-15.3-2021-3123 Security update for libcroco moderate SUSE Updates openSUSE-SLE 15.3 This update for libcroco fixes the following issues: - CVE-2020-12825: Fixed recursion issue in block and any productions (bsc#1171685). libcroco-0.6.13-3.3.1.src.rpm libcroco-0.6.13-3.3.1.x86_64.rpm libcroco-0_6-3-0.6.13-3.3.1.x86_64.rpm libcroco-0_6-3-32bit-0.6.13-3.3.1.x86_64.rpm libcroco-devel-0.6.13-3.3.1.x86_64.rpm libcroco-0.6.13-3.3.1.s390x.rpm libcroco-0_6-3-0.6.13-3.3.1.s390x.rpm libcroco-devel-0.6.13-3.3.1.s390x.rpm libcroco-0.6.13-3.3.1.ppc64le.rpm libcroco-0_6-3-0.6.13-3.3.1.ppc64le.rpm libcroco-devel-0.6.13-3.3.1.ppc64le.rpm libcroco-0.6.13-3.3.1.aarch64.rpm libcroco-0_6-3-0.6.13-3.3.1.aarch64.rpm libcroco-devel-0.6.13-3.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-2958 Security update for xerces-c important SUSE Updates openSUSE-SLE 15.3 This update for xerces-c fixes the following issues: - CVE-2018-1311: Fixed use-after-free inside XML parser during the scanning of external DTDs (bsc#1159552). libxerces-c-3_1-3.1.4-10.3.1.x86_64.rpm libxerces-c-3_1-32bit-3.1.4-10.3.1.x86_64.rpm xerces-c-3.1.4-10.3.1.src.rpm libxerces-c-3_1-3.1.4-10.3.1.s390x.rpm libxerces-c-3_1-3.1.4-10.3.1.ppc64le.rpm libxerces-c-3_1-3.1.4-10.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-3035 Recommended update for ibus moderate SUSE Updates openSUSE-SLE 15.3 This update for ibus fixes the following issues: - Fixed an issue when 'Qt5 IBus IM' module cannot connect to 'IBus' daemon under 'GNOME Wayland' session. (bsc#1187202) ibus-1.5.23-3.3.1.src.rpm ibus-1.5.23-3.3.1.x86_64.rpm ibus-devel-1.5.23-3.3.1.x86_64.rpm ibus-dict-emoji-1.5.23-3.3.1.noarch.rpm ibus-gtk-1.5.23-3.3.1.x86_64.rpm ibus-gtk-32bit-1.5.23-3.3.1.x86_64.rpm ibus-gtk3-1.5.23-3.3.1.x86_64.rpm ibus-gtk3-32bit-1.5.23-3.3.1.x86_64.rpm ibus-lang-1.5.23-3.3.1.noarch.rpm libibus-1_0-5-1.5.23-3.3.1.x86_64.rpm libibus-1_0-5-32bit-1.5.23-3.3.1.x86_64.rpm typelib-1_0-IBus-1_0-1.5.23-3.3.1.x86_64.rpm ibus-1.5.23-3.3.1.s390x.rpm ibus-devel-1.5.23-3.3.1.s390x.rpm ibus-gtk-1.5.23-3.3.1.s390x.rpm ibus-gtk3-1.5.23-3.3.1.s390x.rpm libibus-1_0-5-1.5.23-3.3.1.s390x.rpm typelib-1_0-IBus-1_0-1.5.23-3.3.1.s390x.rpm ibus-1.5.23-3.3.1.ppc64le.rpm ibus-devel-1.5.23-3.3.1.ppc64le.rpm ibus-gtk-1.5.23-3.3.1.ppc64le.rpm ibus-gtk3-1.5.23-3.3.1.ppc64le.rpm libibus-1_0-5-1.5.23-3.3.1.ppc64le.rpm typelib-1_0-IBus-1_0-1.5.23-3.3.1.ppc64le.rpm ibus-1.5.23-3.3.1.aarch64.rpm ibus-devel-1.5.23-3.3.1.aarch64.rpm ibus-gtk-1.5.23-3.3.1.aarch64.rpm ibus-gtk3-1.5.23-3.3.1.aarch64.rpm libibus-1_0-5-1.5.23-3.3.1.aarch64.rpm typelib-1_0-IBus-1_0-1.5.23-3.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-3203 Recommended update for kmod moderate SUSE Updates openSUSE-SLE 15.3 This update for kmod fixes the following issues: - Use docbook 4 rather than docbook 5 for building man pages (bsc#1190190). - Enable support for ZSTD compressed modules - Display module information even for modules built into the running kernel (bsc#1189537) - '/usr/lib' should override '/lib' where both are available. Support '/usr/lib' for depmod.d as well. - Remove test patches included in release 29 - Update to release 29 * Fix `modinfo -F` not working for built-in modules and certain fields. * Fix a memory leak, overflow and double free on error path. kmod-29-4.9.1.src.rpm kmod-29-4.9.1.x86_64.rpm kmod-bash-completion-29-4.9.1.noarch.rpm libkmod-devel-29-4.9.1.x86_64.rpm libkmod2-29-4.9.1.x86_64.rpm kmod-29-4.9.1.s390x.rpm libkmod-devel-29-4.9.1.s390x.rpm libkmod2-29-4.9.1.s390x.rpm kmod-29-4.9.1.ppc64le.rpm libkmod-devel-29-4.9.1.ppc64le.rpm libkmod2-29-4.9.1.ppc64le.rpm kmod-29-4.9.1.aarch64.rpm libkmod-devel-29-4.9.1.aarch64.rpm libkmod2-29-4.9.1.aarch64.rpm openSUSE-SLE-15.3-2021-2935 Recommended update for yast2-saptune moderate SUSE Updates openSUSE-SLE 15.3 This update for yast2-saptune fixes the following issues: - Exchange the tuned daemon handling with the new saptune service. (bsc#1188321) - Add information, if the service is enabled or disabled. yast2-saptune-1.4-3.6.1.noarch.rpm yast2-saptune-1.4-3.6.1.src.rpm openSUSE-SLE-15.3-2021-3128 Recommended update for rpmlint moderate SUSE Updates openSUSE-SLE 15.3 This update for rpmlint fixes the following issues: - Backport whitelisting of oddjob (bsc#1189106, bsc#1169494). rpmlint-1.10-7.25.1.noarch.rpm rpmlint-1.10-7.25.1.src.rpm openSUSE-SLE-15.3-2021-3129 Recommended update for polkit-default-privs moderate SUSE Updates openSUSE-SLE 15.3 This update for polkit-default-privs fixes the following issues: - malcontent: loosen restrictive ReadOwn actions to prevent spurious auth requests - whitelisting of GNOME malcontent parental controls (bsc#1177974) polkit-default-privs-13.2+20210813.1c5fb05-3.3.1.noarch.rpm polkit-default-privs-13.2+20210813.1c5fb05-3.3.1.src.rpm polkit-whitelisting-13.2+20210813.1c5fb05-3.3.1.noarch.rpm openSUSE-SLE-15.3-2021-3036 Recommended update for ocl-icd moderate SUSE Updates openSUSE-SLE 15.3 This update for ocl-icd fixes the following issue: - provide a libOpenCL1-32bit for use by Wine. libOpenCL1-2.2.11-8.3.1.x86_64.rpm libOpenCL1-32bit-2.2.11-8.3.1.x86_64.rpm ocl-icd-2.2.11-8.3.1.src.rpm ocl-icd-devel-2.2.11-8.3.1.x86_64.rpm ocl-icd-devel-32bit-2.2.11-8.3.1.x86_64.rpm libOpenCL1-2.2.11-8.3.1.s390x.rpm ocl-icd-devel-2.2.11-8.3.1.s390x.rpm libOpenCL1-2.2.11-8.3.1.ppc64le.rpm ocl-icd-devel-2.2.11-8.3.1.ppc64le.rpm libOpenCL1-2.2.11-8.3.1.aarch64.rpm ocl-icd-devel-2.2.11-8.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-2906 Recommended update for suse-migration-services moderate SUSE Updates openSUSE-SLE 15.3 This update for suse-migration-services fixes the following issues: - Remove no-cd option from zypper-migration command - Make zypper ignore CD/DVDs repositories - Add a more informative message if problematic repos are found - Remote repos message in pre checks, potentially, will produce long lines. Add line breaks for better readability - doc/DC: Update to suse2021 stylesheets - Use download-in-advance mode for zypper dup. If the DMS was configured to use 'zypper dup' we should download packages in advance for more stability. - Fixed package build must not contain the pre-checks which are only relevant in the activation package - Setup package conflicts properly migration services and migration activation conflicts. The activation is installed on the host to migrate, the services are installed in the live migration image. There is no situation in which migration services and activation is installed on the same host. As both packages are build from the same python sources they have to conflict - Fixed migration services package build * Moving the sed original file over the changed one prior calling sdist invalidates the actual change * Fixed spec template for the activation - Add pre check to extend the activation package - Check no remote repositories - Check filesystem has LUKS encryption The checks are kept in their own files and run on the host, before rebooting. - Update option settings in 'zypper dup' mode. - Respect host kernel boot options for migration. (bsc#1182520) suse-migration-services-2.0.30-1.37.1.noarch.rpm suse-migration-services-2.0.30-1.37.1.src.rpm openSUSE-SLE-15.3-2021-2992 Recommended update for drbd moderate SUSE Updates openSUSE-SLE 15.3 This update for drbd fixes the following issues: - bsc#1188472, update to 9.0.29 * fix data corruption when DRBD's backing disk is a degraded Linux software raid (MD) * add correct thawing of IO requests after IO was frozen due to loss of quorum * fix timeout detection after idle periods and for configs with ko-count when a disk on an a secondary stops delivering IO-completion events * fixed an issue where UUIDs where not shifted in the history slots; that caused false "unrelated data" events * fix switching resync sources by letting resync requests drain before issuing resync requests to the new source; before the fix, it could happen that the resync does not terminate since a late reply from the previous caused a out-of-sync bit set after the "scan point" * fix a temporal deadlock you could trigger when you exercise promotion races and mix some read-only openers into the test case * fix for bitmap-copy operation in a very specific and unlikely case where two nodes do a bitmap-based resync due to disk-states * fix size negotiation when combining nodes of different CPU architectures that have different page sizes * fix a very rare race where DRBD reported wrong magic in a header packet right after reconnecting * fix a case where DRBD ends up reporting unrelated data; it affected thinly allocated resources with a diskless node in a recreate from day0 event * speedup open() of drbd devices if promote has not chance to go through * new option "--reset-bitmap=no" for the invalidate and invalidate-remote commands; this allows to do a resync after online verify found differences * changes to socket buffer sizes get applied to established connections immediately; before it was applied after a re-connect * add exists events for path objects * forbid keyed hash algorithms for online verify, csyms and HMAC base alg * fix a regression introduces with 9.0.25; it failed to determine the right device size and the connection hangs in 'WFBitmapS/WFBitmapT' repl state; to trigger this you need to do a partial resync to a new node with different backing device size * fix an issue with netlink packets processed in parallel on multiple CPUs; the bug caused drbdadm adjust failing in very rare cases * fix a very rare occurrence of a reconciliation resync getting stuck * fix a race condition that causes a detach operation to hang; it is very hard to trigger * fix a kernel OOPS (via a BUG()) upon adding a timer twice under very rare timing * fix a counter imbalance that could lead to assertion messages when a protocol A peer disconnects with a certain timing * fix a rare race with receiving bitmap and a state change while establishing a connection * fix UUID handling to avoid false split-brain detections; this bug got triggered an isolated primary that gets demoted, and temporal network interruptions among the remaining nodes * fix resync decision to obey disk states when the generation UUIDs are equal; the effect of this bug was that you could end up with two Outdated nodes after resync * fix concurrent disk-attach operations * Fix possible kernel warning regarding an inbalance of backing device link/unlink * move some amount of kernel backward compatibility code moved from the old method (drbd_wrappers.h) to new cocci semantic patches * add support renaming resources while its devices might be in use and process IO requests * Allow setting c_max_rate to 0 with the meaning that the resync controller has no upper limit for the resync speed * Fix regression: allow live migration between two diskful peers again drbd-9.0.29~0+git.9a7bc817-3.3.1.src.rpm drbd-9.0.29~0+git.9a7bc817-3.3.1.x86_64.rpm drbd-kmp-default-9.0.29~0+git.9a7bc817_k5.3.18_59.19-3.3.1.x86_64.rpm drbd-kmp-preempt-9.0.29~0+git.9a7bc817_k5.3.18_59.19-3.3.1.x86_64.rpm drbd-kmp-rt-9.0.29~0+git.9a7bc817_k5.3.18_8.13-3.3.1.x86_64.rpm drbd-9.0.29~0+git.9a7bc817-3.3.1.s390x.rpm drbd-kmp-default-9.0.29~0+git.9a7bc817_k5.3.18_59.19-3.3.1.s390x.rpm drbd-9.0.29~0+git.9a7bc817-3.3.1.ppc64le.rpm drbd-kmp-default-9.0.29~0+git.9a7bc817_k5.3.18_59.19-3.3.1.ppc64le.rpm drbd-9.0.29~0+git.9a7bc817-3.3.1.aarch64.rpm drbd-kmp-64kb-9.0.29~0+git.9a7bc817_k5.3.18_59.19-3.3.1.aarch64.rpm drbd-kmp-default-9.0.29~0+git.9a7bc817_k5.3.18_59.19-3.3.1.aarch64.rpm drbd-kmp-preempt-9.0.29~0+git.9a7bc817_k5.3.18_59.19-3.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-3037 Recommended update for PackageKit moderate SUSE Updates openSUSE-SLE 15.3 This update for PackageKit fixes the following issues: - Fix crash when search string is NULL (bsc#1179287). - Fix hang in packagekit-glib2 client if daemon crashes. PackageKit-1.1.13-4.23.1.src.rpm PackageKit-1.1.13-4.23.1.x86_64.rpm PackageKit-backend-dnf-1.1.13-4.23.1.x86_64.rpm PackageKit-backend-zypp-1.1.13-4.23.1.x86_64.rpm PackageKit-branding-upstream-1.1.13-4.23.1.noarch.rpm PackageKit-devel-1.1.13-4.23.1.x86_64.rpm PackageKit-gstreamer-plugin-1.1.13-4.23.1.x86_64.rpm PackageKit-gtk3-module-1.1.13-4.23.1.x86_64.rpm PackageKit-lang-1.1.13-4.23.1.noarch.rpm libpackagekit-glib2-18-1.1.13-4.23.1.x86_64.rpm libpackagekit-glib2-18-32bit-1.1.13-4.23.1.x86_64.rpm libpackagekit-glib2-devel-1.1.13-4.23.1.x86_64.rpm libpackagekit-glib2-devel-32bit-1.1.13-4.23.1.x86_64.rpm typelib-1_0-PackageKitGlib-1_0-1.1.13-4.23.1.x86_64.rpm PackageKit-1.1.13-4.23.1.s390x.rpm PackageKit-backend-dnf-1.1.13-4.23.1.s390x.rpm PackageKit-backend-zypp-1.1.13-4.23.1.s390x.rpm PackageKit-devel-1.1.13-4.23.1.s390x.rpm PackageKit-gstreamer-plugin-1.1.13-4.23.1.s390x.rpm PackageKit-gtk3-module-1.1.13-4.23.1.s390x.rpm libpackagekit-glib2-18-1.1.13-4.23.1.s390x.rpm libpackagekit-glib2-devel-1.1.13-4.23.1.s390x.rpm typelib-1_0-PackageKitGlib-1_0-1.1.13-4.23.1.s390x.rpm PackageKit-1.1.13-4.23.1.ppc64le.rpm PackageKit-backend-dnf-1.1.13-4.23.1.ppc64le.rpm PackageKit-backend-zypp-1.1.13-4.23.1.ppc64le.rpm PackageKit-devel-1.1.13-4.23.1.ppc64le.rpm PackageKit-gstreamer-plugin-1.1.13-4.23.1.ppc64le.rpm PackageKit-gtk3-module-1.1.13-4.23.1.ppc64le.rpm libpackagekit-glib2-18-1.1.13-4.23.1.ppc64le.rpm libpackagekit-glib2-devel-1.1.13-4.23.1.ppc64le.rpm typelib-1_0-PackageKitGlib-1_0-1.1.13-4.23.1.ppc64le.rpm PackageKit-1.1.13-4.23.1.aarch64.rpm PackageKit-backend-dnf-1.1.13-4.23.1.aarch64.rpm PackageKit-backend-zypp-1.1.13-4.23.1.aarch64.rpm PackageKit-devel-1.1.13-4.23.1.aarch64.rpm PackageKit-gstreamer-plugin-1.1.13-4.23.1.aarch64.rpm PackageKit-gtk3-module-1.1.13-4.23.1.aarch64.rpm libpackagekit-glib2-18-1.1.13-4.23.1.aarch64.rpm libpackagekit-glib2-devel-1.1.13-4.23.1.aarch64.rpm typelib-1_0-PackageKitGlib-1_0-1.1.13-4.23.1.aarch64.rpm openSUSE-SLE-15.3-2021-3001 Recommended update for netcfg moderate SUSE Updates openSUSE-SLE 15.3 This update for netcfg fixes the following issues: - add submissions port/protocol to services file for message submission over TLS protocol [bsc#1189683] netcfg-11.6-3.3.1.noarch.rpm netcfg-11.6-3.3.1.src.rpm openSUSE-SLE-15.3-2021-3048 Recommended update for libyui moderate SUSE Updates openSUSE-SLE 15.3 This update for libyui fixes the following issues: - Fixed sometimes patch category could be missing in the Online Update screen (bsc#1174390) - Obsolete older documentation packages in favour of updated ones (bsc#1184363) libyui-4.1.4-3.3.1.src.rpm libyui-bindings-4.1.4-3.3.1.src.rpm libyui-devel-4.1.4-3.3.1.x86_64.rpm libyui-ncurses-4.1.4-3.3.1.src.rpm libyui-ncurses-devel-4.1.4-3.3.1.x86_64.rpm libyui-ncurses-pkg-4.1.4-3.3.1.src.rpm libyui-ncurses-pkg-devel-4.1.4-3.3.1.x86_64.rpm libyui-ncurses-pkg15-4.1.4-3.3.1.x86_64.rpm libyui-ncurses-rest-api-4.1.4-3.3.1.src.rpm libyui-ncurses-rest-api-devel-4.1.4-3.3.1.x86_64.rpm libyui-ncurses-rest-api15-4.1.4-3.3.1.x86_64.rpm libyui-ncurses-tools-4.1.4-3.3.1.x86_64.rpm libyui-ncurses15-4.1.4-3.3.1.x86_64.rpm libyui-qt-4.1.4-3.3.1.src.rpm libyui-qt-devel-4.1.4-3.3.1.x86_64.rpm libyui-qt-graph-4.1.4-3.3.1.src.rpm libyui-qt-graph-devel-4.1.4-3.3.1.x86_64.rpm libyui-qt-graph15-4.1.4-3.3.1.x86_64.rpm libyui-qt-pkg-4.1.4-3.3.1.src.rpm libyui-qt-pkg-devel-4.1.4-3.3.1.x86_64.rpm libyui-qt-pkg15-4.1.4-3.3.1.x86_64.rpm libyui-qt-rest-api-4.1.4-3.3.1.src.rpm libyui-qt-rest-api-devel-4.1.4-3.3.1.x86_64.rpm libyui-qt-rest-api15-4.1.4-3.3.1.x86_64.rpm libyui-qt15-4.1.4-3.3.1.x86_64.rpm libyui-rest-api-4.1.4-3.3.1.src.rpm libyui-rest-api-devel-4.1.4-3.3.1.x86_64.rpm libyui-rest-api15-4.1.4-3.3.1.x86_64.rpm libyui15-4.1.4-3.3.1.x86_64.rpm perl-yui-4.1.4-3.3.1.x86_64.rpm python3-yui-4.1.4-3.3.1.x86_64.rpm ruby-yui-4.1.4-3.3.1.x86_64.rpm libyui-devel-4.1.4-3.3.1.s390x.rpm libyui-ncurses-devel-4.1.4-3.3.1.s390x.rpm libyui-ncurses-pkg-devel-4.1.4-3.3.1.s390x.rpm libyui-ncurses-pkg15-4.1.4-3.3.1.s390x.rpm libyui-ncurses-rest-api-devel-4.1.4-3.3.1.s390x.rpm libyui-ncurses-rest-api15-4.1.4-3.3.1.s390x.rpm libyui-ncurses-tools-4.1.4-3.3.1.s390x.rpm libyui-ncurses15-4.1.4-3.3.1.s390x.rpm libyui-qt-devel-4.1.4-3.3.1.s390x.rpm libyui-qt-graph-devel-4.1.4-3.3.1.s390x.rpm libyui-qt-graph15-4.1.4-3.3.1.s390x.rpm libyui-qt-pkg-devel-4.1.4-3.3.1.s390x.rpm libyui-qt-pkg15-4.1.4-3.3.1.s390x.rpm libyui-qt-rest-api-devel-4.1.4-3.3.1.s390x.rpm libyui-qt-rest-api15-4.1.4-3.3.1.s390x.rpm libyui-qt15-4.1.4-3.3.1.s390x.rpm libyui-rest-api-devel-4.1.4-3.3.1.s390x.rpm libyui-rest-api15-4.1.4-3.3.1.s390x.rpm libyui15-4.1.4-3.3.1.s390x.rpm perl-yui-4.1.4-3.3.1.s390x.rpm python3-yui-4.1.4-3.3.1.s390x.rpm ruby-yui-4.1.4-3.3.1.s390x.rpm libyui-devel-4.1.4-3.3.1.ppc64le.rpm libyui-ncurses-devel-4.1.4-3.3.1.ppc64le.rpm libyui-ncurses-pkg-devel-4.1.4-3.3.1.ppc64le.rpm libyui-ncurses-pkg15-4.1.4-3.3.1.ppc64le.rpm libyui-ncurses-rest-api-devel-4.1.4-3.3.1.ppc64le.rpm libyui-ncurses-rest-api15-4.1.4-3.3.1.ppc64le.rpm libyui-ncurses-tools-4.1.4-3.3.1.ppc64le.rpm libyui-ncurses15-4.1.4-3.3.1.ppc64le.rpm libyui-qt-devel-4.1.4-3.3.1.ppc64le.rpm libyui-qt-graph-devel-4.1.4-3.3.1.ppc64le.rpm libyui-qt-graph15-4.1.4-3.3.1.ppc64le.rpm libyui-qt-pkg-devel-4.1.4-3.3.1.ppc64le.rpm libyui-qt-pkg15-4.1.4-3.3.1.ppc64le.rpm libyui-qt-rest-api-devel-4.1.4-3.3.1.ppc64le.rpm libyui-qt-rest-api15-4.1.4-3.3.1.ppc64le.rpm libyui-qt15-4.1.4-3.3.1.ppc64le.rpm libyui-rest-api-devel-4.1.4-3.3.1.ppc64le.rpm libyui-rest-api15-4.1.4-3.3.1.ppc64le.rpm libyui15-4.1.4-3.3.1.ppc64le.rpm perl-yui-4.1.4-3.3.1.ppc64le.rpm python3-yui-4.1.4-3.3.1.ppc64le.rpm ruby-yui-4.1.4-3.3.1.ppc64le.rpm libyui-devel-4.1.4-3.3.1.aarch64.rpm libyui-ncurses-devel-4.1.4-3.3.1.aarch64.rpm libyui-ncurses-pkg-devel-4.1.4-3.3.1.aarch64.rpm libyui-ncurses-pkg15-4.1.4-3.3.1.aarch64.rpm libyui-ncurses-rest-api-devel-4.1.4-3.3.1.aarch64.rpm libyui-ncurses-rest-api15-4.1.4-3.3.1.aarch64.rpm libyui-ncurses-tools-4.1.4-3.3.1.aarch64.rpm libyui-ncurses15-4.1.4-3.3.1.aarch64.rpm libyui-qt-devel-4.1.4-3.3.1.aarch64.rpm libyui-qt-graph-devel-4.1.4-3.3.1.aarch64.rpm libyui-qt-graph15-4.1.4-3.3.1.aarch64.rpm libyui-qt-pkg-devel-4.1.4-3.3.1.aarch64.rpm libyui-qt-pkg15-4.1.4-3.3.1.aarch64.rpm libyui-qt-rest-api-devel-4.1.4-3.3.1.aarch64.rpm libyui-qt-rest-api15-4.1.4-3.3.1.aarch64.rpm libyui-qt15-4.1.4-3.3.1.aarch64.rpm libyui-rest-api-devel-4.1.4-3.3.1.aarch64.rpm libyui-rest-api15-4.1.4-3.3.1.aarch64.rpm libyui15-4.1.4-3.3.1.aarch64.rpm perl-yui-4.1.4-3.3.1.aarch64.rpm python3-yui-4.1.4-3.3.1.aarch64.rpm ruby-yui-4.1.4-3.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-3221 Recommended update for apache2-mod_wsgi moderate SUSE Updates openSUSE-SLE 15.3 This update for apache2-mod_wsgi fixes the following issue: - Enable installation of Python 'sitelib' wrapper. (bsc#1189467) - This update will solve a 'DistributionNotFound' error providing the Python metadata and wrapper for 'mod_wsgi'. apache2-mod_wsgi-4.5.18-4.3.1.src.rpm apache2-mod_wsgi-4.5.18-4.3.1.x86_64.rpm apache2-mod_wsgi-python3-4.5.18-4.3.1.src.rpm apache2-mod_wsgi-python3-4.5.18-4.3.1.x86_64.rpm apache2-mod_wsgi-4.5.18-4.3.1.s390x.rpm apache2-mod_wsgi-python3-4.5.18-4.3.1.s390x.rpm apache2-mod_wsgi-4.5.18-4.3.1.ppc64le.rpm apache2-mod_wsgi-python3-4.5.18-4.3.1.ppc64le.rpm apache2-mod_wsgi-4.5.18-4.3.1.aarch64.rpm apache2-mod_wsgi-python3-4.5.18-4.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-3115 Recommended update for mozilla-nspr, mozilla-nss moderate SUSE Updates openSUSE-SLE 15.3 This update for mozilla-nspr fixes the following issues: mozilla-nspr was updated to version 4.32: * implement new socket option PR_SockOpt_DontFrag * support larger DNS records by increasing the default buffer size for DNS queries * Lock access to PRCallOnceType members in PR_CallOnce* for thread safety bmo#1686138 * PR_GetSystemInfo supports a new flag PR_SI_RELEASE_BUILD to get information about the operating system build version. Mozilla NSS was updated to version 3.68: * bmo#1713562 - Fix test leak. * bmo#1717452 - NSS 3.68 should depend on NSPR 4.32. * bmo#1693206 - Implement PKCS8 export of ECDSA keys. * bmo#1712883 - DTLS 1.3 draft-43. * bmo#1655493 - Support SHA2 HW acceleration using Intel SHA Extension. * bmo#1713562 - Validate ECH public names. * bmo#1717610 - Add function to get seconds from epoch from pkix::Time. update to NSS 3.67 * bmo#1683710 - Add a means to disable ALPN. * bmo#1715720 - Fix nssckbi version number in NSS 3.67 (was supposed to be incremented in 3.66). * bmo#1714719 - Set NSS_USE_64 on riscv64 target when using GYP/Ninja. * bmo#1566124 - Fix counter increase in ppc-gcm-wrap.c. * bmo#1566124 - Fix AES_GCM mode on ppc64le for messages of length more than 255-byte. update to NSS 3.66 * bmo#1710716 - Remove Expired Sonera Class2 CA from NSS. * bmo#1710716 - Remove Expired Root Certificates from NSS - QuoVadis Root Certification Authority. * bmo#1708307 - Remove Trustis FPS Root CA from NSS. * bmo#1707097 - Add Certum Trusted Root CA to NSS. * bmo#1707097 - Add Certum EC-384 CA to NSS. * bmo#1703942 - Add ANF Secure Server Root CA to NSS. * bmo#1697071 - Add GLOBALTRUST 2020 root cert to NSS. * bmo#1712184 - NSS tools manpages need to be updated to reflect that sqlite is the default database. * bmo#1712230 - Don't build ppc-gcm.s with clang integrated assembler. * bmo#1712211 - Strict prototype error when trying to compile nss code that includes blapi.h. * bmo#1710773 - NSS needs FIPS 180-3 FIPS indicators. * bmo#1709291 - Add VerifyCodeSigningCertificateChain. update to NSS 3.65 * bmo#1709654 - Update for NetBSD configuration. * bmo#1709750 - Disable HPKE test when fuzzing. * bmo#1566124 - Optimize AES-GCM for ppc64le. * bmo#1699021 - Add AES-256-GCM to HPKE. * bmo#1698419 - ECH -10 updates. * bmo#1692930 - Update HPKE to final version. * bmo#1707130 - NSS should use modern algorithms in PKCS#12 files by default. * bmo#1703936 - New coverity/cpp scanner errors. * bmo#1697303 - NSS needs to update it's csp clearing to FIPS 180-3 standards. * bmo#1702663 - Need to support RSA PSS with Hashing PKCS #11 Mechanisms. * bmo#1705119 - Deadlock when using GCM and non-thread safe tokens. update to NSS 3.64 * bmo#1705286 - Properly detect mips64. * bmo#1687164 - Introduce NSS_DISABLE_CRYPTO_VSX and disable_crypto_vsx. * bmo#1698320 - replace __builtin_cpu_supports("vsx") with ppc_crypto_support() for clang. * bmo#1613235 - Add POWER ChaCha20 stream cipher vector acceleration. Fixed in 3.63 * bmo#1697380 - Make a clang-format run on top of helpful contributions. * bmo#1683520 - ECCKiila P384, change syntax of nested structs initialization to prevent build isses with GCC 4.8. * bmo#1683520 - [lib/freebl/ecl] P-384: allow zero scalars in dual scalar multiplication. * bmo#1683520 - ECCKiila P521, change syntax of nested structs initialization to prevent build isses with GCC 4.8. * bmo#1683520 - [lib/freebl/ecl] P-521: allow zero scalars in dual scalar multiplication. * bmo#1696800 - HACL* update March 2021 - c95ab70fcb2bc21025d8845281bc4bc8987ca683. * bmo#1694214 - tstclnt can't enable middlebox compat mode. * bmo#1694392 - NSS does not work with PKCS #11 modules not supporting profiles. * bmo#1685880 - Minor fix to prevent unused variable on early return. * bmo#1685880 - Fix for the gcc compiler version 7 to support setenv with nss build. * bmo#1693217 - Increase nssckbi.h version number for March 2021 batch of root CA changes, CA list version 2.48. * bmo#1692094 - Set email distrust after to 21-03-01 for Camerfirma's 'Chambers of Commerce' and 'Global Chambersign' roots. * bmo#1618407 - Symantec root certs - Set CKA_NSS_EMAIL_DISTRUST_AFTER. * bmo#1693173 - Add GlobalSign R45, E45, R46, and E46 root certs to NSS. * bmo#1683738 - Add AC RAIZ FNMT-RCM SERVIDORES SEGUROS root cert to NSS. * bmo#1686854 - Remove GeoTrust PCA-G2 and VeriSign Universal root certs from NSS. * bmo#1687822 - Turn off Websites trust bit for the “Staat der Nederlanden Root CA - G3” root cert in NSS. * bmo#1692094 - Turn off Websites Trust Bit for 'Chambers of Commerce Root - 2008' and 'Global Chambersign Root - 2008’. * bmo#1694291 - Tracing fixes for ECH. update to NSS 3.62 * bmo#1688374 - Fix parallel build NSS-3.61 with make * bmo#1682044 - pkix_Build_GatherCerts() + pkix_CacheCert_Add() can corrupt "cachedCertTable" * bmo#1690583 - Fix CH padding extension size calculation * bmo#1690421 - Adjust 3.62 ABI report formatting for new libabigail * bmo#1690421 - Install packaged libabigail in docker-builds image * bmo#1689228 - Minor ECH -09 fixes for interop testing, fuzzing * bmo#1674819 - Fixup a51fae403328, enum type may be signed * bmo#1681585 - Add ECH support to selfserv * bmo#1681585 - Update ECH to Draft-09 * bmo#1678398 - Add Export/Import functions for HPKE context * bmo#1678398 - Update HPKE to draft-07 update to NSS 3.61 * bmo#1682071 - Fix issue with IKE Quick mode deriving incorrect key values under certain conditions. * bmo#1684300 - Fix default PBE iteration count when NSS is compiled with NSS_DISABLE_DBM. * bmo#1651411 - Improve constant-timeness in RSA operations. * bmo#1677207 - Upgrade Google Test version to latest release. * bmo#1654332 - Add aarch64-make target to nss-try. Update to NSS 3.60.1: Notable changes in NSS 3.60: * TLS 1.3 Encrypted Client Hello (draft-ietf-tls-esni-08) support has been added, replacing the previous ESNI (draft-ietf-tls-esni-01) implementation. See bmo#1654332 for more information. * December 2020 batch of Root CA changes, builtins library updated to version 2.46. See bmo#1678189, bmo#1678166, and bmo#1670769 for more information. Update to NSS 3.59.1: * bmo#1679290 - Fix potential deadlock with certain third-party PKCS11 modules Update to NSS 3.59: Notable changes: * Exported two existing functions from libnss: CERT_AddCertToListHeadWithData and CERT_AddCertToListTailWithData Bugfixes * bmo#1607449 - Lock cert->nssCertificate to prevent a potential data race * bmo#1672823 - Add Wycheproof test cases for HMAC, HKDF, and DSA * bmo#1663661 - Guard against NULL token in nssSlot_IsTokenPresent * bmo#1670835 - Support enabling and disabling signatures via Crypto Policy * bmo#1672291 - Resolve libpkix OCSP failures on SHA1 self-signed root certs when SHA1 signatures are disabled. * bmo#1644209 - Fix broken SelectedCipherSuiteReplacer filter to solve some test intermittents * bmo#1672703 - Tolerate the first CCS in TLS 1.3 to fix a regression in our CVE-2020-25648 fix that broke purple-discord (boo#1179382) * bmo#1666891 - Support key wrap/unwrap with RSA-OAEP * bmo#1667989 - Fix gyp linking on Solaris * bmo#1668123 - Export CERT_AddCertToListHeadWithData and CERT_AddCertToListTailWithData from libnss * bmo#1634584 - Set CKA_NSS_SERVER_DISTRUST_AFTER for Trustis FPS Root CA * bmo#1663091 - Remove unnecessary assertions in the streaming ASN.1 decoder that affected decoding certain PKCS8 private keys when using NSS debug builds * bmo#670839 - Use ARM crypto extension for AES, SHA1 and SHA2 on MacOS. update to NSS 3.58 Bugs fixed: * bmo#1641480 (CVE-2020-25648) Tighten CCS handling for middlebox compatibility mode. * bmo#1631890 - Add support for Hybrid Public Key Encryption (draft-irtf-cfrg-hpke) support for TLS Encrypted Client Hello (draft-ietf-tls-esni). * bmo#1657255 - Add CI tests that disable SHA1/SHA2 ARM crypto extensions. * bmo#1668328 - Handle spaces in the Python path name when using gyp on Windows. * bmo#1667153 - Add PK11_ImportDataKey for data object import. * bmo#1665715 - Pass the embedded SCT list extension (if present) to TrustDomain::CheckRevocation instead of the notBefore value. update to NSS 3.57 * The following CA certificates were Added: bmo#1663049 - CN=Trustwave Global Certification Authority SHA-256 Fingerprint: 97552015F5DDFC3C8788C006944555408894450084F100867086BC1A2BB58DC8 bmo#1663049 - CN=Trustwave Global ECC P256 Certification Authority SHA-256 Fingerprint: 945BBC825EA554F489D1FD51A73DDF2EA624AC7019A05205225C22A78CCFA8B4 bmo#1663049 - CN=Trustwave Global ECC P384 Certification Authority SHA-256 Fingerprint: 55903859C8C0C3EBB8759ECE4E2557225FF5758BBD38EBD48276601E1BD58097 * The following CA certificates were Removed: bmo#1651211 - CN=EE Certification Centre Root CA SHA-256 Fingerprint: 3E84BA4342908516E77573C0992F0979CA084E4685681FF195CCBA8A229B8A76 bmo#1656077 - O=Government Root Certification Authority; C=TW SHA-256 Fingerprint: 7600295EEFE85B9E1FD624DB76062AAAAE59818A54D2774CD4C0B2C01131E1B3 * Trust settings for the following CA certificates were Modified: bmo#1653092 - CN=OISTE WISeKey Global Root GA CA Websites (server authentication) trust bit removed. * https://developer.mozilla.org/en-US/docs/Mozilla/Projects/NSS/NSS_3.57_release_notes update to NSS 3.56 Notable changes * bmo#1650702 - Support SHA-1 HW acceleration on ARMv8 * bmo#1656981 - Use MPI comba and mulq optimizations on x86-64 MacOS. * bmo#1654142 - Add CPU feature detection for Intel SHA extension. * bmo#1648822 - Add stricter validation of DH keys in FIPS mode. * bmo#1656986 - Properly detect arm64 during GYP build architecture detection. * bmo#1652729 - Add build flag to disable RC2 and relocate to lib/freebl/deprecated. * bmo#1656429 - Correct RTT estimate used in 0-RTT anti-replay. * bmo#1588941 - Send empty certificate message when scheme selection fails. * bmo#1652032 - Fix failure to build in Windows arm64 makefile cross-compilation. * bmo#1625791 - Fix deadlock issue in nssSlot_IsTokenPresent. * bmo#1653975 - Fix 3.53 regression by setting "all" as the default makefile target. * bmo#1659792 - Fix broken libpkix tests with unexpired PayPal cert. * bmo#1659814 - Fix interop.sh failures with newer tls-interop commit and dependencies. * bmo#1656519 - NSPR dependency updated to 4.28 update to NSS 3.55 Notable changes * P384 and P521 elliptic curve implementations are replaced with verifiable implementations from Fiat-Crypto [0] and ECCKiila [1]. * PK11_FindCertInSlot is added. With this function, a given slot can be queried with a DER-Encoded certificate, providing performance and usability improvements over other mechanisms. (bmo#1649633) * DTLS 1.3 implementation is updated to draft-38. (bmo#1647752) Relevant Bugfixes * bmo#1631583 (CVE-2020-6829, CVE-2020-12400) - Replace P384 and P521 with new, verifiable implementations from Fiat-Crypto and ECCKiila. * bmo#1649487 - Move overzealous assertion in VFY_EndWithSignature. * bmo#1631573 (CVE-2020-12401) - Remove unnecessary scalar padding. * bmo#1636771 (CVE-2020-12403) - Explicitly disable multi-part ChaCha20 (which was not functioning correctly) and more strictly enforce tag length. * bmo#1649648 - Don't memcpy zero bytes (sanitizer fix). * bmo#1649316 - Don't memcpy zero bytes (sanitizer fix). * bmo#1649322 - Don't memcpy zero bytes (sanitizer fix). * bmo#1653202 - Fix initialization bug in blapitest when compiled with NSS_DISABLE_DEPRECATED_SEED. * bmo#1646594 - Fix AVX2 detection in makefile builds. * bmo#1649633 - Add PK11_FindCertInSlot to search a given slot for a DER-encoded certificate. * bmo#1651520 - Fix slotLock race in NSC_GetTokenInfo. * bmo#1647752 - Update DTLS 1.3 implementation to draft-38. * bmo#1649190 - Run cipher, sdr, and ocsp tests under standard test cycle in CI. * bmo#1649226 - Add Wycheproof ECDSA tests. * bmo#1637222 - Consistently enforce IV requirements for DES and 3DES. * bmo#1067214 - Enforce minimum PKCS#1 v1.5 padding length in RSA_CheckSignRecover. * bmo#1646324 - Advertise PKCS#1 schemes for certificates in the signature_algorithms extension. update to NSS 3.54 Notable changes * Support for TLS 1.3 external pre-shared keys (bmo#1603042). * Use ARM Cryptography Extension for SHA256, when available (bmo#1528113) * The following CA certificates were Added: bmo#1645186 - certSIGN Root CA G2. bmo#1645174 - e-Szigno Root CA 2017. bmo#1641716 - Microsoft ECC Root Certificate Authority 2017. bmo#1641716 - Microsoft RSA Root Certificate Authority 2017. * The following CA certificates were Removed: bmo#1645199 - AddTrust Class 1 CA Root. bmo#1645199 - AddTrust External CA Root. bmo#1641718 - LuxTrust Global Root 2. bmo#1639987 - Staat der Nederlanden Root CA - G2. bmo#1618402 - Symantec Class 2 Public Primary Certification Authority - G4. bmo#1618402 - Symantec Class 1 Public Primary Certification Authority - G4. bmo#1618402 - VeriSign Class 3 Public Primary Certification Authority - G3. * A number of certificates had their Email trust bit disabled. See bmo#1618402 for a complete list. Bugs fixed * bmo#1528113 - Use ARM Cryptography Extension for SHA256. * bmo#1603042 - Add TLS 1.3 external PSK support. * bmo#1642802 - Add uint128 support for HACL* curve25519 on Windows. * bmo#1645186 - Add "certSIGN Root CA G2" root certificate. * bmo#1645174 - Add Microsec's "e-Szigno Root CA 2017" root certificate. * bmo#1641716 - Add Microsoft's non-EV root certificates. * bmo1621151 - Disable email trust bit for "O=Government Root Certification Authority; C=TW" root. * bmo#1645199 - Remove AddTrust root certificates. * bmo#1641718 - Remove "LuxTrust Global Root 2" root certificate. * bmo#1639987 - Remove "Staat der Nederlanden Root CA - G2" root certificate. * bmo#1618402 - Remove Symantec root certificates and disable email trust bit. * bmo#1640516 - NSS 3.54 should depend on NSPR 4.26. * bmo#1642146 - Fix undefined reference to `PORT_ZAlloc_stub' in seed.c. * bmo#1642153 - Fix infinite recursion building NSS. * bmo#1642638 - Fix fuzzing assertion crash. * bmo#1642871 - Enable SSL_SendSessionTicket after resumption. * bmo#1643123 - Support SSL_ExportEarlyKeyingMaterial with External PSKs. * bmo#1643557 - Fix numerous compile warnings in NSS. * bmo#1644774 - SSL gtests to use ClearServerCache when resetting self-encrypt keys. * bmo#1645479 - Don't use SECITEM_MakeItem in secutil.c. * bmo#1646520 - Stricter enforcement of ASN.1 INTEGER encoding. libfreebl3-3.68-3.56.1.x86_64.rpm libfreebl3-32bit-3.68-3.56.1.x86_64.rpm libfreebl3-hmac-3.68-3.56.1.x86_64.rpm libfreebl3-hmac-32bit-3.68-3.56.1.x86_64.rpm libsoftokn3-3.68-3.56.1.x86_64.rpm libsoftokn3-32bit-3.68-3.56.1.x86_64.rpm libsoftokn3-hmac-3.68-3.56.1.x86_64.rpm libsoftokn3-hmac-32bit-3.68-3.56.1.x86_64.rpm mozilla-nspr-32bit-4.32-3.20.1.x86_64.rpm mozilla-nspr-4.32-3.20.1.src.rpm mozilla-nspr-4.32-3.20.1.x86_64.rpm mozilla-nspr-devel-4.32-3.20.1.x86_64.rpm mozilla-nss-3.68-3.56.1.src.rpm mozilla-nss-3.68-3.56.1.x86_64.rpm mozilla-nss-32bit-3.68-3.56.1.x86_64.rpm mozilla-nss-certs-3.68-3.56.1.x86_64.rpm mozilla-nss-certs-32bit-3.68-3.56.1.x86_64.rpm mozilla-nss-devel-3.68-3.56.1.x86_64.rpm mozilla-nss-sysinit-3.68-3.56.1.x86_64.rpm mozilla-nss-sysinit-32bit-3.68-3.56.1.x86_64.rpm mozilla-nss-tools-3.68-3.56.1.x86_64.rpm libfreebl3-3.68-3.56.1.s390x.rpm libfreebl3-hmac-3.68-3.56.1.s390x.rpm libsoftokn3-3.68-3.56.1.s390x.rpm libsoftokn3-hmac-3.68-3.56.1.s390x.rpm mozilla-nspr-4.32-3.20.1.s390x.rpm mozilla-nspr-devel-4.32-3.20.1.s390x.rpm mozilla-nss-3.68-3.56.1.s390x.rpm mozilla-nss-certs-3.68-3.56.1.s390x.rpm mozilla-nss-devel-3.68-3.56.1.s390x.rpm mozilla-nss-sysinit-3.68-3.56.1.s390x.rpm mozilla-nss-tools-3.68-3.56.1.s390x.rpm libfreebl3-3.68-3.56.1.ppc64le.rpm libfreebl3-hmac-3.68-3.56.1.ppc64le.rpm libsoftokn3-3.68-3.56.1.ppc64le.rpm libsoftokn3-hmac-3.68-3.56.1.ppc64le.rpm mozilla-nspr-4.32-3.20.1.ppc64le.rpm mozilla-nspr-devel-4.32-3.20.1.ppc64le.rpm mozilla-nss-3.68-3.56.1.ppc64le.rpm mozilla-nss-certs-3.68-3.56.1.ppc64le.rpm mozilla-nss-devel-3.68-3.56.1.ppc64le.rpm mozilla-nss-sysinit-3.68-3.56.1.ppc64le.rpm mozilla-nss-tools-3.68-3.56.1.ppc64le.rpm libfreebl3-3.68-3.56.1.aarch64.rpm libfreebl3-hmac-3.68-3.56.1.aarch64.rpm libsoftokn3-3.68-3.56.1.aarch64.rpm libsoftokn3-hmac-3.68-3.56.1.aarch64.rpm mozilla-nspr-4.32-3.20.1.aarch64.rpm mozilla-nspr-devel-4.32-3.20.1.aarch64.rpm mozilla-nss-3.68-3.56.1.aarch64.rpm mozilla-nss-certs-3.68-3.56.1.aarch64.rpm mozilla-nss-devel-3.68-3.56.1.aarch64.rpm mozilla-nss-sysinit-3.68-3.56.1.aarch64.rpm mozilla-nss-tools-3.68-3.56.1.aarch64.rpm openSUSE-SLE-15.3-2021-2905 Recommended update for corosync important SUSE Updates openSUSE-SLE 15.3 This update for corosync fixes the following issue: - Add 'cancel_hold_on_retransmit' config option on corosync totem (bsc#1189680) - This option allows Corosync to hold the token by representative when there are too many retransmit messages. This allows the network to process increased load without overloading it. The used mechanism is same as described for the hold directive. Some deployments may prefer to never hold token when there is retransmit messages. If so, the option should be set to yes. The default value is no. corosync-2.4.5-12.3.1.src.rpm corosync-2.4.5-12.3.1.x86_64.rpm corosync-qdevice-2.4.5-12.3.1.x86_64.rpm corosync-qnetd-2.4.5-12.3.1.x86_64.rpm corosync-testagents-2.4.5-12.3.1.x86_64.rpm libcfg6-2.4.5-12.3.1.x86_64.rpm libcfg6-32bit-2.4.5-12.3.1.x86_64.rpm libcmap4-2.4.5-12.3.1.x86_64.rpm libcmap4-32bit-2.4.5-12.3.1.x86_64.rpm libcorosync-devel-2.4.5-12.3.1.x86_64.rpm libcorosync_common4-2.4.5-12.3.1.x86_64.rpm libcorosync_common4-32bit-2.4.5-12.3.1.x86_64.rpm libcpg4-2.4.5-12.3.1.x86_64.rpm libcpg4-32bit-2.4.5-12.3.1.x86_64.rpm libquorum5-2.4.5-12.3.1.x86_64.rpm libquorum5-32bit-2.4.5-12.3.1.x86_64.rpm libsam4-2.4.5-12.3.1.x86_64.rpm libsam4-32bit-2.4.5-12.3.1.x86_64.rpm libtotem_pg5-2.4.5-12.3.1.x86_64.rpm libtotem_pg5-32bit-2.4.5-12.3.1.x86_64.rpm libvotequorum8-2.4.5-12.3.1.x86_64.rpm libvotequorum8-32bit-2.4.5-12.3.1.x86_64.rpm corosync-2.4.5-12.3.1.s390x.rpm corosync-qdevice-2.4.5-12.3.1.s390x.rpm corosync-qnetd-2.4.5-12.3.1.s390x.rpm corosync-testagents-2.4.5-12.3.1.s390x.rpm libcfg6-2.4.5-12.3.1.s390x.rpm libcmap4-2.4.5-12.3.1.s390x.rpm libcorosync-devel-2.4.5-12.3.1.s390x.rpm libcorosync_common4-2.4.5-12.3.1.s390x.rpm libcpg4-2.4.5-12.3.1.s390x.rpm libquorum5-2.4.5-12.3.1.s390x.rpm libsam4-2.4.5-12.3.1.s390x.rpm libtotem_pg5-2.4.5-12.3.1.s390x.rpm libvotequorum8-2.4.5-12.3.1.s390x.rpm corosync-2.4.5-12.3.1.ppc64le.rpm corosync-qdevice-2.4.5-12.3.1.ppc64le.rpm corosync-qnetd-2.4.5-12.3.1.ppc64le.rpm corosync-testagents-2.4.5-12.3.1.ppc64le.rpm libcfg6-2.4.5-12.3.1.ppc64le.rpm libcmap4-2.4.5-12.3.1.ppc64le.rpm libcorosync-devel-2.4.5-12.3.1.ppc64le.rpm libcorosync_common4-2.4.5-12.3.1.ppc64le.rpm libcpg4-2.4.5-12.3.1.ppc64le.rpm libquorum5-2.4.5-12.3.1.ppc64le.rpm libsam4-2.4.5-12.3.1.ppc64le.rpm libtotem_pg5-2.4.5-12.3.1.ppc64le.rpm libvotequorum8-2.4.5-12.3.1.ppc64le.rpm corosync-2.4.5-12.3.1.aarch64.rpm corosync-qdevice-2.4.5-12.3.1.aarch64.rpm corosync-qnetd-2.4.5-12.3.1.aarch64.rpm corosync-testagents-2.4.5-12.3.1.aarch64.rpm libcfg6-2.4.5-12.3.1.aarch64.rpm libcmap4-2.4.5-12.3.1.aarch64.rpm libcorosync-devel-2.4.5-12.3.1.aarch64.rpm libcorosync_common4-2.4.5-12.3.1.aarch64.rpm libcpg4-2.4.5-12.3.1.aarch64.rpm libquorum5-2.4.5-12.3.1.aarch64.rpm libsam4-2.4.5-12.3.1.aarch64.rpm libtotem_pg5-2.4.5-12.3.1.aarch64.rpm libvotequorum8-2.4.5-12.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-3183 Recommended update for lsvpd low SUSE Updates openSUSE-SLE 15.3 This update for lsvpd fixes the following issues: - Drop upstreamed patches that are already fixed in the sources itself. lsvpd-1.7.12-3.12.1.ppc64le.rpm lsvpd-1.7.12-3.12.1.src.rpm openSUSE-SLE-15.3-2021-2907 Recommended update for resource-agents moderate SUSE Updates openSUSE-SLE 15.3 This update for resource-agents fixes the following issues: - Fixed an issue when SAP Instance fails to detect SAP unit files for 'systemd'. (bsc#1189535) ldirectord-4.8.0+git30.d0077df0-8.11.1.x86_64.rpm monitoring-plugins-metadata-4.8.0+git30.d0077df0-8.11.1.noarch.rpm resource-agents-4.8.0+git30.d0077df0-8.11.1.src.rpm resource-agents-4.8.0+git30.d0077df0-8.11.1.x86_64.rpm ldirectord-4.8.0+git30.d0077df0-8.11.1.s390x.rpm resource-agents-4.8.0+git30.d0077df0-8.11.1.s390x.rpm ldirectord-4.8.0+git30.d0077df0-8.11.1.ppc64le.rpm resource-agents-4.8.0+git30.d0077df0-8.11.1.ppc64le.rpm ldirectord-4.8.0+git30.d0077df0-8.11.1.aarch64.rpm resource-agents-4.8.0+git30.d0077df0-8.11.1.aarch64.rpm openSUSE-SLE-15.3-2021-2872 Security update for php7 important SUSE Updates openSUSE-SLE 15.3 This update for php7 fixes the following issues: - CVE-2020-36193: Fixed Archive_Tar directory traversal due to inadequate checking of symbolic links (bsc#1189591). php7-7.2.5-4.82.1.src.rpm php7-wddx-7.2.5-4.82.1.x86_64.rpm php7-wddx-7.2.5-4.82.1.s390x.rpm php7-wddx-7.2.5-4.82.1.ppc64le.rpm php7-wddx-7.2.5-4.82.1.aarch64.rpm openSUSE-SLE-15.3-2021-3018 Security update for php7-pear important SUSE Updates openSUSE-SLE 15.3 This update for php7-pear fixes the following issues: - CVE-2020-36193: Fixed Archive_Tar directory traversal due to inadequate checking of symbolic links (bsc#1189591). php7-pear-1.10.21-3.6.1.noarch.rpm php7-pear-1.10.21-3.6.1.src.rpm php7-pecl-1.10.21-3.6.1.noarch.rpm openSUSE-SLE-15.3-2021-3127 Recommended update for gimp moderate SUSE Updates openSUSE-SLE 15.3 This update for gimp fixes the following issues: - Recurse directories when looking for python plugins (bsc#1180362) gimp-2.10.12-3.6.2.src.rpm gimp-plugins-python-2.10.12-3.6.2.x86_64.rpm gimp-plugins-python-2.10.12-3.6.2.s390x.rpm gimp-plugins-python-2.10.12-3.6.2.ppc64le.rpm gimp-plugins-python-2.10.12-3.6.2.aarch64.rpm openSUSE-SLE-15.3-2021-2974 Recommended update for librdkafka important SUSE Updates openSUSE-SLE 15.3 This update for librdkafka fixes the following issue: - Fixed thread creation on SUSE Linux Enterprise Server 15 SP3. (bsc#1189792) librdkafka-0.11.6-1.6.1.src.rpm librdkafka-devel-0.11.6-1.6.1.x86_64.rpm librdkafka1-0.11.6-1.6.1.x86_64.rpm librdkafka-devel-0.11.6-1.6.1.s390x.rpm librdkafka1-0.11.6-1.6.1.s390x.rpm librdkafka-devel-0.11.6-1.6.1.ppc64le.rpm librdkafka1-0.11.6-1.6.1.ppc64le.rpm librdkafka-devel-0.11.6-1.6.1.aarch64.rpm librdkafka1-0.11.6-1.6.1.aarch64.rpm openSUSE-SLE-15.3-2021-2897 Recommended update for postfix moderate SUSE Updates openSUSE-SLE 15.3 This update for postfix fixes the following issues: - Include "submissions" service in master configuration (bsc#1189684) postfix-3.5.9-5.6.1.src.rpm postfix-3.5.9-5.6.1.x86_64.rpm postfix-bdb-3.5.9-5.6.1.src.rpm postfix-bdb-3.5.9-5.6.1.x86_64.rpm postfix-bdb-lmdb-3.5.9-5.6.1.x86_64.rpm postfix-devel-3.5.9-5.6.1.x86_64.rpm postfix-doc-3.5.9-5.6.1.noarch.rpm postfix-ldap-3.5.9-5.6.1.x86_64.rpm postfix-mysql-3.5.9-5.6.1.x86_64.rpm postfix-postgresql-3.5.9-5.6.1.x86_64.rpm postfix-3.5.9-5.6.1.s390x.rpm postfix-bdb-3.5.9-5.6.1.s390x.rpm postfix-bdb-lmdb-3.5.9-5.6.1.s390x.rpm postfix-devel-3.5.9-5.6.1.s390x.rpm postfix-ldap-3.5.9-5.6.1.s390x.rpm postfix-mysql-3.5.9-5.6.1.s390x.rpm postfix-postgresql-3.5.9-5.6.1.s390x.rpm postfix-3.5.9-5.6.1.ppc64le.rpm postfix-bdb-3.5.9-5.6.1.ppc64le.rpm postfix-bdb-lmdb-3.5.9-5.6.1.ppc64le.rpm postfix-devel-3.5.9-5.6.1.ppc64le.rpm postfix-ldap-3.5.9-5.6.1.ppc64le.rpm postfix-mysql-3.5.9-5.6.1.ppc64le.rpm postfix-postgresql-3.5.9-5.6.1.ppc64le.rpm postfix-3.5.9-5.6.1.aarch64.rpm postfix-bdb-3.5.9-5.6.1.aarch64.rpm postfix-bdb-lmdb-3.5.9-5.6.1.aarch64.rpm postfix-devel-3.5.9-5.6.1.aarch64.rpm postfix-ldap-3.5.9-5.6.1.aarch64.rpm postfix-mysql-3.5.9-5.6.1.aarch64.rpm postfix-postgresql-3.5.9-5.6.1.aarch64.rpm openSUSE-SLE-15.3-2021-3052 Recommended update for lshw moderate SUSE Updates openSUSE-SLE 15.3 This update for lshw fixes the following issues: - Update to version B.02.19.2+git.20210619 (jsc#SLE-19399) lshw-B.02.19.2+git.20210619-3.9.1.src.rpm lshw-B.02.19.2+git.20210619-3.9.1.x86_64.rpm lshw-gui-B.02.19.2+git.20210619-3.9.1.x86_64.rpm lshw-lang-B.02.19.2+git.20210619-3.9.1.noarch.rpm lshw-B.02.19.2+git.20210619-3.9.1.s390x.rpm lshw-gui-B.02.19.2+git.20210619-3.9.1.s390x.rpm lshw-B.02.19.2+git.20210619-3.9.1.ppc64le.rpm lshw-gui-B.02.19.2+git.20210619-3.9.1.ppc64le.rpm lshw-B.02.19.2+git.20210619-3.9.1.aarch64.rpm lshw-gui-B.02.19.2+git.20210619-3.9.1.aarch64.rpm openSUSE-SLE-15.3-2021-3161 Recommended update for salt moderate SUSE Updates openSUSE-SLE 15.3 This update for salt fixes the following issues: - Fix wrong relative paths resolution with Jinja renderer when importing subdirectories - Don't pass 'shell="/sbin/nologin"' to 'onlyif/unless' checks (bsc#1188259) - Add missing 'aarch64' to rpm package architectures - Fix failing tests for 'CMDRunRedirect' - Fix failing unit test for systemd - Fix error handling in openscap module (bsc#1188647) - Better handling of bad public keys from minions (bsc#1189040) - Add standalone formulas configuration for salt minion and remove salt-master requirement (bsc#1168327) python3-salt-3002.2-50.1.12.1.x86_64.rpm True salt-3002.2-50.1.12.1.src.rpm True salt-3002.2-50.1.12.1.x86_64.rpm True salt-api-3002.2-50.1.12.1.x86_64.rpm True salt-bash-completion-3002.2-50.1.12.1.noarch.rpm True salt-cloud-3002.2-50.1.12.1.x86_64.rpm True salt-doc-3002.2-50.1.12.1.x86_64.rpm True salt-fish-completion-3002.2-50.1.12.1.noarch.rpm True salt-master-3002.2-50.1.12.1.x86_64.rpm True salt-minion-3002.2-50.1.12.1.x86_64.rpm True salt-proxy-3002.2-50.1.12.1.x86_64.rpm True salt-ssh-3002.2-50.1.12.1.x86_64.rpm True salt-standalone-formulas-configuration-3002.2-50.1.12.1.x86_64.rpm True salt-syndic-3002.2-50.1.12.1.x86_64.rpm True salt-transactional-update-3002.2-50.1.12.1.x86_64.rpm True salt-zsh-completion-3002.2-50.1.12.1.noarch.rpm True python3-salt-3002.2-50.1.12.1.s390x.rpm True salt-3002.2-50.1.12.1.s390x.rpm True salt-api-3002.2-50.1.12.1.s390x.rpm True salt-cloud-3002.2-50.1.12.1.s390x.rpm True salt-doc-3002.2-50.1.12.1.s390x.rpm True salt-master-3002.2-50.1.12.1.s390x.rpm True salt-minion-3002.2-50.1.12.1.s390x.rpm True salt-proxy-3002.2-50.1.12.1.s390x.rpm True salt-ssh-3002.2-50.1.12.1.s390x.rpm True salt-standalone-formulas-configuration-3002.2-50.1.12.1.s390x.rpm True salt-syndic-3002.2-50.1.12.1.s390x.rpm True salt-transactional-update-3002.2-50.1.12.1.s390x.rpm True python3-salt-3002.2-50.1.12.1.ppc64le.rpm True salt-3002.2-50.1.12.1.ppc64le.rpm True salt-api-3002.2-50.1.12.1.ppc64le.rpm True salt-cloud-3002.2-50.1.12.1.ppc64le.rpm True salt-doc-3002.2-50.1.12.1.ppc64le.rpm True salt-master-3002.2-50.1.12.1.ppc64le.rpm True salt-minion-3002.2-50.1.12.1.ppc64le.rpm True salt-proxy-3002.2-50.1.12.1.ppc64le.rpm True salt-ssh-3002.2-50.1.12.1.ppc64le.rpm True salt-standalone-formulas-configuration-3002.2-50.1.12.1.ppc64le.rpm True salt-syndic-3002.2-50.1.12.1.ppc64le.rpm True salt-transactional-update-3002.2-50.1.12.1.ppc64le.rpm True python3-salt-3002.2-50.1.12.1.aarch64.rpm True salt-3002.2-50.1.12.1.aarch64.rpm True salt-api-3002.2-50.1.12.1.aarch64.rpm True salt-cloud-3002.2-50.1.12.1.aarch64.rpm True salt-doc-3002.2-50.1.12.1.aarch64.rpm True salt-master-3002.2-50.1.12.1.aarch64.rpm True salt-minion-3002.2-50.1.12.1.aarch64.rpm True salt-proxy-3002.2-50.1.12.1.aarch64.rpm True salt-ssh-3002.2-50.1.12.1.aarch64.rpm True salt-standalone-formulas-configuration-3002.2-50.1.12.1.aarch64.rpm True salt-syndic-3002.2-50.1.12.1.aarch64.rpm True salt-transactional-update-3002.2-50.1.12.1.aarch64.rpm True openSUSE-SLE-15.3-2021-2932 Recommended update for suse-migration-services critical SUSE Updates openSUSE-SLE 15.3 This update for suse-migration-services fixes the following issues: - Bump version: 2.0.30 → 2.0.31 - Remove SMT references (#223) SMT is no longer supported by SUSE and users are encouraged to migrate to RMT. We want users to use RMT servers, or SCC as targets for receiving system updates. Also improve requirements description and make the requirements for the repository server more explicit w.r.t. availability of the proper channels. - Add comment for lower case and reflect that on test - Update env and log it - In case of preserving the proxy file add those settings to the environment before starting the migration - Log environment variables, this information is helpful if a proxy is set (see bsc#1188594) suse-migration-services-2.0.31-1.40.1.noarch.rpm suse-migration-services-2.0.31-1.40.1.src.rpm openSUSE-SLE-15.3-2021-3229 Recommended update for autoyast2 moderate SUSE Updates openSUSE-SLE 15.3 This update for autoyast2 fixes the following issues: - Fixed handling of the "final_reboot" and "final_halt" options, add the custom scripts only once and avoid displaying a warning popup during installation. (bsc#1188356) - Copy the init-scripts to the right location during 1st stage. (bsc#1188360) - Ensure closing notification pop-ups even if a user script was not executed to prevent "No widget with ID ..." error pop-up. (bsc#1188930, bsc#1188716) autoyast2-4.3.89-3.22.1.noarch.rpm autoyast2-4.3.89-3.22.1.src.rpm autoyast2-installation-4.3.89-3.22.1.noarch.rpm openSUSE-SLE-15.3-2021-3015 Recommended update for ceph moderate SUSE Updates openSUSE-SLE 15.3 This update for ceph fixes the following issues: - cls/rgw: look for plane entries in non-ascii plain namespace too (bsc#1184517) - rgw: check object locks in multi-object delete (bsc#1185246) - mgr/zabbix: adapt zabbix_sender default path (bsc#1186348) - mgr/cephadm: pass --container-init to "cephadm deploy" if specified (bsc#1188979) - mgr/dashboard: Downstream branding: Adapt latest upstream changes to branded navigation component (bsc#1189173) - qa/tasks/salt_manager: allow gatherlogs for files in subdir - qa/tasks/ceph_salt: gather /var/log/ceph/cephadm.out - mgr/zabbix: adapt zabbix_sender default path (bsc#1186348) - Revert "cephadm: default container_init to False" (bsc#1188979) - mgr/cephadm: alias rgw-nfs -> nfs (bsc#1181291) - mgr/cephadm: on ssh connection error, advice chmod 0600 (bsc#1183561) - Update _constraints: only honor physical memory, not 'any memory' (e.g. swap). ceph-15.2.14.84+gb6e5642e260-3.31.1.src.rpm ceph-15.2.14.84+gb6e5642e260-3.31.1.x86_64.rpm ceph-base-15.2.14.84+gb6e5642e260-3.31.1.x86_64.rpm ceph-common-15.2.14.84+gb6e5642e260-3.31.1.x86_64.rpm ceph-fuse-15.2.14.84+gb6e5642e260-3.31.1.x86_64.rpm ceph-grafana-dashboards-15.2.14.84+gb6e5642e260-3.31.1.noarch.rpm ceph-immutable-object-cache-15.2.14.84+gb6e5642e260-3.31.1.x86_64.rpm ceph-mds-15.2.14.84+gb6e5642e260-3.31.1.x86_64.rpm ceph-mgr-15.2.14.84+gb6e5642e260-3.31.1.x86_64.rpm ceph-mgr-cephadm-15.2.14.84+gb6e5642e260-3.31.1.noarch.rpm ceph-mgr-dashboard-15.2.14.84+gb6e5642e260-3.31.1.noarch.rpm ceph-mgr-diskprediction-cloud-15.2.14.84+gb6e5642e260-3.31.1.noarch.rpm ceph-mgr-diskprediction-local-15.2.14.84+gb6e5642e260-3.31.1.noarch.rpm ceph-mgr-k8sevents-15.2.14.84+gb6e5642e260-3.31.1.noarch.rpm ceph-mgr-modules-core-15.2.14.84+gb6e5642e260-3.31.1.noarch.rpm ceph-mgr-rook-15.2.14.84+gb6e5642e260-3.31.1.noarch.rpm ceph-mon-15.2.14.84+gb6e5642e260-3.31.1.x86_64.rpm ceph-osd-15.2.14.84+gb6e5642e260-3.31.1.x86_64.rpm ceph-prometheus-alerts-15.2.14.84+gb6e5642e260-3.31.1.noarch.rpm ceph-radosgw-15.2.14.84+gb6e5642e260-3.31.1.x86_64.rpm ceph-test-15.2.14.84+gb6e5642e260-3.31.1.src.rpm ceph-test-15.2.14.84+gb6e5642e260-3.31.1.x86_64.rpm cephadm-15.2.14.84+gb6e5642e260-3.31.1.noarch.rpm cephfs-shell-15.2.14.84+gb6e5642e260-3.31.1.x86_64.rpm libcephfs-devel-15.2.14.84+gb6e5642e260-3.31.1.x86_64.rpm libcephfs2-15.2.14.84+gb6e5642e260-3.31.1.x86_64.rpm librados-devel-15.2.14.84+gb6e5642e260-3.31.1.x86_64.rpm librados2-15.2.14.84+gb6e5642e260-3.31.1.x86_64.rpm libradospp-devel-15.2.14.84+gb6e5642e260-3.31.1.x86_64.rpm librbd-devel-15.2.14.84+gb6e5642e260-3.31.1.x86_64.rpm librbd1-15.2.14.84+gb6e5642e260-3.31.1.x86_64.rpm librgw-devel-15.2.14.84+gb6e5642e260-3.31.1.x86_64.rpm librgw2-15.2.14.84+gb6e5642e260-3.31.1.x86_64.rpm python3-ceph-argparse-15.2.14.84+gb6e5642e260-3.31.1.x86_64.rpm python3-ceph-common-15.2.14.84+gb6e5642e260-3.31.1.x86_64.rpm python3-cephfs-15.2.14.84+gb6e5642e260-3.31.1.x86_64.rpm python3-rados-15.2.14.84+gb6e5642e260-3.31.1.x86_64.rpm python3-rbd-15.2.14.84+gb6e5642e260-3.31.1.x86_64.rpm python3-rgw-15.2.14.84+gb6e5642e260-3.31.1.x86_64.rpm rados-objclass-devel-15.2.14.84+gb6e5642e260-3.31.1.x86_64.rpm rbd-fuse-15.2.14.84+gb6e5642e260-3.31.1.x86_64.rpm rbd-mirror-15.2.14.84+gb6e5642e260-3.31.1.x86_64.rpm rbd-nbd-15.2.14.84+gb6e5642e260-3.31.1.x86_64.rpm ceph-15.2.14.84+gb6e5642e260-3.31.1.s390x.rpm ceph-base-15.2.14.84+gb6e5642e260-3.31.1.s390x.rpm ceph-common-15.2.14.84+gb6e5642e260-3.31.1.s390x.rpm ceph-fuse-15.2.14.84+gb6e5642e260-3.31.1.s390x.rpm ceph-immutable-object-cache-15.2.14.84+gb6e5642e260-3.31.1.s390x.rpm ceph-mds-15.2.14.84+gb6e5642e260-3.31.1.s390x.rpm ceph-mgr-15.2.14.84+gb6e5642e260-3.31.1.s390x.rpm ceph-mon-15.2.14.84+gb6e5642e260-3.31.1.s390x.rpm ceph-osd-15.2.14.84+gb6e5642e260-3.31.1.s390x.rpm ceph-radosgw-15.2.14.84+gb6e5642e260-3.31.1.s390x.rpm cephfs-shell-15.2.14.84+gb6e5642e260-3.31.1.s390x.rpm libcephfs-devel-15.2.14.84+gb6e5642e260-3.31.1.s390x.rpm libcephfs2-15.2.14.84+gb6e5642e260-3.31.1.s390x.rpm librados-devel-15.2.14.84+gb6e5642e260-3.31.1.s390x.rpm librados2-15.2.14.84+gb6e5642e260-3.31.1.s390x.rpm libradospp-devel-15.2.14.84+gb6e5642e260-3.31.1.s390x.rpm librbd-devel-15.2.14.84+gb6e5642e260-3.31.1.s390x.rpm librbd1-15.2.14.84+gb6e5642e260-3.31.1.s390x.rpm librgw-devel-15.2.14.84+gb6e5642e260-3.31.1.s390x.rpm librgw2-15.2.14.84+gb6e5642e260-3.31.1.s390x.rpm python3-ceph-argparse-15.2.14.84+gb6e5642e260-3.31.1.s390x.rpm python3-ceph-common-15.2.14.84+gb6e5642e260-3.31.1.s390x.rpm python3-cephfs-15.2.14.84+gb6e5642e260-3.31.1.s390x.rpm python3-rados-15.2.14.84+gb6e5642e260-3.31.1.s390x.rpm python3-rbd-15.2.14.84+gb6e5642e260-3.31.1.s390x.rpm python3-rgw-15.2.14.84+gb6e5642e260-3.31.1.s390x.rpm rados-objclass-devel-15.2.14.84+gb6e5642e260-3.31.1.s390x.rpm rbd-fuse-15.2.14.84+gb6e5642e260-3.31.1.s390x.rpm rbd-mirror-15.2.14.84+gb6e5642e260-3.31.1.s390x.rpm rbd-nbd-15.2.14.84+gb6e5642e260-3.31.1.s390x.rpm ceph-15.2.14.84+gb6e5642e260-3.31.1.ppc64le.rpm ceph-base-15.2.14.84+gb6e5642e260-3.31.1.ppc64le.rpm ceph-common-15.2.14.84+gb6e5642e260-3.31.1.ppc64le.rpm ceph-fuse-15.2.14.84+gb6e5642e260-3.31.1.ppc64le.rpm ceph-immutable-object-cache-15.2.14.84+gb6e5642e260-3.31.1.ppc64le.rpm ceph-mds-15.2.14.84+gb6e5642e260-3.31.1.ppc64le.rpm ceph-mgr-15.2.14.84+gb6e5642e260-3.31.1.ppc64le.rpm ceph-mon-15.2.14.84+gb6e5642e260-3.31.1.ppc64le.rpm ceph-osd-15.2.14.84+gb6e5642e260-3.31.1.ppc64le.rpm ceph-radosgw-15.2.14.84+gb6e5642e260-3.31.1.ppc64le.rpm cephfs-shell-15.2.14.84+gb6e5642e260-3.31.1.ppc64le.rpm libcephfs-devel-15.2.14.84+gb6e5642e260-3.31.1.ppc64le.rpm libcephfs2-15.2.14.84+gb6e5642e260-3.31.1.ppc64le.rpm librados-devel-15.2.14.84+gb6e5642e260-3.31.1.ppc64le.rpm librados2-15.2.14.84+gb6e5642e260-3.31.1.ppc64le.rpm libradospp-devel-15.2.14.84+gb6e5642e260-3.31.1.ppc64le.rpm librbd-devel-15.2.14.84+gb6e5642e260-3.31.1.ppc64le.rpm librbd1-15.2.14.84+gb6e5642e260-3.31.1.ppc64le.rpm librgw-devel-15.2.14.84+gb6e5642e260-3.31.1.ppc64le.rpm librgw2-15.2.14.84+gb6e5642e260-3.31.1.ppc64le.rpm python3-ceph-argparse-15.2.14.84+gb6e5642e260-3.31.1.ppc64le.rpm python3-ceph-common-15.2.14.84+gb6e5642e260-3.31.1.ppc64le.rpm python3-cephfs-15.2.14.84+gb6e5642e260-3.31.1.ppc64le.rpm python3-rados-15.2.14.84+gb6e5642e260-3.31.1.ppc64le.rpm python3-rbd-15.2.14.84+gb6e5642e260-3.31.1.ppc64le.rpm python3-rgw-15.2.14.84+gb6e5642e260-3.31.1.ppc64le.rpm rados-objclass-devel-15.2.14.84+gb6e5642e260-3.31.1.ppc64le.rpm rbd-fuse-15.2.14.84+gb6e5642e260-3.31.1.ppc64le.rpm rbd-mirror-15.2.14.84+gb6e5642e260-3.31.1.ppc64le.rpm rbd-nbd-15.2.14.84+gb6e5642e260-3.31.1.ppc64le.rpm ceph-15.2.14.84+gb6e5642e260-3.31.1.aarch64.rpm ceph-base-15.2.14.84+gb6e5642e260-3.31.1.aarch64.rpm ceph-common-15.2.14.84+gb6e5642e260-3.31.1.aarch64.rpm ceph-fuse-15.2.14.84+gb6e5642e260-3.31.1.aarch64.rpm ceph-immutable-object-cache-15.2.14.84+gb6e5642e260-3.31.1.aarch64.rpm ceph-mds-15.2.14.84+gb6e5642e260-3.31.1.aarch64.rpm ceph-mgr-15.2.14.84+gb6e5642e260-3.31.1.aarch64.rpm ceph-mon-15.2.14.84+gb6e5642e260-3.31.1.aarch64.rpm ceph-osd-15.2.14.84+gb6e5642e260-3.31.1.aarch64.rpm ceph-radosgw-15.2.14.84+gb6e5642e260-3.31.1.aarch64.rpm cephfs-shell-15.2.14.84+gb6e5642e260-3.31.1.aarch64.rpm libcephfs-devel-15.2.14.84+gb6e5642e260-3.31.1.aarch64.rpm libcephfs2-15.2.14.84+gb6e5642e260-3.31.1.aarch64.rpm librados-devel-15.2.14.84+gb6e5642e260-3.31.1.aarch64.rpm librados2-15.2.14.84+gb6e5642e260-3.31.1.aarch64.rpm libradospp-devel-15.2.14.84+gb6e5642e260-3.31.1.aarch64.rpm librbd-devel-15.2.14.84+gb6e5642e260-3.31.1.aarch64.rpm librbd1-15.2.14.84+gb6e5642e260-3.31.1.aarch64.rpm librgw-devel-15.2.14.84+gb6e5642e260-3.31.1.aarch64.rpm librgw2-15.2.14.84+gb6e5642e260-3.31.1.aarch64.rpm python3-ceph-argparse-15.2.14.84+gb6e5642e260-3.31.1.aarch64.rpm python3-ceph-common-15.2.14.84+gb6e5642e260-3.31.1.aarch64.rpm python3-cephfs-15.2.14.84+gb6e5642e260-3.31.1.aarch64.rpm python3-rados-15.2.14.84+gb6e5642e260-3.31.1.aarch64.rpm python3-rbd-15.2.14.84+gb6e5642e260-3.31.1.aarch64.rpm python3-rgw-15.2.14.84+gb6e5642e260-3.31.1.aarch64.rpm rados-objclass-devel-15.2.14.84+gb6e5642e260-3.31.1.aarch64.rpm rbd-fuse-15.2.14.84+gb6e5642e260-3.31.1.aarch64.rpm rbd-mirror-15.2.14.84+gb6e5642e260-3.31.1.aarch64.rpm rbd-nbd-15.2.14.84+gb6e5642e260-3.31.1.aarch64.rpm openSUSE-SLE-15.3-2021-2966 Security update for openssl-1_1 low SUSE Updates openSUSE-SLE 15.3 This update for openssl-1_1 fixes the following issues: - CVE-2021-3712: This is an update for the incomplete fix for CVE-2021-3712. Read buffer overruns processing ASN.1 strings (bsc#1189521). libopenssl-1_1-devel-1.1.1d-11.30.1.x86_64.rpm libopenssl-1_1-devel-32bit-1.1.1d-11.30.1.x86_64.rpm libopenssl1_1-1.1.1d-11.30.1.x86_64.rpm libopenssl1_1-32bit-1.1.1d-11.30.1.x86_64.rpm libopenssl1_1-hmac-1.1.1d-11.30.1.x86_64.rpm libopenssl1_1-hmac-32bit-1.1.1d-11.30.1.x86_64.rpm openssl-1_1-1.1.1d-11.30.1.src.rpm openssl-1_1-1.1.1d-11.30.1.x86_64.rpm openssl-1_1-doc-1.1.1d-11.30.1.noarch.rpm libopenssl-1_1-devel-1.1.1d-11.30.1.s390x.rpm libopenssl1_1-1.1.1d-11.30.1.s390x.rpm libopenssl1_1-hmac-1.1.1d-11.30.1.s390x.rpm openssl-1_1-1.1.1d-11.30.1.s390x.rpm libopenssl-1_1-devel-1.1.1d-11.30.1.ppc64le.rpm libopenssl1_1-1.1.1d-11.30.1.ppc64le.rpm libopenssl1_1-hmac-1.1.1d-11.30.1.ppc64le.rpm openssl-1_1-1.1.1d-11.30.1.ppc64le.rpm libopenssl-1_1-devel-1.1.1d-11.30.1.aarch64.rpm libopenssl1_1-1.1.1d-11.30.1.aarch64.rpm libopenssl1_1-hmac-1.1.1d-11.30.1.aarch64.rpm openssl-1_1-1.1.1d-11.30.1.aarch64.rpm openSUSE-SLE-15.3-2021-2994 Security update for openssl-1_0_0 low SUSE Updates openSUSE-SLE 15.3 This update for openssl-1_0_0 fixes the following issues: - CVE-2021-3712: This is an update for the incomplete fix for CVE-2021-3712. Read buffer overruns processing ASN.1 strings (bsc#1189521). libopenssl-1_0_0-devel-1.0.2p-3.43.1.x86_64.rpm libopenssl-1_0_0-devel-32bit-1.0.2p-3.43.1.x86_64.rpm libopenssl10-1.0.2p-3.43.1.x86_64.rpm libopenssl1_0_0-1.0.2p-3.43.1.x86_64.rpm libopenssl1_0_0-32bit-1.0.2p-3.43.1.x86_64.rpm libopenssl1_0_0-hmac-1.0.2p-3.43.1.x86_64.rpm libopenssl1_0_0-hmac-32bit-1.0.2p-3.43.1.x86_64.rpm libopenssl1_0_0-steam-1.0.2p-3.43.1.x86_64.rpm libopenssl1_0_0-steam-32bit-1.0.2p-3.43.1.x86_64.rpm openssl-1_0_0-1.0.2p-3.43.1.src.rpm openssl-1_0_0-1.0.2p-3.43.1.x86_64.rpm openssl-1_0_0-cavs-1.0.2p-3.43.1.x86_64.rpm openssl-1_0_0-doc-1.0.2p-3.43.1.noarch.rpm libopenssl-1_0_0-devel-1.0.2p-3.43.1.s390x.rpm libopenssl10-1.0.2p-3.43.1.s390x.rpm libopenssl1_0_0-1.0.2p-3.43.1.s390x.rpm libopenssl1_0_0-hmac-1.0.2p-3.43.1.s390x.rpm libopenssl1_0_0-steam-1.0.2p-3.43.1.s390x.rpm openssl-1_0_0-1.0.2p-3.43.1.s390x.rpm openssl-1_0_0-cavs-1.0.2p-3.43.1.s390x.rpm libopenssl-1_0_0-devel-1.0.2p-3.43.1.ppc64le.rpm libopenssl10-1.0.2p-3.43.1.ppc64le.rpm libopenssl1_0_0-1.0.2p-3.43.1.ppc64le.rpm libopenssl1_0_0-hmac-1.0.2p-3.43.1.ppc64le.rpm libopenssl1_0_0-steam-1.0.2p-3.43.1.ppc64le.rpm openssl-1_0_0-1.0.2p-3.43.1.ppc64le.rpm openssl-1_0_0-cavs-1.0.2p-3.43.1.ppc64le.rpm libopenssl-1_0_0-devel-1.0.2p-3.43.1.aarch64.rpm libopenssl10-1.0.2p-3.43.1.aarch64.rpm libopenssl1_0_0-1.0.2p-3.43.1.aarch64.rpm libopenssl1_0_0-hmac-1.0.2p-3.43.1.aarch64.rpm libopenssl1_0_0-steam-1.0.2p-3.43.1.aarch64.rpm openssl-1_0_0-1.0.2p-3.43.1.aarch64.rpm openssl-1_0_0-cavs-1.0.2p-3.43.1.aarch64.rpm openSUSE-SLE-15.3-2021-2962 Recommended update for runc critical SUSE Updates openSUSE-SLE 15.3 This update for runc fixes the following issues: - Fixed an issue when toolbox container fails to start. (bsc#1189743) runc-1.0.0~rc93-1.17.1.src.rpm runc-1.0.0~rc93-1.17.1.x86_64.rpm runc-1.0.0~rc93-1.17.1.s390x.rpm runc-1.0.0~rc93-1.17.1.ppc64le.rpm runc-1.0.0~rc93-1.17.1.aarch64.rpm openSUSE-SLE-15.3-2021-3186 Recommended update for gtk3 moderate SUSE Updates openSUSE-SLE 15.3 This update for gtk3 fixes the following issue: - Ensure printer entries from Avahi are usable (bsc#1094486, bsc#1189238). gettext-its-gtk3-3.24.20-3.6.1.x86_64.rpm gtk3-3.24.20-3.6.1.src.rpm gtk3-branding-upstream-3.24.20-3.6.1.noarch.rpm gtk3-data-3.24.20-3.6.1.noarch.rpm gtk3-devel-3.24.20-3.6.1.x86_64.rpm gtk3-devel-32bit-3.24.20-3.6.1.x86_64.rpm gtk3-devel-doc-3.24.20-3.6.1.x86_64.rpm gtk3-doc-3.24.20-3.6.1.src.rpm gtk3-immodule-amharic-3.24.20-3.6.1.x86_64.rpm gtk3-immodule-amharic-32bit-3.24.20-3.6.1.x86_64.rpm gtk3-immodule-broadway-3.24.20-3.6.1.x86_64.rpm gtk3-immodule-inuktitut-3.24.20-3.6.1.x86_64.rpm gtk3-immodule-inuktitut-32bit-3.24.20-3.6.1.x86_64.rpm gtk3-immodule-multipress-3.24.20-3.6.1.x86_64.rpm gtk3-immodule-multipress-32bit-3.24.20-3.6.1.x86_64.rpm gtk3-immodule-thai-3.24.20-3.6.1.x86_64.rpm gtk3-immodule-thai-32bit-3.24.20-3.6.1.x86_64.rpm gtk3-immodule-tigrigna-3.24.20-3.6.1.x86_64.rpm gtk3-immodule-tigrigna-32bit-3.24.20-3.6.1.x86_64.rpm gtk3-immodule-vietnamese-3.24.20-3.6.1.x86_64.rpm gtk3-immodule-vietnamese-32bit-3.24.20-3.6.1.x86_64.rpm gtk3-immodule-wayland-3.24.20-3.6.1.x86_64.rpm gtk3-immodule-wayland-32bit-3.24.20-3.6.1.x86_64.rpm gtk3-immodule-xim-3.24.20-3.6.1.x86_64.rpm gtk3-immodule-xim-32bit-3.24.20-3.6.1.x86_64.rpm gtk3-lang-3.24.20-3.6.1.noarch.rpm gtk3-schema-3.24.20-3.6.1.noarch.rpm gtk3-tools-3.24.20-3.6.1.x86_64.rpm gtk3-tools-32bit-3.24.20-3.6.1.x86_64.rpm libgtk-3-0-3.24.20-3.6.1.x86_64.rpm libgtk-3-0-32bit-3.24.20-3.6.1.x86_64.rpm typelib-1_0-Gtk-3_0-3.24.20-3.6.1.x86_64.rpm gettext-its-gtk3-3.24.20-3.6.1.s390x.rpm gtk3-devel-3.24.20-3.6.1.s390x.rpm gtk3-devel-doc-3.24.20-3.6.1.s390x.rpm gtk3-immodule-amharic-3.24.20-3.6.1.s390x.rpm gtk3-immodule-broadway-3.24.20-3.6.1.s390x.rpm gtk3-immodule-inuktitut-3.24.20-3.6.1.s390x.rpm gtk3-immodule-multipress-3.24.20-3.6.1.s390x.rpm gtk3-immodule-thai-3.24.20-3.6.1.s390x.rpm gtk3-immodule-tigrigna-3.24.20-3.6.1.s390x.rpm gtk3-immodule-vietnamese-3.24.20-3.6.1.s390x.rpm gtk3-immodule-wayland-3.24.20-3.6.1.s390x.rpm gtk3-immodule-xim-3.24.20-3.6.1.s390x.rpm gtk3-tools-3.24.20-3.6.1.s390x.rpm libgtk-3-0-3.24.20-3.6.1.s390x.rpm typelib-1_0-Gtk-3_0-3.24.20-3.6.1.s390x.rpm gettext-its-gtk3-3.24.20-3.6.1.ppc64le.rpm gtk3-devel-3.24.20-3.6.1.ppc64le.rpm gtk3-devel-doc-3.24.20-3.6.1.ppc64le.rpm gtk3-immodule-amharic-3.24.20-3.6.1.ppc64le.rpm gtk3-immodule-broadway-3.24.20-3.6.1.ppc64le.rpm gtk3-immodule-inuktitut-3.24.20-3.6.1.ppc64le.rpm gtk3-immodule-multipress-3.24.20-3.6.1.ppc64le.rpm gtk3-immodule-thai-3.24.20-3.6.1.ppc64le.rpm gtk3-immodule-tigrigna-3.24.20-3.6.1.ppc64le.rpm gtk3-immodule-vietnamese-3.24.20-3.6.1.ppc64le.rpm gtk3-immodule-wayland-3.24.20-3.6.1.ppc64le.rpm gtk3-immodule-xim-3.24.20-3.6.1.ppc64le.rpm gtk3-tools-3.24.20-3.6.1.ppc64le.rpm libgtk-3-0-3.24.20-3.6.1.ppc64le.rpm typelib-1_0-Gtk-3_0-3.24.20-3.6.1.ppc64le.rpm gettext-its-gtk3-3.24.20-3.6.1.aarch64.rpm gtk3-devel-3.24.20-3.6.1.aarch64.rpm gtk3-devel-doc-3.24.20-3.6.1.aarch64.rpm gtk3-immodule-amharic-3.24.20-3.6.1.aarch64.rpm gtk3-immodule-broadway-3.24.20-3.6.1.aarch64.rpm gtk3-immodule-inuktitut-3.24.20-3.6.1.aarch64.rpm gtk3-immodule-multipress-3.24.20-3.6.1.aarch64.rpm gtk3-immodule-thai-3.24.20-3.6.1.aarch64.rpm gtk3-immodule-tigrigna-3.24.20-3.6.1.aarch64.rpm gtk3-immodule-vietnamese-3.24.20-3.6.1.aarch64.rpm gtk3-immodule-wayland-3.24.20-3.6.1.aarch64.rpm gtk3-immodule-xim-3.24.20-3.6.1.aarch64.rpm gtk3-tools-3.24.20-3.6.1.aarch64.rpm libgtk-3-0-3.24.20-3.6.1.aarch64.rpm typelib-1_0-Gtk-3_0-3.24.20-3.6.1.aarch64.rpm openSUSE-SLE-15.3-2021-3005 Security update for libaom important SUSE Updates openSUSE-SLE 15.3 This update for libaom fixes the following issues: - CVE-2021-30475: Fixed buffer overflow in aom_dsp/noise_model.c (bsc#1189497). aom-tools-1.0.0-3.3.1.x86_64.rpm libaom-1.0.0-3.3.1.src.rpm libaom-devel-1.0.0-3.3.1.x86_64.rpm libaom-devel-doc-1.0.0-3.3.1.noarch.rpm libaom0-1.0.0-3.3.1.x86_64.rpm libaom0-32bit-1.0.0-3.3.1.x86_64.rpm aom-tools-1.0.0-3.3.1.s390x.rpm libaom-devel-1.0.0-3.3.1.s390x.rpm libaom0-1.0.0-3.3.1.s390x.rpm aom-tools-1.0.0-3.3.1.ppc64le.rpm libaom-devel-1.0.0-3.3.1.ppc64le.rpm libaom0-1.0.0-3.3.1.ppc64le.rpm aom-tools-1.0.0-3.3.1.aarch64.rpm libaom-devel-1.0.0-3.3.1.aarch64.rpm libaom0-1.0.0-3.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-3202 Security update for linuxptp moderate SUSE Updates openSUSE-SLE 15.3 This update for linuxptp fixes the following issues: - CVE-2021-3570: Fixed messageLength validation field of incoming messages (bsc#1187646). linuxptp-3.1.1-3.3.1.src.rpm linuxptp-3.1.1-3.3.1.x86_64.rpm linuxptp-3.1.1-3.3.1.s390x.rpm linuxptp-3.1.1-3.3.1.ppc64le.rpm linuxptp-3.1.1-3.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-2975 Security update for haproxy moderate SUSE Updates openSUSE-SLE 15.3 This update for haproxy fixes the following issues: - CVE-2021-40346: Fixed request smuggling vulnerability in HTX (bsc#1189877). haproxy-2.0.14-11.11.1.src.rpm haproxy-2.0.14-11.11.1.x86_64.rpm haproxy-2.0.14-11.11.1.s390x.rpm haproxy-2.0.14-11.11.1.ppc64le.rpm haproxy-2.0.14-11.11.1.aarch64.rpm openSUSE-SLE-15.3-2021-3004 Security update for libtpms important SUSE Updates openSUSE-SLE 15.3 This update for libtpms fixes the following issues: - CVE-2021-3746: Fixed out-of-bounds access via specially crafted TPM 2 command packets (bsc#1189935). libtpms-0.8.2-3.3.1.src.rpm libtpms-devel-0.8.2-3.3.1.x86_64.rpm libtpms0-0.8.2-3.3.1.x86_64.rpm libtpms-devel-0.8.2-3.3.1.s390x.rpm libtpms0-0.8.2-3.3.1.s390x.rpm libtpms-devel-0.8.2-3.3.1.ppc64le.rpm libtpms0-0.8.2-3.3.1.ppc64le.rpm libtpms-devel-0.8.2-3.3.1.aarch64.rpm libtpms0-0.8.2-3.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-3201 Security update for hivex moderate SUSE Updates openSUSE-SLE 15.3 This update for hivex fixes the following issues: - CVE-2021-3622: Fixed stack overflow due to recursive call of _get_children() (bsc#1189060). hivex-1.3.14-5.6.1.src.rpm hivex-1.3.14-5.6.1.x86_64.rpm hivex-devel-1.3.14-5.6.1.x86_64.rpm hivex-lang-1.3.14-5.6.1.noarch.rpm libhivex0-1.3.14-5.6.1.x86_64.rpm ocaml-hivex-1.3.14-5.6.1.x86_64.rpm ocaml-hivex-devel-1.3.14-5.6.1.x86_64.rpm perl-Win-Hivex-1.3.14-5.6.1.x86_64.rpm python-hivex-1.3.14-5.6.1.x86_64.rpm hivex-1.3.14-5.6.1.s390x.rpm hivex-devel-1.3.14-5.6.1.s390x.rpm libhivex0-1.3.14-5.6.1.s390x.rpm ocaml-hivex-1.3.14-5.6.1.s390x.rpm ocaml-hivex-devel-1.3.14-5.6.1.s390x.rpm perl-Win-Hivex-1.3.14-5.6.1.s390x.rpm python-hivex-1.3.14-5.6.1.s390x.rpm hivex-1.3.14-5.6.1.ppc64le.rpm hivex-devel-1.3.14-5.6.1.ppc64le.rpm libhivex0-1.3.14-5.6.1.ppc64le.rpm ocaml-hivex-1.3.14-5.6.1.ppc64le.rpm ocaml-hivex-devel-1.3.14-5.6.1.ppc64le.rpm perl-Win-Hivex-1.3.14-5.6.1.ppc64le.rpm python-hivex-1.3.14-5.6.1.ppc64le.rpm hivex-1.3.14-5.6.1.aarch64.rpm hivex-devel-1.3.14-5.6.1.aarch64.rpm libhivex0-1.3.14-5.6.1.aarch64.rpm ocaml-hivex-1.3.14-5.6.1.aarch64.rpm ocaml-hivex-devel-1.3.14-5.6.1.aarch64.rpm perl-Win-Hivex-1.3.14-5.6.1.aarch64.rpm python-hivex-1.3.14-5.6.1.aarch64.rpm openSUSE-SLE-15.3-2021-3194 Security update for grilo important SUSE Updates openSUSE-SLE 15.3 This update for grilo fixes the following issues: - CVE-2021-39365: Fixed missing TLS certificate verification (bsc#1189839). grilo-0.3.12-3.3.1.src.rpm grilo-devel-0.3.12-3.3.1.x86_64.rpm grilo-lang-0.3.12-3.3.1.noarch.rpm grilo-tools-0.3.12-3.3.1.x86_64.rpm libgrilo-0_3-0-0.3.12-3.3.1.x86_64.rpm libgrlnet-0_3-0-0.3.12-3.3.1.x86_64.rpm libgrlpls-0_3-0-0.3.12-3.3.1.x86_64.rpm typelib-1_0-Grl-0_3-0.3.12-3.3.1.x86_64.rpm typelib-1_0-GrlNet-0_3-0.3.12-3.3.1.x86_64.rpm typelib-1_0-GrlPls-0_3-0.3.12-3.3.1.x86_64.rpm grilo-devel-0.3.12-3.3.1.s390x.rpm grilo-tools-0.3.12-3.3.1.s390x.rpm libgrilo-0_3-0-0.3.12-3.3.1.s390x.rpm libgrlnet-0_3-0-0.3.12-3.3.1.s390x.rpm libgrlpls-0_3-0-0.3.12-3.3.1.s390x.rpm typelib-1_0-Grl-0_3-0.3.12-3.3.1.s390x.rpm typelib-1_0-GrlNet-0_3-0.3.12-3.3.1.s390x.rpm typelib-1_0-GrlPls-0_3-0.3.12-3.3.1.s390x.rpm grilo-devel-0.3.12-3.3.1.ppc64le.rpm grilo-tools-0.3.12-3.3.1.ppc64le.rpm libgrilo-0_3-0-0.3.12-3.3.1.ppc64le.rpm libgrlnet-0_3-0-0.3.12-3.3.1.ppc64le.rpm libgrlpls-0_3-0-0.3.12-3.3.1.ppc64le.rpm typelib-1_0-Grl-0_3-0.3.12-3.3.1.ppc64le.rpm typelib-1_0-GrlNet-0_3-0.3.12-3.3.1.ppc64le.rpm typelib-1_0-GrlPls-0_3-0.3.12-3.3.1.ppc64le.rpm grilo-devel-0.3.12-3.3.1.aarch64.rpm grilo-tools-0.3.12-3.3.1.aarch64.rpm libgrilo-0_3-0-0.3.12-3.3.1.aarch64.rpm libgrlnet-0_3-0-0.3.12-3.3.1.aarch64.rpm libgrlpls-0_3-0-0.3.12-3.3.1.aarch64.rpm typelib-1_0-Grl-0_3-0.3.12-3.3.1.aarch64.rpm typelib-1_0-GrlNet-0_3-0.3.12-3.3.1.aarch64.rpm typelib-1_0-GrlPls-0_3-0.3.12-3.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-3169 Feature update for SUSE Manager 4.2.2 Proxy and Server moderate SUSE Updates openSUSE-SLE 15.3 This update provides the following packages to SUSE Manager 4.2.2 Proxy and Server: ansible: - ansible and ansible-doc are added to SUSE Manager Proxy as L2 supported golang-github-prometheus-alertmanager: - golang-github-prometheus-alertmanager is added to SUSE Manager Proxy as L3 supported python-python-memcached: - python-python-memcached is added to SUSE Manager Proxy as L3 supported python-redis: - python-redis is added to SUSE Manager Proxy as L3 supported system-user-prometheus: - system-user-prometheus is added to SUSE Manager Proxy as L3 supported ansible-2.9.21-1.7.1.noarch.rpm ansible-2.9.21-1.7.1.src.rpm ansible-doc-2.9.21-1.7.1.noarch.rpm ansible-test-2.9.21-1.7.1.noarch.rpm python-python-memcached-1.59-3.7.1.src.rpm python-redis-3.4.1-3.5.1.src.rpm python2-python-memcached-1.59-3.7.1.noarch.rpm python2-redis-3.4.1-3.5.1.noarch.rpm python3-python-memcached-1.59-3.7.1.noarch.rpm python3-redis-3.4.1-3.5.1.noarch.rpm system-user-prometheus-1.0.0-3.10.1.noarch.rpm system-user-prometheus-1.0.0-3.10.1.src.rpm openSUSE-SLE-15.3-2021-3168 Feature update for SUSE Manager 4.2.2 Proxy and Server moderate SUSE Updates openSUSE-SLE 15.3 This update provides the following package to SUSE Manager 4.2.2 Proxy python-pyvmomi: - python-pyvmomi is added to SUSE Manager Proxy as L3 supported. python-pyvmomi-6.7.3-3.2.1.src.rpm python2-pyvmomi-6.7.3-3.2.1.noarch.rpm python3-pyvmomi-6.7.3-3.2.1.noarch.rpm openSUSE-SLE-15.3-2021-3166 Feature update for SUSE Manager 4.2.2 Proxy moderate SUSE Updates openSUSE-SLE 15.3 This update provides the following package to SUSE Manager 4.2.2 Proxy golang-github-prometheus-prometheus: - golang-github-prometheus-prometheus is added to SUSE Manager Proxy as L3 supported. golang-github-prometheus-prometheus-2.27.1-3.10.1.src.rpm golang-github-prometheus-prometheus-2.27.1-3.10.1.x86_64.rpm golang-github-prometheus-prometheus-2.27.1-3.10.1.s390x.rpm golang-github-prometheus-prometheus-2.27.1-3.10.1.ppc64le.rpm golang-github-prometheus-prometheus-2.27.1-3.10.1.aarch64.rpm openSUSE-SLE-15.3-2021-3211 Security update for nodejs14 important SUSE Updates openSUSE-SLE 15.3 This update for nodejs14 fixes the following issues: - CVE-2021-3672: Fixed missing input validation on hostnames (bsc#1188881). - CVE-2021-22931: Fixed improper handling of untypical characters in domain names (bsc#1189370). - CVE-2021-22940: Use after free on close http2 on stream canceling (bsc#1189368) - CVE-2021-22939: Incomplete validation of rejectUnauthorized parameter (bsc#1189369) - CVE-2021-22930: Fixed use after free on close http2 on stream canceling (bsc#1188917). nodejs14-14.17.5-5.15.5.src.rpm nodejs14-14.17.5-5.15.5.x86_64.rpm nodejs14-devel-14.17.5-5.15.5.x86_64.rpm nodejs14-docs-14.17.5-5.15.5.noarch.rpm npm14-14.17.5-5.15.5.x86_64.rpm nodejs14-14.17.5-5.15.5.s390x.rpm nodejs14-devel-14.17.5-5.15.5.s390x.rpm npm14-14.17.5-5.15.5.s390x.rpm nodejs14-14.17.5-5.15.5.ppc64le.rpm nodejs14-devel-14.17.5-5.15.5.ppc64le.rpm npm14-14.17.5-5.15.5.ppc64le.rpm nodejs14-14.17.5-5.15.5.aarch64.rpm nodejs14-devel-14.17.5-5.15.5.aarch64.rpm npm14-14.17.5-5.15.5.aarch64.rpm openSUSE-SLE-15.3-2021-3255 Security update for postgresql13 moderate SUSE Updates openSUSE-SLE 15.3 This update for postgresql13 fixes the following issues: - CVE-2021-3677: Fixed memory disclosure in certain queries (bsc#1189748). - Fixed build with llvm12 on s390x (bsc#1185952). - Re-enabled icu for PostgreSQL 10 (bsc#1179945). - Made the dependency of postgresqlXX-server-devel on llvm and clang optional (bsc#1187751). - llvm12 breaks PostgreSQL 11 and 12 on s390x. Use llvm11 as a workaround (bsc#1185952). libecpg6-13.4-5.16.2.x86_64.rpm libecpg6-32bit-13.4-5.16.2.x86_64.rpm libpq5-13.4-5.16.2.x86_64.rpm libpq5-32bit-13.4-5.16.2.x86_64.rpm postgresql13-13.4-5.16.1.src.rpm postgresql13-13.4-5.16.2.src.rpm postgresql13-13.4-5.16.2.x86_64.rpm postgresql13-contrib-13.4-5.16.2.x86_64.rpm postgresql13-devel-13.4-5.16.2.x86_64.rpm postgresql13-docs-13.4-5.16.2.noarch.rpm postgresql13-llvmjit-13.4-5.16.2.x86_64.rpm postgresql13-plperl-13.4-5.16.2.x86_64.rpm postgresql13-plpython-13.4-5.16.2.x86_64.rpm postgresql13-pltcl-13.4-5.16.2.x86_64.rpm postgresql13-server-13.4-5.16.2.x86_64.rpm postgresql13-server-devel-13.4-5.16.2.x86_64.rpm postgresql13-test-13.4-5.16.2.x86_64.rpm libecpg6-13.4-5.16.2.s390x.rpm libpq5-13.4-5.16.2.s390x.rpm postgresql13-13.4-5.16.2.s390x.rpm postgresql13-contrib-13.4-5.16.2.s390x.rpm postgresql13-devel-13.4-5.16.2.s390x.rpm postgresql13-llvmjit-13.4-5.16.2.s390x.rpm postgresql13-plperl-13.4-5.16.2.s390x.rpm postgresql13-plpython-13.4-5.16.2.s390x.rpm postgresql13-pltcl-13.4-5.16.2.s390x.rpm postgresql13-server-13.4-5.16.2.s390x.rpm postgresql13-server-devel-13.4-5.16.2.s390x.rpm postgresql13-test-13.4-5.16.2.s390x.rpm libecpg6-13.4-5.16.2.ppc64le.rpm libpq5-13.4-5.16.2.ppc64le.rpm postgresql13-13.4-5.16.2.ppc64le.rpm postgresql13-contrib-13.4-5.16.2.ppc64le.rpm postgresql13-devel-13.4-5.16.2.ppc64le.rpm postgresql13-llvmjit-13.4-5.16.2.ppc64le.rpm postgresql13-plperl-13.4-5.16.2.ppc64le.rpm postgresql13-plpython-13.4-5.16.2.ppc64le.rpm postgresql13-pltcl-13.4-5.16.2.ppc64le.rpm postgresql13-server-13.4-5.16.2.ppc64le.rpm postgresql13-server-devel-13.4-5.16.2.ppc64le.rpm postgresql13-test-13.4-5.16.2.ppc64le.rpm libecpg6-13.4-5.16.2.aarch64.rpm libpq5-13.4-5.16.2.aarch64.rpm postgresql13-13.4-5.16.2.aarch64.rpm postgresql13-contrib-13.4-5.16.2.aarch64.rpm postgresql13-devel-13.4-5.16.2.aarch64.rpm postgresql13-llvmjit-13.4-5.16.2.aarch64.rpm postgresql13-plperl-13.4-5.16.2.aarch64.rpm postgresql13-plpython-13.4-5.16.2.aarch64.rpm postgresql13-pltcl-13.4-5.16.2.aarch64.rpm postgresql13-server-13.4-5.16.2.aarch64.rpm postgresql13-server-devel-13.4-5.16.2.aarch64.rpm postgresql13-test-13.4-5.16.2.aarch64.rpm openSUSE-SLE-15.3-2021-3256 Security update for postgresql12 moderate SUSE Updates openSUSE-SLE 15.3 This update for postgresql12 fixes the following issues: - CVE-2021-3677: Fixed memory disclosure in certain queries (bsc#1189748). - Fixed build with llvm12 on s390x (bsc#1185952). - Re-enabled icu for PostgreSQL 10 (bsc#1179945). - Made the dependency of postgresqlXX-server-devel on llvm and clang optional (bsc#1187751). - llvm12 breaks PostgreSQL 11 and 12 on s390x. Use llvm11 as a workaround (bsc#1185952). postgresql12-12.8-8.23.2.src.rpm postgresql12-12.8-8.23.2.x86_64.rpm postgresql12-contrib-12.8-8.23.2.x86_64.rpm postgresql12-devel-12.8-8.23.2.x86_64.rpm postgresql12-docs-12.8-8.23.2.noarch.rpm postgresql12-llvmjit-12.8-8.23.2.x86_64.rpm postgresql12-plperl-12.8-8.23.2.x86_64.rpm postgresql12-plpython-12.8-8.23.2.x86_64.rpm postgresql12-pltcl-12.8-8.23.2.x86_64.rpm postgresql12-server-12.8-8.23.2.x86_64.rpm postgresql12-server-devel-12.8-8.23.2.x86_64.rpm postgresql12-test-12.8-8.23.2.x86_64.rpm postgresql12-12.8-8.23.2.s390x.rpm postgresql12-contrib-12.8-8.23.2.s390x.rpm postgresql12-devel-12.8-8.23.2.s390x.rpm postgresql12-llvmjit-12.8-8.23.2.s390x.rpm postgresql12-plperl-12.8-8.23.2.s390x.rpm postgresql12-plpython-12.8-8.23.2.s390x.rpm postgresql12-pltcl-12.8-8.23.2.s390x.rpm postgresql12-server-12.8-8.23.2.s390x.rpm postgresql12-server-devel-12.8-8.23.2.s390x.rpm postgresql12-test-12.8-8.23.2.s390x.rpm postgresql12-12.8-8.23.2.ppc64le.rpm postgresql12-contrib-12.8-8.23.2.ppc64le.rpm postgresql12-devel-12.8-8.23.2.ppc64le.rpm postgresql12-llvmjit-12.8-8.23.2.ppc64le.rpm postgresql12-plperl-12.8-8.23.2.ppc64le.rpm postgresql12-plpython-12.8-8.23.2.ppc64le.rpm postgresql12-pltcl-12.8-8.23.2.ppc64le.rpm postgresql12-server-12.8-8.23.2.ppc64le.rpm postgresql12-server-devel-12.8-8.23.2.ppc64le.rpm postgresql12-test-12.8-8.23.2.ppc64le.rpm postgresql12-12.8-8.23.2.aarch64.rpm postgresql12-contrib-12.8-8.23.2.aarch64.rpm postgresql12-devel-12.8-8.23.2.aarch64.rpm postgresql12-llvmjit-12.8-8.23.2.aarch64.rpm postgresql12-plperl-12.8-8.23.2.aarch64.rpm postgresql12-plpython-12.8-8.23.2.aarch64.rpm postgresql12-pltcl-12.8-8.23.2.aarch64.rpm postgresql12-server-12.8-8.23.2.aarch64.rpm postgresql12-server-devel-12.8-8.23.2.aarch64.rpm postgresql12-test-12.8-8.23.2.aarch64.rpm openSUSE-SLE-15.3-2021-2971 Security update for ntfs-3g_ntfsprogs important SUSE Updates openSUSE-SLE 15.3 This update for ntfs-3g_ntfsprogs fixes the following issues: Update to version 2021.8.22 (bsc#1189720): * Fixed compile error when building with libfuse < 2.8.0 * Fixed obsolete macros in configure.ac * Signalled support of UTIME_OMIT to external libfuse2 * Fixed an improper macro usage in ntfscp.c * Updated the repository change in the README * Fixed vulnerability threats caused by maliciously tampered NTFS partitions * Security fixes: CVE-2021-33285, CVE-2021-33286, CVE-2021-33287, CVE-2021-33289, CVE-2021-35266, CVE-2021-35267, CVE-2021-35268, CVE-2021-35269, CVE-2021-39251, CVE-2021-39252, CVE-2021-39253, CVE_2021-39254, CVE-2021-39255, CVE-2021-39256, CVE-2021-39257, CVE-2021-39258, CVE-2021-39259, CVE-2021-39260, CVE-2021-39261, CVE-2021-39262, CVE-2021-39263. - Library soversion is now 89 * Changes in version 2017.3.23 * Delegated processing of special reparse points to external plugins * Allowed kernel cacheing by lowntfs-3g when not using Posix ACLs * Enabled fallback to read-only mount when the volume is hibernated * Made a full check for whether an extended attribute is allowed * Moved secaudit and usermap to ntfsprogs (now ntfssecaudit and ntfsusermap) * Enabled encoding broken UTF-16 into broken UTF-8 * Autoconfigured selecting <sys/sysmacros.h> vs <sys/mkdev> * Allowed using the full library API on systems without extended attributes support * Fixed DISABLE_PLUGINS as the condition for not using plugins * Corrected validation of multi sector transfer protected records * Denied creating/removing files from $Extend * Returned the size of locale encoded target as the size of symlinks libntfs-3g-devel-2021.8.22-3.8.1.x86_64.rpm libntfs-3g87-2021.8.22-3.8.1.x86_64.rpm ntfs-3g-2021.8.22-3.8.1.x86_64.rpm ntfs-3g_ntfsprogs-2021.8.22-3.8.1.src.rpm ntfsprogs-2021.8.22-3.8.1.x86_64.rpm ntfsprogs-extra-2021.8.22-3.8.1.x86_64.rpm libntfs-3g-devel-2021.8.22-3.8.1.s390x.rpm libntfs-3g87-2021.8.22-3.8.1.s390x.rpm ntfs-3g-2021.8.22-3.8.1.s390x.rpm ntfsprogs-2021.8.22-3.8.1.s390x.rpm ntfsprogs-extra-2021.8.22-3.8.1.s390x.rpm libntfs-3g-devel-2021.8.22-3.8.1.ppc64le.rpm libntfs-3g87-2021.8.22-3.8.1.ppc64le.rpm ntfs-3g-2021.8.22-3.8.1.ppc64le.rpm ntfsprogs-2021.8.22-3.8.1.ppc64le.rpm ntfsprogs-extra-2021.8.22-3.8.1.ppc64le.rpm libntfs-3g-devel-2021.8.22-3.8.1.aarch64.rpm libntfs-3g87-2021.8.22-3.8.1.aarch64.rpm ntfs-3g-2021.8.22-3.8.1.aarch64.rpm ntfsprogs-2021.8.22-3.8.1.aarch64.rpm ntfsprogs-extra-2021.8.22-3.8.1.aarch64.rpm openSUSE-SLE-15.3-2021-2977 Recommended update for usbutils moderate SUSE Updates openSUSE-SLE 15.3 This update for usbutils fixes the following issue: - Update to version 0.14 (jira#SLE-19451) usbutils-014-3.3.1.src.rpm usbutils-014-3.3.1.x86_64.rpm usbutils-014-3.3.1.s390x.rpm usbutils-014-3.3.1.ppc64le.rpm usbutils-014-3.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-3167 Recommended update for SUSE Manager Client Tools moderate SUSE Updates openSUSE-SLE 15.3 This update fixes the following issues: dracut-saltboot: - Fix dependencies of python libs (bsc#1188846) koan: - Only recommend 'virt-install' to unbreak scenarios where it is not available in the enabled modules of the system - The xend functionality is not expected to work since this the underlying tool was removed - Python 2 compatibility was fully removed - Add support for EFI reinstallation of a client (bsc#1170823) mgr-daemon: - Update translation strings spacecmd: - Update translation strings - Make schedule_deletearchived to get all actions without display limit - Allow passing a date limit for 'schedule_deletearchived' on 'spacecmd' (bsc#1181223) - Use correct API endpoint in 'list_proxies' (bsc#1188042) - Add schedule_deletearchived to bulk delete archived actions (bsc#1181223) spacewalk-client-tools: - Update translation strings dracut-saltboot-0.1.1628156312.dbd0dec-1.30.1.noarch.rpm dracut-saltboot-0.1.1628156312.dbd0dec-1.30.1.src.rpm koan-3.0.1-4.20.1.noarch.rpm koan-3.0.1-4.20.1.src.rpm mgr-daemon-4.2.8-1.29.1.noarch.rpm mgr-daemon-4.2.8-1.29.1.src.rpm python2-spacewalk-check-4.2.13-3.47.2.noarch.rpm python2-spacewalk-client-setup-4.2.13-3.47.2.noarch.rpm python2-spacewalk-client-tools-4.2.13-3.47.2.noarch.rpm python3-spacewalk-check-4.2.13-3.47.2.noarch.rpm python3-spacewalk-client-setup-4.2.13-3.47.2.noarch.rpm python3-spacewalk-client-tools-4.2.13-3.47.2.noarch.rpm spacecmd-4.2.12-3.65.1.noarch.rpm spacecmd-4.2.12-3.65.1.src.rpm spacewalk-check-4.2.13-3.47.2.noarch.rpm spacewalk-client-setup-4.2.13-3.47.2.noarch.rpm spacewalk-client-tools-4.2.13-3.47.2.noarch.rpm spacewalk-client-tools-4.2.13-3.47.2.src.rpm openSUSE-SLE-15.3-2021-3193 Security update for ffmpeg important SUSE Updates openSUSE-SLE 15.3 This update for ffmpeg fixes the following issues: - CVE-2021-38171: Fixed adts_decode_extradata in libavformat/adtsenc.c to check the init_get_bits return value (bsc#1189724). ffmpeg-3.4.2-11.11.1.src.rpm ffmpeg-3.4.2-11.11.1.x86_64.rpm ffmpeg-private-devel-3.4.2-11.11.1.x86_64.rpm libavcodec-devel-3.4.2-11.11.1.x86_64.rpm libavcodec57-3.4.2-11.11.1.x86_64.rpm libavcodec57-32bit-3.4.2-11.11.1.x86_64.rpm libavdevice-devel-3.4.2-11.11.1.x86_64.rpm libavdevice57-3.4.2-11.11.1.x86_64.rpm libavdevice57-32bit-3.4.2-11.11.1.x86_64.rpm libavfilter-devel-3.4.2-11.11.1.x86_64.rpm libavfilter6-3.4.2-11.11.1.x86_64.rpm libavfilter6-32bit-3.4.2-11.11.1.x86_64.rpm libavformat-devel-3.4.2-11.11.1.x86_64.rpm libavformat57-3.4.2-11.11.1.x86_64.rpm libavformat57-32bit-3.4.2-11.11.1.x86_64.rpm libavresample-devel-3.4.2-11.11.1.x86_64.rpm libavresample3-3.4.2-11.11.1.x86_64.rpm libavresample3-32bit-3.4.2-11.11.1.x86_64.rpm libavutil-devel-3.4.2-11.11.1.x86_64.rpm libavutil55-3.4.2-11.11.1.x86_64.rpm libavutil55-32bit-3.4.2-11.11.1.x86_64.rpm libpostproc-devel-3.4.2-11.11.1.x86_64.rpm libpostproc54-3.4.2-11.11.1.x86_64.rpm libpostproc54-32bit-3.4.2-11.11.1.x86_64.rpm libswresample-devel-3.4.2-11.11.1.x86_64.rpm libswresample2-3.4.2-11.11.1.x86_64.rpm libswresample2-32bit-3.4.2-11.11.1.x86_64.rpm libswscale-devel-3.4.2-11.11.1.x86_64.rpm libswscale4-3.4.2-11.11.1.x86_64.rpm libswscale4-32bit-3.4.2-11.11.1.x86_64.rpm ffmpeg-3.4.2-11.11.1.s390x.rpm ffmpeg-private-devel-3.4.2-11.11.1.s390x.rpm libavcodec-devel-3.4.2-11.11.1.s390x.rpm libavcodec57-3.4.2-11.11.1.s390x.rpm libavdevice-devel-3.4.2-11.11.1.s390x.rpm libavdevice57-3.4.2-11.11.1.s390x.rpm libavfilter-devel-3.4.2-11.11.1.s390x.rpm libavfilter6-3.4.2-11.11.1.s390x.rpm libavformat-devel-3.4.2-11.11.1.s390x.rpm libavformat57-3.4.2-11.11.1.s390x.rpm libavresample-devel-3.4.2-11.11.1.s390x.rpm libavresample3-3.4.2-11.11.1.s390x.rpm libavutil-devel-3.4.2-11.11.1.s390x.rpm libavutil55-3.4.2-11.11.1.s390x.rpm libpostproc-devel-3.4.2-11.11.1.s390x.rpm libpostproc54-3.4.2-11.11.1.s390x.rpm libswresample-devel-3.4.2-11.11.1.s390x.rpm libswresample2-3.4.2-11.11.1.s390x.rpm libswscale-devel-3.4.2-11.11.1.s390x.rpm libswscale4-3.4.2-11.11.1.s390x.rpm ffmpeg-3.4.2-11.11.1.ppc64le.rpm ffmpeg-private-devel-3.4.2-11.11.1.ppc64le.rpm libavcodec-devel-3.4.2-11.11.1.ppc64le.rpm libavcodec57-3.4.2-11.11.1.ppc64le.rpm libavdevice-devel-3.4.2-11.11.1.ppc64le.rpm libavdevice57-3.4.2-11.11.1.ppc64le.rpm libavfilter-devel-3.4.2-11.11.1.ppc64le.rpm libavfilter6-3.4.2-11.11.1.ppc64le.rpm libavformat-devel-3.4.2-11.11.1.ppc64le.rpm libavformat57-3.4.2-11.11.1.ppc64le.rpm libavresample-devel-3.4.2-11.11.1.ppc64le.rpm libavresample3-3.4.2-11.11.1.ppc64le.rpm libavutil-devel-3.4.2-11.11.1.ppc64le.rpm libavutil55-3.4.2-11.11.1.ppc64le.rpm libpostproc-devel-3.4.2-11.11.1.ppc64le.rpm libpostproc54-3.4.2-11.11.1.ppc64le.rpm libswresample-devel-3.4.2-11.11.1.ppc64le.rpm libswresample2-3.4.2-11.11.1.ppc64le.rpm libswscale-devel-3.4.2-11.11.1.ppc64le.rpm libswscale4-3.4.2-11.11.1.ppc64le.rpm ffmpeg-3.4.2-11.11.1.aarch64.rpm ffmpeg-private-devel-3.4.2-11.11.1.aarch64.rpm libavcodec-devel-3.4.2-11.11.1.aarch64.rpm libavcodec57-3.4.2-11.11.1.aarch64.rpm libavdevice-devel-3.4.2-11.11.1.aarch64.rpm libavdevice57-3.4.2-11.11.1.aarch64.rpm libavfilter-devel-3.4.2-11.11.1.aarch64.rpm libavfilter6-3.4.2-11.11.1.aarch64.rpm libavformat-devel-3.4.2-11.11.1.aarch64.rpm libavformat57-3.4.2-11.11.1.aarch64.rpm libavresample-devel-3.4.2-11.11.1.aarch64.rpm libavresample3-3.4.2-11.11.1.aarch64.rpm libavutil-devel-3.4.2-11.11.1.aarch64.rpm libavutil55-3.4.2-11.11.1.aarch64.rpm libpostproc-devel-3.4.2-11.11.1.aarch64.rpm libpostproc54-3.4.2-11.11.1.aarch64.rpm libswresample-devel-3.4.2-11.11.1.aarch64.rpm libswresample2-3.4.2-11.11.1.aarch64.rpm libswscale-devel-3.4.2-11.11.1.aarch64.rpm libswscale4-3.4.2-11.11.1.aarch64.rpm openSUSE-SLE-15.3-2021-3136 Recommended update for SUSEConnect moderate SUSE Updates openSUSE-SLE 15.3 This update for SUSEConnect fixes the following issues: - Disallow registering via SUSEConnect if the system is managed by SUSE Manager. - Add subscription name to output of 'SUSEConnect --status'. - Send payload of GET requests as part of the url, not in the body. (bsc#1185611) SUSEConnect-0.3.31-13.1.src.rpm SUSEConnect-0.3.31-13.1.x86_64.rpm SUSEConnect-0.3.31-13.1.s390x.rpm SUSEConnect-0.3.31-13.1.ppc64le.rpm SUSEConnect-0.3.31-13.1.aarch64.rpm openSUSE-SLE-15.3-2021-2990 Recommended update for powerpc-utils important SUSE Updates openSUSE-SLE 15.3 This update for powerpc-utils fixes the following issues: - Update from version 1.3.8 to version 1.3.9 (bsc#1189015) - Raise the log rotation threshold to 1MB so that more history is preserved. - Fix checking HCNID array size at boot time - Set autoconnect-slaves on HNV connections. - When trying to detect HNV bond list all connections, not only active ones. - Use hexdump from util-linux rather than xxd from vim. - hcn-init.service: Start together with NetworkManager. - ofpathname: Fix OF to logical FC lookup for multipath and partitions - bootlist: Fix for multipath devices with > 5 paths - Add the missing substring extraction of the partition number from the logical device path so that the partition number is appended to OFPATH when the logical device is a partition. - Introducing 'lparnumascore' that is is computing the LPAR NUMA score for CPU and memory. - This new command detects CPU and memory resources the kernel keep binded to the NUMA node topology of the departure node. It computes a ratio, and print it to the standard output. The ratio is between 0 (worst) and 100 (best). The command is **not** locking '/var/lock/dr_config_lock' so user should ensure that there is not ongoing command impacting the computed scores. This allows the command to be run without special privileges. - Introduce 'of_associativity_to_node' - This device tree related function reads the ibm associativity property of a node and, using the specified 'min_common_deth', returns the NUMA node id - Rename 'is_lsslot_cmd' into 'read_dynamic_memory_v2' - Add manpage for the drmgr utility - Add a check against 'usr_drc_index' which is set when a remove by index operation is done to ensure the NUMA removal code is not triggered in that case. - Add support for the plug ID of a SCSI/SATA host - 'lpartstat': add '-x' option for the security flavor. - The output number means: - 0 = Speculative execution fully enabled - 1 = Speculative execution controls to mitigate user-to-kernel side-channel attacks - 2 = Speculative execution controls to mitigate user-to-kernel and user-to-user side-channel attacks - \- = The running kernel is not exposing the security flavor in '/proc/powerpc/lparcfg' - Introduce NUMA based LMB removal - When the NUMA topology can be read, all the LMBs found in the Device Tree are linked the corresponding node. LMB not associated to node are considered as not used. LMB associated to CPU less node are accounted separately because they will be targeted first to be remove. The LMB are removed from the CPU less nodes to reach an average number LMBs per CPU less node. The removal is done through the remove by DRC index API, allowing to remove a LMB at a time. When the requested amount of LMB could not be removed a partial status is reported. If the NUMA topology can't be read, we fallback using the legacy remove way. - Fix ofpathname race with udev rename - ofpathname: Use NVMe controller physical nsid - Use a loop to check for all related bonding connections and remove them explicitly one by one instead of using xargs - Avoid using 'ifcfg' file for checking bonding interface status - Wait for sysfs device ready when looking up device name - Avoid cleanup of bond interface at boot time when no HNV exists - Adds the option 'ppc64_cpu --version in 'ppc64_cpu --help' in the usage information of ppc64-cpu command. - Clean up dead network config interface after inactive migration - Disable 'vnic' as backup vdevice for migratable 'SR_IOV' - Fix qrydev checking for active interface error - Skip collecting lsdevinfo right before migration. When the LPARs has large number of devices, this can take quite a long time and flood the log message. - Wait for OS ready to lookup device name for configure HNV device. - The hybrid network virtualization is only supported on PowerVM LPAR. Exit the 'hcnmgr' gracefully on other power platform instead of return error. - Optimize 'lsdevinfo' filtering to prevent LPM timeouts (bsc#1189571) powerpc-utils-1.3.9-9.9.1.ppc64le.rpm powerpc-utils-1.3.9-9.9.1.src.rpm openSUSE-SLE-15.3-2021-3146 Optional update for kubevirt low SUSE Updates openSUSE-SLE 15.3 Initial release of Kubevirt for SUSE Linux Enterprise 15 SP3. kubevirt-0.45.0-8.4.3.src.rpm kubevirt-container-disk-0.45.0-8.4.3.x86_64.rpm kubevirt-manifests-0.45.0-8.4.3.x86_64.rpm kubevirt-tests-0.45.0-8.4.3.x86_64.rpm kubevirt-virt-api-0.45.0-8.4.3.x86_64.rpm kubevirt-virt-controller-0.45.0-8.4.3.x86_64.rpm kubevirt-virt-handler-0.45.0-8.4.3.x86_64.rpm kubevirt-virt-launcher-0.45.0-8.4.3.x86_64.rpm kubevirt-virt-operator-0.45.0-8.4.3.x86_64.rpm kubevirt-virtctl-0.45.0-8.4.3.x86_64.rpm openSUSE-SLE-15.3-2021-3173 Recommended update for release-notes-sles low SUSE Updates openSUSE-SLE 15.3 This update for release-notes-sles fixes the following issues: - Added note about NVIDIA vGPU support (jsc#SLE-17881) - Added note about Intel technologies (bsc#1189786) - Added note about ODBC drivers (jsc#SLE-17703) - Added note about NVIDIA BlueField-2 tech preview (jsc#SLE-13565) - Added note about kubevirt-virt-* (bsc#1187693) - Fixed typo in note about compat-libpthread-nonshared (bsc#1188511) - Removed mention of SES (bsc#1188305) release-notes-sles-15.3.20210903-3.9.1.noarch.rpm release-notes-sles-15.3.20210903-3.9.1.src.rpm openSUSE-SLE-15.3-2021-3138 Recommended update for mdadm moderate SUSE Updates openSUSE-SLE 15.3 This update for mdadm fixes the following issues: - Remove Spare drives line from details for external metadata. (bsc#1180661, bsc#1182642) - Arrays with external metadata do not have spare disks directly assigned to volumes; spare disks belong to containers and are moved to arrays when the array is degraded/reshaping. Thus, the display of zero spare disks in volume details is incorrect and can be confusing. - Don't associate spares with other arrays during RAID Examine. (bsc#1180661, bsc#1182642) - Spares in imsm belong to containers, not volumes, and must go into a separate container when assembling the RAID. Remove association spares with other arrays and make Examine print separate containers for spares. Auto assemble without config file already works like this. So make creating a config file and assembling from it consistent with auto assemble. With this change, 'mdadm -Es' will add this line to output if spares are found: 'ARRAY metadata=imsm UUID=00000000:00000000:00000000:00000000' mdadm-4.1-24.6.1.src.rpm mdadm-4.1-24.6.1.x86_64.rpm mdadm-4.1-24.6.1.s390x.rpm mdadm-4.1-24.6.1.ppc64le.rpm mdadm-4.1-24.6.1.aarch64.rpm openSUSE-SLE-15.3-2021-3182 Recommended update for file moderate SUSE Updates openSUSE-SLE 15.3 This update for file fixes the following issues: - Fixes exception thrown by memory allocation problem (bsc#1189996) file-5.32-7.14.1.src.rpm file-5.32-7.14.1.x86_64.rpm file-devel-32bit-5.32-7.14.1.x86_64.rpm file-devel-5.32-7.14.1.x86_64.rpm file-magic-5.32-7.14.1.noarch.rpm libmagic1-32bit-5.32-7.14.1.x86_64.rpm libmagic1-5.32-7.14.1.x86_64.rpm python-magic-5.32-7.14.1.src.rpm python2-magic-5.32-7.14.1.x86_64.rpm python3-magic-5.32-7.14.1.x86_64.rpm file-5.32-7.14.1.s390x.rpm file-devel-5.32-7.14.1.s390x.rpm libmagic1-5.32-7.14.1.s390x.rpm python2-magic-5.32-7.14.1.s390x.rpm python3-magic-5.32-7.14.1.s390x.rpm file-5.32-7.14.1.ppc64le.rpm file-devel-5.32-7.14.1.ppc64le.rpm libmagic1-5.32-7.14.1.ppc64le.rpm python2-magic-5.32-7.14.1.ppc64le.rpm python3-magic-5.32-7.14.1.ppc64le.rpm file-5.32-7.14.1.aarch64.rpm file-devel-5.32-7.14.1.aarch64.rpm libmagic1-5.32-7.14.1.aarch64.rpm python2-magic-5.32-7.14.1.aarch64.rpm python3-magic-5.32-7.14.1.aarch64.rpm openSUSE-SLE-15.3-2021-3223 Recommended update for gnome-shell-extensions moderate SUSE Updates openSUSE-SLE 15.3 This update for gnome-shell-extensions fixes the following issues: - Add gnome-shell-extensions-common as dependency (bsc#1190016 jsc#SLE-20311). gnome-shell-classic-3.34.2-5.12.1.noarch.rpm gnome-shell-classic-session-3.34.2-5.12.1.x86_64.rpm gnome-shell-extension-user-theme-3.34.2-5.12.1.x86_64.rpm gnome-shell-extensions-3.34.2-5.12.1.src.rpm gnome-shell-extensions-common-3.34.2-5.12.1.noarch.rpm gnome-shell-extensions-common-lang-3.34.2-5.12.1.noarch.rpm gnome-shell-classic-session-3.34.2-5.12.1.s390x.rpm gnome-shell-extension-user-theme-3.34.2-5.12.1.s390x.rpm gnome-shell-classic-session-3.34.2-5.12.1.ppc64le.rpm gnome-shell-extension-user-theme-3.34.2-5.12.1.ppc64le.rpm gnome-shell-classic-session-3.34.2-5.12.1.aarch64.rpm gnome-shell-extension-user-theme-3.34.2-5.12.1.aarch64.rpm openSUSE-SLE-15.3-2021-3040 Recommended update for lifecycle-data-sle-module-live-patching moderate SUSE Updates openSUSE-SLE 15.3 This update for lifecycle-data-sle-module-live-patching fixes the following issue: Lifecycle data updates. (bsc#1020320) - Updates for 4_12_14-150_75, 4_12_14-197_99, 5_3_18-24_70, 5_3_18-24_75, 5_3_18-24_78, 5_3_18-59_13, 5_3_18-59_16, 5_3_18-59_19. lifecycle-data-sle-module-live-patching-15-4.60.1.noarch.rpm lifecycle-data-sle-module-live-patching-15-4.60.1.src.rpm openSUSE-SLE-15.3-2021-3022 Recommended update for c-ares important SUSE Updates openSUSE-SLE 15.3 This update for c-ares fixes the following issue: - Allow '_' as part of DNS response. (bsc#1190225) - 'c-ares' 1.17.2 introduced response validation to prevent a security issue, however it was not listing '_' as a valid character for domain name responses which caused issues when a 'CNAME' referenced a 'SRV' record which contained underscores. c-ares-1.17.1+20200724-3.17.1.src.rpm c-ares-devel-1.17.1+20200724-3.17.1.x86_64.rpm c-ares-utils-1.17.1+20200724-3.17.1.x86_64.rpm libcares2-1.17.1+20200724-3.17.1.x86_64.rpm libcares2-32bit-1.17.1+20200724-3.17.1.x86_64.rpm c-ares-devel-1.17.1+20200724-3.17.1.s390x.rpm c-ares-utils-1.17.1+20200724-3.17.1.s390x.rpm libcares2-1.17.1+20200724-3.17.1.s390x.rpm c-ares-devel-1.17.1+20200724-3.17.1.ppc64le.rpm c-ares-utils-1.17.1+20200724-3.17.1.ppc64le.rpm libcares2-1.17.1+20200724-3.17.1.ppc64le.rpm c-ares-devel-1.17.1+20200724-3.17.1.aarch64.rpm c-ares-utils-1.17.1+20200724-3.17.1.aarch64.rpm libcares2-1.17.1+20200724-3.17.1.aarch64.rpm openSUSE-SLE-15.3-2021-3205 Security update for the Linux Kernel important SUSE Updates openSUSE-SLE 15.3 The SUSE Linux Enterprise 15 SP3 kernel was updated to receive various security and bugfixes. The following security bugs were fixed: - CVE-2021-3640: Fixed a Use-After-Free vulnerability in function sco_sock_sendmsg() in the bluetooth stack (bsc#1188172). - CVE-2021-3653: Missing validation of the `int_ctl` VMCB field and allows a malicious L1 guest to enable AVIC support for the L2 guest. (bsc#1189399). - CVE-2021-3656: Missing validation of the the `virt_ext` VMCB field and allows a malicious L1 guest to disable both VMLOAD/VMSAVE intercepts and VLS for the L2 guest (bsc#1189400). - CVE-2021-3679: A lack of CPU resource in tracing module functionality was found in the way user uses trace ring buffer in a specific way. Only privileged local users (with CAP_SYS_ADMIN capability) could use this flaw to starve the resources causing denial of service (bnc#1189057). - CVE-2021-3732: Mounting overlayfs inside an unprivileged user namespace can reveal files (bsc#1189706). - CVE-2021-3739: Fixed a NULL pointer dereference when deleting device by invalid id (bsc#1189832 ). - CVE-2021-3743: Fixed OOB Read in qrtr_endpoint_post (bsc#1189883). - CVE-2021-3753: Fixed race out-of-bounds in virtual terminal handling (bsc#1190025). - CVE-2021-38160: Data corruption or loss could be triggered by an untrusted device that supplies a buf->len value exceeding the buffer size in drivers/char/virtio_console.c (bsc#1190117) - CVE-2021-38198: arch/x86/kvm/mmu/paging_tmpl.h incorrectly computes the access permissions of a shadow page, leading to a missing guest protection page fault (bnc#1189262). - CVE-2021-38204: drivers/usb/host/max3421-hcd.c allowed physically proximate attackers to cause a denial of service (use-after-free and panic) by removing a MAX-3421 USB device in certain situations (bnc#1189291). - CVE-2021-38205: drivers/net/ethernet/xilinx/xilinx_emaclite.c made it easier for attackers to defeat an ASLR protection mechanism because it prints a kernel pointer (i.e., the real IOMEM pointer) (bnc#1189292). - CVE-2021-38207: drivers/net/ethernet/xilinx/ll_temac_main.c allowed remote attackers to cause a denial of service (buffer overflow and lockup) by sending heavy network traffic for about ten minutes (bnc#1189298). - CVE-2021-38166: Fixed an integer overflow and out-of-bounds write when many elements are placed in a single bucket in kernel/bpf/hashtab.c (bnc#1189233 ). - CVE-2021-38209: Fixed allowed observation of changes in any net namespace via net/netfilter/nf_conntrack_standalone.c (bnc#1189393). - CVE-2021-38206: Fixed NULL pointer dereference in the radiotap parser inside the mac80211 subsystem (bnc#1189296). - CVE-2021-34556: Fixed side-channel attack via a Speculative Store Bypass via unprivileged BPF program that could have obtain sensitive information from kernel memory (bsc#1188983). - CVE-2021-35477: Fixed BPF stack frame pointer which could have been abused to disclose content of arbitrary kernel memory (bsc#1188985). - CVE-2021-3759: Unaccounted ipc objects in Linux kernel could have lead to breaking memcg limits and DoS attacks (bsc#1190115). - CVE-2020-12770: Fixed sg_remove_request call in a certain failure cases (bsc#1171420). The following non-security bugs were fixed: - ACPI: NFIT: Fix support for virtual SPA ranges (git-fixes). - ACPI: processor: Clean up acpi_processor_evaluate_cst() (bsc#1175543) - ACPI: processor: Export acpi_processor_evaluate_cst() (bsc#1175543) - ACPI: processor: Export function to claim _CST control (bsc#1175543) - ACPI: processor: Introduce acpi_processor_evaluate_cst() (bsc#1175543) - ACPI: processor: Make ACPI_PROCESSOR_CSTATE depend on ACPI_PROCESSOR (bsc#1175543) - ALSA: hda - fix the 'Capture Switch' value change notifications (git-fixes). - ALSA: hda/hdmi: Add quirk to force pin connectivity on NUC10 (git-fixes). - ALSA: hda/hdmi: fix max DP-MST dev_num for Intel TGL+ platforms (git-fixes). - ALSA: hda/hdmi: let new platforms assign the pcm slot dynamically (git-fixes). - ALSA: hda/realtek - Add ALC285 HP init procedure (git-fixes). - ALSA: hda/realtek - Add type for ALC287 (git-fixes). - ALSA: hda/realtek: Change device names for quirks to barebone names (git-fixes). - ALSA: hda/realtek: Enable 4-speaker output for Dell XPS 15 9510 laptop (git-fixes). - ALSA: hda/realtek: Fix headset mic for Acer SWIFT SF314-56 (ALC256) (git-fixes). - ALSA: hda/realtek: Limit mic boost on HP ProBook 445 G8 (git-fixes). - ALSA: hda/realtek: add mic quirk for Acer SF314-42 (git-fixes). - ALSA: hda/realtek: fix mute led of the HP Pavilion 15-eh1xxx series (git-fixes). - ALSA: hda/realtek: fix mute/micmute LEDs for HP ProBook 650 G8 Notebook PC (git-fixes). - ALSA: hda/via: Apply runtime PM workaround for ASUS B23E (git-fixes). - ALSA: hda: Add quirk for ASUS Flow x13 (git-fixes). - ALSA: hda: Fix hang during shutdown due to link reset (git-fixes). - ALSA: hda: Release controller display power during shutdown/reboot (git-fixes). - ALSA: pcm: Fix mmap breakage without explicit buffer setup (git-fixes). - ALSA: pcm: fix divide error in snd_pcm_lib_ioctl (git-fixes). - ALSA: seq: Fix racy deletion of subscriber (git-fixes). - ALSA: usb-audio: Add registration quirk for JBL Quantum 600 (git-fixes). - ALSA: usb-audio: Avoid unnecessary or invalid connector selection at resume (git-fixes). - ALSA: usb-audio: Fix regression on Sony WALKMAN NW-A45 DAC (git-fixes). - ALSA: usb-audio: Fix superfluous autosuspend recovery (git-fixes). - ALSA: usb-audio: fix incorrect clock source setting (git-fixes). - ASoC: Intel: Skylake: Fix module resource and format selection (git-fixes). - ASoC: Intel: Skylake: Leave data as is when invoking TLV IPCs (git-fixes). - ASoC: Intel: kbl_da7219_max98927: Fix format selection for max98373 (git-fixes). - ASoC: SOF: Intel: hda-ipc: fix reply size checking (git-fixes). - ASoC: amd: Fix reference to PCM buffer address (git-fixes). - ASoC: component: Remove misplaced prefix handling in pin control functions (git-fixes). - ASoC: cs42l42: Correct definition of ADC Volume control (git-fixes). - ASoC: cs42l42: Do not allow SND_SOC_DAIFMT_LEFT_J (git-fixes). - ASoC: cs42l42: Fix LRCLK frame start edge (git-fixes). - ASoC: cs42l42: Fix inversion of ADC Notch Switch control (git-fixes). - ASoC: cs42l42: Remove duplicate control for WNF filter frequency (git-fixes). - ASoC: intel: atom: Fix breakage for PCM buffer address setup (git-fixes). - ASoC: intel: atom: Fix reference to PCM buffer address (git-fixes). - ASoC: mediatek: mt8183: Fix Unbalanced pm_runtime_enable in mt8183_afe_pcm_dev_probe (git-fixes). - ASoC: rt5682: Adjust headset volume button threshold (git-fixes). - ASoC: rt5682: Adjust headset volume button threshold again (git-fixes). - ASoC: rt5682: Fix the issue of garbled recording after powerd_dbus_suspend (git-fixes). - ASoC: ti: j721e-evm: Check for not initialized parent_clk_id (git-fixes). - ASoC: ti: j721e-evm: Fix unbalanced domain activity tracking during startup (git-fixes). - ASoC: tlv320aic31xx: Fix jack detection after suspend (git-fixes). - ASoC: tlv320aic31xx: fix reversed bclk/wclk master bits (git-fixes). - ASoC: uniphier: Fix reference to PCM buffer address (git-fixes). - ASoC: wcd9335: Disable irq on slave ports in the remove function (git-fixes). - ASoC: wcd9335: Fix a double irq free in the remove function (git-fixes). - ASoC: wcd9335: Fix a memory leak in the error handling path of the probe function (git-fixes). - ASoC: xilinx: Fix reference to PCM buffer address (git-fixes). - Avoid double printing SUSE specific flags in mod->taint (bsc#1190413). - Bluetooth: add timeout sanity check to hci_inquiry (git-fixes). - Bluetooth: btusb: Fix a unspported condition to set available debug features (git-fixes). - Bluetooth: btusb: check conditions before enabling USB ALT 3 for WBS (git-fixes). - Bluetooth: defer cleanup of resources in hci_unregister_dev() (git-fixes). - Bluetooth: fix repeated calls to sco_sock_kill (git-fixes). - Bluetooth: hidp: use correct wait queue when removing ctrl_wait (git-fixes). - Bluetooth: increase BTNAMSIZ to 21 chars to fix potential buffer overflow (git-fixes). - Bluetooth: mgmt: Fix wrong opcode in the response for add_adv cmd (git-fixes). - Bluetooth: sco: prevent information leak in sco_conn_defer_accept() (git-fixes). - Drop two intel_int0002_vgpio patches that cause Oops (bsc#1190412) - KVM: VMX: Drop guest CPUID check for VMXE in vmx_set_cr4() (bsc#1188786). - KVM: VMX: Enable machine check support for 32bit targets (bsc#1188787). - KVM: VMX: Explicitly clear RFLAGS.CF and RFLAGS.ZF in VM-Exit RSB path (bsc#1188788). - KVM: VMX: Extend VMXs #AC interceptor to handle split lock #AC in guest (bsc#1187959). - KVM: nVMX: Handle split-lock #AC exceptions that happen in L2 (bsc#1187959). - KVM: nVMX: Really make emulated nested preemption timer pinned (bsc#1188780). - KVM: nVMX: Reset the segment cache when stuffing guest segs (bsc#1188781). - KVM: nVMX: Skip IBPB when switching between vmcs01 and vmcs02 (bsc#1188782). - KVM: nVMX: Sync unsync'd vmcs02 state to vmcs12 on migration (bsc#1188783). - KVM: nVMX: Truncate bits 63:32 of VMCS field on nested check in !64-bit (bsc#1188784). - KVM: x86: Emulate split-lock access as a write in emulator (bsc#1187959). - KVM: x86: bit 8 of non-leaf PDPEs is not reserved (bsc#1188790). - NFS: Correct size calculation for create reply length (bsc#1189870). - NFSv4.1: Do not rebind to the same source port when (bnc#1186264 bnc#1189021) - NFSv4/pNFS: Do not call _nfs4_pnfs_v3_ds_connect multiple times (git-fixes). - NFSv4: Initialise connection to the server in nfs4_alloc_client() (bsc#1040364). - PCI/MSI: Correct misleading comments (git-fixes). - PCI/MSI: Do not set invalid bits in MSI mask (git-fixes). - PCI/MSI: Enable and mask MSI-X early (git-fixes). - PCI/MSI: Enforce MSI[X] entry updates to be visible (git-fixes). - PCI/MSI: Enforce that MSI-X table entry is masked for update (git-fixes). - PCI/MSI: Mask all unused MSI-X entries (git-fixes). - PCI/MSI: Skip masking MSI-X on Xen PV (git-fixes). - PCI/MSI: Use msi_mask_irq() in pci_msi_shutdown() (git-fixes). - PCI: Increase D3 delay for AMD Renoir/Cezanne XHCI (git-fixes). - PCI: PM: Avoid forcing PCI_D0 for wakeup reasons inconsistently (git-fixes). - PCI: PM: Enable PME if it can be signaled from D3cold (git-fixes). - RDMA/bnxt_re: Fix stats counters (bsc#1188231). - SUNRPC: 'Directory with parent 'rpc_clnt' already present!' (bsc#1168202 bsc#1188924). - SUNRPC: Fix the batch tasks count wraparound (git-fixes). - SUNRPC: Should wake up the privileged task firstly (git-fixes). - SUNRPC: defer slow parts of rpc_free_client() to a workqueue (bsc#1168202 bsc#1188924). - SUNRPC: fix use-after-free in rpc_free_client_work() (bsc#1168202 bsc#1188924). - SUNRPC: improve error response to over-size gss credential (bsc#1190022). - SUNRPC: prevent port reuse on transports which do not request it (bnc#1186264 bnc#1189021). - USB: core: Avoid WARNings for 0-length descriptor requests (git-fixes). - USB: serial: ch341: fix character loss at high transfer rates (git-fixes). - USB: serial: ftdi_sio: add device ID for Auto-M3 OP-COM v2 (git-fixes). - USB: serial: option: add Telit FD980 composition 0x1056 (git-fixes). - USB: usbtmc: Fix RCU stall warning (git-fixes). - USB:ehci:fix Kunpeng920 ehci hardware problem (git-fixes). - VMCI: fix NULL pointer dereference when unmapping queue pair (git-fixes). - ath6kl: wmi: fix an error code in ath6kl_wmi_sync_point() (git-fixes). - ath9k: Clear key cache explicitly on disabling hardware (git-fixes). - ath: Use safer key clearing with key cache entries (git-fixes). - bcma: Fix memory leak for internally-handled cores (git-fixes). - bdi: Do not use freezable workqueue (bsc#1189573). - blk-iolatency: error out if blk_get_queue() failed in iolatency_set_limit() (bsc#1189507). - blk-mq-sched: Fix blk_mq_sched_alloc_tags() error handling (bsc#1189506). - blk-wbt: introduce a new disable state to prevent false positive by rwb_enabled() (bsc#1189503). - blk-wbt: make sure throttle is enabled properly (bsc#1189504). - block: fix trace completion for chained bio (bsc#1189505). - bnxt_en: Validate vlan protocol ID on RX packets (jsc#SLE-15075). - brcmfmac: pcie: fix oops on failure to resume and reprobe (git-fixes). - btrfs: Rename __btrfs_alloc_chunk to btrfs_alloc_chunk (bsc#1189077). - btrfs: add a trace class for dumping the current ENOSPC state (bsc#1135481). - btrfs: add a trace point for reserve tickets (bsc#1135481). - btrfs: adjust the flush trace point to include the source (bsc#1135481). - btrfs: check reclaim_size in need_preemptive_reclaim (bsc#1135481). - btrfs: factor out create_chunk() (bsc#1189077). - btrfs: factor out decide_stripe_size() (bsc#1189077). - btrfs: factor out gather_device_info() (bsc#1189077). - btrfs: factor out init_alloc_chunk_ctl (bsc#1189077). - btrfs: fix btrfs_calc_reclaim_metadata_size calculation (bsc#1135481). - btrfs: fix deadlock with concurrent chunk allocations involving system chunks (bsc#1189077). - btrfs: handle invalid profile in chunk allocation (bsc#1189077). - btrfs: implement space clamping for preemptive flushing (bsc#1135481). - btrfs: improve preemptive background space flushing (bsc#1135481). - btrfs: introduce a FORCE_COMMIT_TRANS flush operation (bsc#1135481). - btrfs: introduce alloc_chunk_ctl (bsc#1189077). - btrfs: introduce chunk allocation policy (bsc#1189077). - btrfs: make flush_space take a enum btrfs_flush_state instead of int (bsc#1135481). - btrfs: move the chunk_mutex in btrfs_read_chunk_tree (bsc#1189077). - btrfs: parameterize dev_extent_min for chunk allocation (bsc#1189077). - btrfs: refactor find_free_dev_extent_start() (bsc#1189077). - btrfs: remove FLUSH_DELAYED_REFS from data ENOSPC flushing (bsc#1135481). - btrfs: rename need_do_async_reclaim (bsc#1135481). - btrfs: rework btrfs_calc_reclaim_metadata_size (bsc#1135481). - btrfs: rework chunk allocation to avoid exhaustion of the system chunk array (bsc#1189077). - btrfs: rip out btrfs_space_info::total_bytes_pinned (bsc#1135481). - btrfs: rip the first_ticket_bytes logic from fail_all_tickets (bsc#1135481). - btrfs: simplify the logic in need_preemptive_flushing (bsc#1135481). - btrfs: tracepoints: convert flush states to using EM macros (bsc#1135481). - btrfs: tracepoints: fix btrfs_trigger_flush symbolic string for flags (bsc#1135481). - can: ti_hecc: Fix memleak in ti_hecc_probe (git-fixes). - can: usb: esd_usb2: esd_usb2_rx_event(): fix the interchange of the CAN RX and TX error counters (git-fixes). - ceph: clean up and optimize ceph_check_delayed_caps() (bsc#1187468). - ceph: reduce contention in ceph_check_delayed_caps() (bsc#1187468). - ceph: take snap_empty_lock atomically with snaprealm refcount change (bsc#1189427). - cfg80211: Fix possible memory leak in function cfg80211_bss_update (git-fixes). - cifs: Remove unused inline function is_sysvol_or_netlogon() (bsc#1185902). - cifs: avoid starvation when refreshing dfs cache (bsc#1185902). - cifs: constify get_normalized_path() properly (bsc#1185902). - cifs: do not cargo-cult strndup() (bsc#1185902). - cifs: do not send tree disconnect to ipc shares (bsc#1185902). - cifs: do not share tcp servers with dfs mounts (bsc#1185902). - cifs: do not share tcp sessions of dfs connections (bsc#1185902). - cifs: fix check of dfs interlinks (bsc#1185902). - cifs: fix path comparison and hash calc (bsc#1185902). - cifs: get rid of @noreq param in __dfs_cache_find() (bsc#1185902). - cifs: handle different charsets in dfs cache (bsc#1185902). - cifs: keep referral server sessions alive (bsc#1185902). - cifs: missing null pointer check in cifs_mount (bsc#1185902). - cifs: prevent NULL deref in cifs_compose_mount_options() (bsc#1185902). - cifs: set a minimum of 2 minutes for refreshing dfs cache (bsc#1185902). - clk: fix leak on devm_clk_bulk_get_all() unwind (git-fixes). - clk: stm32f4: fix post divisor setup for I2S/SAI PLLs (git-fixes). - cpuidle: Allow idle states to be disabled by default (bsc#1175543) - cpuidle: Consolidate disabled state checks (bsc#1175543) - cpuidle: Drop disabled field from struct cpuidle_state (bsc#1175543) - cpuidle: Fix cpuidle_driver_state_disabled() (bsc#1175543) - cpuidle: Introduce cpuidle_driver_state_disabled() for driver quirks (bsc#1175543) - crypto: ccp - Annotate SEV Firmware file names (bsc#1189212). - crypto: qat - use proper type for vf_mask (git-fixes). - crypto: x86/curve25519 - fix cpu feature checking logic in mod_exit (git-fixes). - device-dax: Fix default return code of range_parse() (git-fixes). - dm integrity: fix missing goto in bitmap_flush_interval error handling (git-fixes). - dm rq: fix double free of blk_mq_tag_set in dev remove after table load fails (git-fixes). - dm verity: fix DM_VERITY_OPTS_MAX value (git-fixes). - dmaengine: idxd: fix setup sequence for MSIXPERM table (git-fixes). - dmaengine: imx-dma: configure the generic DMA type to make it work (git-fixes). - dmaengine: imx-dma: configure the generic DMA type to make it work (git-fixes). - dmaengine: imx-sdma: remove duplicated sdma_load_context (git-fixes). - dmaengine: of-dma: router_xlate to return -EPROBE_DEFER if controller is not yet available (git-fixes). - dmaengine: usb-dmac: Fix PM reference leak in usb_dmac_probe() (git-fixes). - dmaengine: xilinx_dma: Fix read-after-free bug when terminating transfers (git-fixes). - drivers/block/null_blk/main: Fix a double free in null_init (git-fixes). - drm/amd/display: Fix Dynamic bpp issue with 8K30 with Navi 1X (git-fixes). - drm/amd/display: Fix comparison error in dcn21 DML (git-fixes). - drm/amd/display: Fix max vstartup calculation for modes with borders (git-fixes). - drm/amd/display: Remove invalid assert for ODM + MPC case (git-fixes). - drm/amd/display: use GFP_ATOMIC in amdgpu_dm_irq_schedule_work (git-fixes). - drm/amd/display: workaround for hard hang on HPD on native DP (git-fixes). - drm/amdgpu/acp: Make PM domain really work (git-fixes). - drm/amdgpu/display: fix DMUB firmware version info (git-fixes). - drm/amdgpu/display: only enable aux backlight control for OLED panels (git-fixes). - drm/amdgpu: do not enable baco on boco platforms in runpm (git-fixes). - drm/amdgpu: fix the doorbell missing when in CGPG issue for renoir (git-fixes). - drm/dp_mst: Fix return code on sideband message failure (git-fixes). - drm/i915/dg1: gmbus pin mapping (bsc#1188700). - drm/i915/dg1: provide port/phy mapping for vbt (bsc#1188700). - drm/i915/gen9_bc: Add W/A for missing STRAP config on TGP PCH + CML combos (bsc#1188700). - drm/i915/gen9_bc: Introduce HPD pin mappings for TGP PCH + CML combos (bsc#1188700). - drm/i915/gen9_bc: Introduce TGP PCH DDC pin mappings (bsc#1188700). - drm/i915/gen9_bc: Recognize TGP PCH + CML combos (bsc#1188700). - drm/i915/rkl: new rkl ddc map for different PCH (bsc#1188700). - drm/i915: Add VBT AUX CH H and I (bsc#1188700). - drm/i915: Add VBT DVO ports H and I (bsc#1188700). - drm/i915: Add more AUX CHs to the enum (bsc#1188700). - drm/i915: Configure GEN11_{TBT,TC}_HOTPLUG_CTL for ports TC5/6 (bsc#1188700). - drm/i915: Correct SFC_DONE register offset (git-fixes). - drm/i915: Introduce HPD_PORT_TC&lt;n> (bsc#1188700). - drm/i915: Move hpd_pin setup to encoder init (bsc#1188700). - drm/i915: Nuke the redundant TC/TBT HPD bit defines (bsc#1188700). - drm/i915: Only access SFC_DONE when media domain is not fused off (git-fixes). - drm/meson: fix colour distortion from HDR set during vendor u-boot (git-fixes). - drm/msi/mdp4: populate priv->kms in mdp4_kms_init (git-fixes). - drm/msm/dpu: make dpu_hw_ctl_clear_all_blendstages clear necessary LMs (git-fixes). - drm/msm/dsi: Fix some reference counted resource leaks (git-fixes). - drm/msm: Fix error return code in msm_drm_init() (git-fixes). - drm/nouveau/kms/nv50: workaround EFI GOP window channel format differences (git-fixes). - drm/of: free the iterator object on failure (git-fixes). - drm/of: free the right object (git-fixes). - drm/panfrost: Fix missing clk_disable_unprepare() on error in panfrost_clk_init() (git-fixes). - drm/prime: fix comment on PRIME Helpers (git-fixes). - ext4: cleanup in-core orphan list if ext4_truncate() failed to get a transaction handle (bsc#1189568). - ext4: correct the cache_nr in tracepoint ext4_es_shrink_exit (bsc#1189564). - ext4: fix avefreec in find_group_orlov (bsc#1189566). - ext4: fix kernel infoleak via ext4_extent_header (bsc#1189562). - ext4: fix potential htree corruption when growing large_dir directories (bsc#1189576). - ext4: remove check for zero nr_to_scan in ext4_es_scan() (bsc#1189565). - ext4: return error code when ext4_fill_flex_info() fails (bsc#1189563). - ext4: use ext4_grp_locked_error in mb_find_extent (bsc#1189567). - fanotify: fix copy_event_to_user() fid error clean up (bsc#1189574). - firmware_loader: fix use-after-free in firmware_fallback_sysfs (git-fixes). - firmware_loader: use -ETIMEDOUT instead of -EAGAIN in fw_load_sysfs_fallback (git-fixes). - fixup "rpm: support gz and zst compression methods" (bsc#1190358, bsc#1190428). - fpga: altera-freeze-bridge: Address warning about unused variable (git-fixes). - fpga: dfl: fme: Fix cpu hotplug issue in performance reporting (git-fixes). - fpga: dfl: fme: Fix cpu hotplug issue in performance reporting (git-fixes). - fpga: xiilnx-spi: Address warning about unused variable (git-fixes). - fpga: zynqmp-fpga: Address warning about unused variable (git-fixes). - gpio: eic-sprd: break loop when getting NULL device resource (git-fixes). - gpio: tqmx86: really make IRQ optional (git-fixes). - i2c: dev: zero out array used for i2c reads from userspace (git-fixes). - i2c: highlander: add IRQ check (git-fixes). - i2c: iop3xx: fix deferred probing (git-fixes). - i2c: mt65xx: fix IRQ check (git-fixes). - i2c: s3c2410: fix IRQ check (git-fixes). - iio: adc: Fix incorrect exit of for-loop (git-fixes). - iio: adc: ti-ads7950: Ensure CS is deasserted after reading channels (git-fixes). - iio: humidity: hdc100x: Add margin to the conversion time (git-fixes). - intel_idle: Add module parameter to prevent ACPI _CST from being used (bsc#1175543) - intel_idle: Allow ACPI _CST to be used for selected known processors (bsc#1175543) - intel_idle: Annotate init time data structures (bsc#1175543) - intel_idle: Customize IceLake server support (bsc#1175543) - intel_idle: Disable ACPI _CST on Haswell (bsc#1175543, bsc#1177399, bsc#1180347, bsc#1180141) - intel_idle: Fix max_cstate for processor models without C-state tables (bsc#1175543) - intel_idle: Ignore _CST if control cannot be taken from the platform (bsc#1175543) - intel_idle: Refactor intel_idle_cpuidle_driver_init() (bsc#1175543) - intel_idle: Use ACPI _CST for processor models without C-state tables (bsc#1175543) - iommu/amd: Fix extended features logging (bsc#1189213). - iommu/amd: Move Stoney Ridge check to detect_ivrs() (bsc#1189762). - iommu/arm-smmu-v3: Decrease the queue size of evtq and priq (bsc#1189210). - iommu/arm-smmu-v3: add bit field SFM into GERROR_ERR_MASK (bsc#1189209). - iommu/dma: Fix IOVA reserve dma ranges (bsc#1189214). - iommu/dma: Fix compile warning in 32-bit builds (bsc#1189229). - iommu/vt-d: Check for allocation failure in aux_detach_device() (bsc#1189215). - iommu/vt-d: Define counter explicitly as unsigned int (bsc#1189216). - iommu/vt-d: Do not set then clear private data in prq_event_thread() (bsc#1189217). - iommu/vt-d: Fix sysfs leak in alloc_iommu() (bsc#1189218). - iommu/vt-d: Force to flush iotlb before creating superpage (bsc#1189219). - iommu/vt-d: Global devTLB flush when present context entry changed (bsc#1189220). - iommu/vt-d: Invalidate PASID cache when root/context entry changed (bsc#1189221). - iommu/vt-d: Reject unsupported page request modes (bsc#1189222). - ionic: add handling of larger descriptors (jsc#SLE-16649). - ionic: add new queue features to interface (jsc#SLE-16649). - ionic: aggregate Tx byte counting calls (jsc#SLE-16649). - ionic: block actions during fw reset (jsc#SLE-16649). - ionic: change mtu after queues are stopped (jsc#SLE-16649). - ionic: check for link after netdev registration (jsc#SLE-16649). - ionic: code cleanup details (jsc#SLE-16649). - ionic: fix sizeof usage (jsc#SLE-16649). - ionic: fix unchecked reference (jsc#SLE-16649). - ionic: fix up dim accounting for tx and rx (jsc#SLE-16649). - ionic: generic tx skb mapping (jsc#SLE-16649). - ionic: implement Rx page reuse (jsc#SLE-16649). - ionic: make all rx_mode work threadsafe (jsc#SLE-16649). - ionic: move rx_page_alloc and free (jsc#SLE-16649). - ionic: optimize fastpath struct usage (jsc#SLE-16649). - ionic: protect adminq from early destroy (jsc#SLE-16649). - ionic: rebuild debugfs on qcq swap (jsc#SLE-16649). - ionic: remove intr coalesce update from napi (jsc#SLE-16649). - ionic: remove some unnecessary oom messages (jsc#SLE-16649). - ionic: simplify TSO descriptor mapping (jsc#SLE-16649). - ionic: simplify rx skb alloc (jsc#SLE-16649). - ionic: simplify the intr_index use in txq_init (jsc#SLE-16649). - ionic: simplify tx clean (jsc#SLE-16649). - ionic: simplify use of completion types (jsc#SLE-16649). - ionic: start queues before announcing link up (jsc#SLE-16649). - ionic: stop watchdog when in broken state (jsc#SLE-16649). - ionic: useful names for booleans (jsc#SLE-16649). - iwlwifi: pnvm: accept multiple HW-type TLVs (git-fixes). - iwlwifi: rs-fw: do not support stbc for HE 160 (git-fixes). - iwlwifi: skip first element in the WTAS ACPI table (git-fixes). - kABI fix of usb_dcd_config_params (git-fixes). - kABI: Fix kABI after fixing vcpu-id indexed arrays (git-fixes). - kabi fix for NFSv4.1: Do not rebind to the same source port when reconnecting to the server (bnc#1186264 bnc#1189021) - kabi fix for SUNRPC: defer slow parts of rpc_free_client() to a workqueue (bsc#1168202 bsc#1188924). - kernel, fs: Introduce and use set_restart_fn() and arch_set_restart_data() (bsc#1189153). - kernel-cert-subpackage: Fix certificate location in scriptlets (bsc#1189841). - leds: trigger: audio: Add an activate callback to ensure the initial brightness is set (git-fixes). - lib/mpi: use kcalloc in mpi_resize (git-fixes). - lib: Add zstd support to decompress (bsc#1187483, jsc#SLE-18766). - libata: fix ata_pio_sector for CONFIG_HIGHMEM (git-fixes). - mac80211: Fix insufficient headroom issue for AMSDU (git-fixes). - md/raid10: properly indicate failure when ending a failed write request (git-fixes). - md: revert io stats accounting (git-fixes). - media: TDA1997x: enable EDID support (git-fixes). - media: cxd2880-spi: Fix an error handling path (git-fixes). - media: drivers/media/usb: fix memory leak in zr364xx_probe (git-fixes). - media: dvb-usb: Fix error handling in dvb_usb_i2c_init (git-fixes). - media: dvb-usb: fix uninit-value in dvb_usb_adapter_dvb_init (git-fixes). - media: dvb-usb: fix uninit-value in vp702x_read_mac_addr (git-fixes). - media: em28xx-input: fix refcount bug in em28xx_usb_disconnect (git-fixes). - media: go7007: fix memory leak in go7007_usb_probe (git-fixes). - media: go7007: remove redundant initialization (git-fixes). - media: rtl28xxu: fix zero-length control request (git-fixes). - media: stkwebcam: fix memory leak in stk_camera_probe (git-fixes). - media: venus: venc: Fix potential null pointer dereference on pointer fmt (git-fixes). - media: videobuf2-core: dequeue if start_streaming fails (git-fixes). - media: zr364xx: fix memory leaks in probe() (git-fixes). - media: zr364xx: propagate errors from zr364xx_start_readpipe() (git-fixes). - misc: atmel-ssc: lock with mutex instead of spinlock (git-fixes). - misc: rtsx: do not setting OC_POWER_DOWN reg in rtsx_pci_init_ocp() (git-fixes). - mm/thp: unmap_mapping_page() to fix THP truncate_cleanup_page() (bsc#1189569). - mm/vmscan: fix infinite loop in drop_slab_node (VM Functionality, bsc#1189301). - mm: fix memory_failure() handling of dax-namespace metadata (bsc#1189872). - mm: swap: properly update readahead statistics in unuse_pte_range() (bsc#1187619). - mmc: dw_mmc: Fix hang on data CRC error (git-fixes). - mmc: dw_mmc: Fix issue with uninitialized dma_slave_config (git-fixes). - mmc: moxart: Fix issue with uninitialized dma_slave_config (git-fixes). - mmc: sdhci-iproc: Cap min clock frequency on BCM2711 (git-fixes). - mmc: sdhci-iproc: Set SDHCI_QUIRK_CAP_CLOCK_BASE_BROKEN on BCM2711 (git-fixes). - mtd: cfi_cmdset_0002: fix crash when erasing/writing AMD cards (git-fixes). - nbd: Aovid double completion of a request (git-fixes). - nbd: Fix NULL pointer in flush_workqueue (git-fixes). - net/mlx5: Add ts_cqe_to_dest_cqn related bits (bsc#1188412) - net/mlx5: Properly convey driver version to firmware (git-fixes). - net/mlx5e: Add missing capability check for uplink follow (bsc#1188412) - net: dsa: mv88e6xxx: Avoid VTU corruption on 6097 (git-fixes). - net: dsa: mv88e6xxx: also read STU state in mv88e6250_g1_vtu_getnext (git-fixes). - net: stmmac: free tx skb buffer in stmmac_resume() (git-fixes). - net: usb: lan78xx: do not modify phy_device state concurrently (bsc#1188270) - nfs: fix acl memory leak of posix_acl_create() (git-fixes). - nvme-multipath: revalidate paths during rescan (bsc#1187211) - nvme-pci: Use u32 for nvme_dev.q_depth and nvme_queue.q_depth (bsc#1181972). - nvme-pci: fix NULL req in completion handler (bsc#1181972). - nvme-pci: limit maximum queue depth to 4095 (bsc#1181972). - nvme-pci: use unsigned for io queue depth (bsc#1181972). - nvme-tcp: Do not reset transport on data digest errors (bsc#1188418). - nvme-tcp: do not check blk_mq_tag_to_rq when receiving pdu data (bsc#1181972). - nvme: avoid possible double fetch in handling CQE (bsc#1181972). - nvme: code command_id with a genctr for use-after-free validation (bsc#1181972). - nvme: only call synchronize_srcu when clearing current path (bsc#1188067). - nvmet: use NVMET_MAX_NAMESPACES to set nn value (bsc#1189384). - ocfs2: fix snprintf() checking (bsc#1189581). - ocfs2: fix zero out valid data (bsc#1189579). - ocfs2: initialize ip_next_orphan (bsc#1186731). - ocfs2: issue zeroout to EOF blocks (bsc#1189582). - ovl: allow upperdir inside lowerdir (bsc#1189323). - ovl: expand warning in ovl_d_real() (bsc#1189323). - ovl: fix missing revert_creds() on error path (bsc#1189323). - ovl: perform vfs_getxattr() with mounter creds (bsc#1189323). - ovl: skip getxattr of security labels (bsc#1189323). - params: lift param_set_uint_minmax to common code (bsc#1181972). - pcmcia: i82092: fix a null pointer dereference bug (git-fixes). - perf/x86/amd: Do not touch the AMD64_EVENTSEL_HOSTONLY bit inside the guest (bsc#1189225). - pinctrl: tigerlake: Fix GPIO mapping for newer version of software (git-fixes). - platform/x86: pcengines-apuv2: Add missing terminating entries to gpio-lookup tables (git-fixes). - post.sh: detect /usr mountpoint too - power: supply: max17042: handle fails of reading status register (git-fixes). - powerpc/cacheinfo: Improve diagnostics about malformed cache lists (jsc#SLE-13615 bsc#1180100 ltc#190257 git-fixes). - powerpc/cacheinfo: Lookup cache by dt node and thread-group id (jsc#SLE-13615 bsc#1180100 ltc#190257 git-fixes). - powerpc/cacheinfo: Remove the redundant get_shared_cpu_map() (jsc#SLE-13615 bsc#1180100 ltc#190257 git-fixes). - powerpc/cacheinfo: Use name@unit instead of full DT path in debug messages (jsc#SLE-13615 bsc#1180100 ltc#190257 git-fixes). - powerpc/papr_scm: Make 'perf_stats' invisible if perf-stats unavailable (bsc#1175052 jsc#SLE-13823 bsc#1174969 jsc#SLE-12769 git-fixes). - powerpc/papr_scm: Reduce error severity if nvdimm stats inaccessible (bsc#1189197 ltc#193906). - powerpc/pseries: Fix regression while building external modules (bsc#1160010 ltc#183046 git-fixes). This changes a GPL symbol to general symbol which is kABI change but not kABI break. - powerpc/pseries: Fix update of LPAR security flavor after LPM (bsc#1188885 ltc#193722 git-fixes). - powerpc/smp: Make some symbols static (jsc#SLE-13615 bsc#1180100 ltc#190257 git-fixes). - powerpc/smp: Use existing L2 cache_map cpumask to find L3 cache siblings (jsc#SLE-13615 bsc#1180100 ltc#190257 git-fixes). - powerpc: Fix is_kvm_guest() / kvm_para_available() (bsc#1181148 ltc#190702 git-fixes). - regulator: rt5033: Fix n_voltages settings for BUCK and LDO (git-fixes). - regulator: vctrl: Avoid lockdep warning in enable/disable ops (git-fixes). - regulator: vctrl: Use locked regulator_get_voltage in probe path (git-fixes). - rpm/kernel-binary.spec.in: Use kmod-zstd provide. This makes it possible to use kmod with ZSTD support on non-Tumbleweed. - rpm/kernel-obs-build.spec.in: make builds reproducible (bsc#1189305) - rpm/kernel-source.rpmlintrc: ignore new include/config files In 5.13, since 0e0345b77ac4, config files have no longer .h suffix. Adapt the zero-length check. Based on Martin Liska's change. - rq-qos: fix missed wake-ups in rq_qos_throttle try two (bsc#1189575). - rsi: fix an error code in rsi_probe() (git-fixes). - rsi: fix error code in rsi_load_9116_firmware() (git-fixes). - s390/ap: Fix hanging ioctl caused by wrong msg counter (bsc#1188982 LTC#193817). - s390/boot: fix use of expolines in the DMA code (bsc#1188878 ltc#193771). - scsi: blkcg: Add app identifier support for blkcg (bsc#1189385 jsc#SLE-18970). - scsi: blkcg: Fix application ID config options (bsc#1189385 jsc#SLE-18970). - scsi: cgroup: Add cgroup_get_from_id() (bsc#1189385 jsc#SLE-18970). - scsi: core: Add scsi_prot_ref_tag() helper (bsc#1189392). - scsi: ibmvfc: Do not wait for initial device scan (bsc#1127650). - scsi: libfc: Fix array index out of bound exception (bsc#1188616). - scsi: lpfc: Add 256 Gb link speed support (bsc#1189385). - scsi: lpfc: Add PCI ID support for LPe37000/LPe38000 series adapters (bsc#1189385). - scsi: lpfc: Call discovery state machine when handling PLOGI/ADISC completions (bsc#1189385). - scsi: lpfc: Clear outstanding active mailbox during PCI function reset (bsc#1189385). - scsi: lpfc: Copyright updates for 12.8.0.11 patches (bsc#1189385). - scsi: lpfc: Copyright updates for 14.0.0.0 patches (bsc#1189385). - scsi: lpfc: Delay unregistering from transport until GIDFT or ADISC completes (bsc#1189385). - scsi: lpfc: Discovery state machine fixes for LOGO handling (bsc#1189385). - scsi: lpfc: Enable adisc discovery after RSCN by default (bsc#1189385). - scsi: lpfc: Fix KASAN slab-out-of-bounds in lpfc_unreg_rpi() routine (bsc#1189385). - scsi: lpfc: Fix NULL ptr dereference with NPIV ports for RDF handling (bsc#1189385). - scsi: lpfc: Fix NVMe support reporting in log message (bsc#1189385). - scsi: lpfc: Fix build error in lpfc_scsi.c (bsc#1189385). - scsi: lpfc: Fix cq_id truncation in rq create (bsc#1189385). - scsi: lpfc: Fix function description comments for vmid routines (bsc#1189385). - scsi: lpfc: Fix memory leaks in error paths while issuing ELS RDF/SCR request (bsc#1189385). - scsi: lpfc: Fix possible ABBA deadlock in nvmet_xri_aborted() (bsc#1189385). - scsi: lpfc: Fix target reset handler from falsely returning FAILURE (bsc#1189385). - scsi: lpfc: Improve firmware download logging (bsc#1189385). - scsi: lpfc: Keep NDLP reference until after freeing the IOCB after ELS handling (bsc#1189385). - scsi: lpfc: Move initialization of phba->poll_list earlier to avoid crash (git-fixes). - scsi: lpfc: Remove REG_LOGIN check requirement to issue an ELS RDF (bsc#1189385). - scsi: lpfc: Remove redundant assignment to pointer pcmd (bsc#1189385). - scsi: lpfc: Remove redundant assignment to pointer temp_hdr (bsc#1189385). - scsi: lpfc: Remove use of kmalloc() in trace event logging (bsc#1189385). - scsi: lpfc: Revise Topology and RAS support checks for new adapters (bsc#1189385). - scsi: lpfc: Skip issuing ADISC when node is in NPR state (bsc#1189385). - scsi: lpfc: Skip reg_vpi when link is down for SLI3 in ADISC cmpl path (bsc#1189385). - scsi: lpfc: Update lpfc version to 12.8.0.11 (bsc#1189385). - scsi: lpfc: Update lpfc version to 14.0.0.0 (bsc#1189385). - scsi: lpfc: Use PBDE feature enabled bit to determine PBDE support (bsc#1189385). - scsi: lpfc: Use list_move_tail() instead of list_del()/list_add_tail() (bsc#1189385). - scsi: lpfc: vmid: Add QFPA and VMID timeout check in worker thread (bsc#1189385 jsc#SLE-18970). - scsi: lpfc: vmid: Add datastructure for supporting VMID in lpfc (bsc#1189385 jsc#SLE-18970). - scsi: lpfc: vmid: Add support for VMID in mailbox command (bsc#1189385 jsc#SLE-18970). - scsi: lpfc: vmid: Append the VMID to the wqe before sending (bsc#1189385 jsc#SLE-18970). - scsi: lpfc: vmid: Functions to manage VMIDs (bsc#1189385 jsc#SLE-18970). - scsi: lpfc: vmid: Implement CT commands for appid (bsc#1189385 jsc#SLE-18970). - scsi: lpfc: vmid: Implement ELS commands for appid (bsc#1189385 jsc#SLE-18970). - scsi: lpfc: vmid: Introduce VMID in I/O path (bsc#1189385 jsc#SLE-18970). - scsi: lpfc: vmid: Timeout implementation for VMID (bsc#1189385 jsc#SLE-18970). - scsi: lpfc: vmid: VMID parameter initialization (bsc#1189385 jsc#SLE-18970). - scsi: mpt3sas: Fix ReplyPostFree pool allocation (bsc#1181006). - scsi: qla2xxx: Add heartbeat check (bsc#1189392). - scsi: qla2xxx: Fix error return code in qla82xx_write_flash_dword() (bsc#1189392). - scsi: qla2xxx: Fix spelling mistakes "allloc" -> "alloc" (bsc#1189392). - scsi: qla2xxx: Fix use after free in debug code (bsc#1189392). - scsi: qla2xxx: Log PCI address in qla_nvme_unregister_remote_port() (bsc#1189392). - scsi: qla2xxx: Remove duplicate declarations (bsc#1189392). - scsi: qla2xxx: Remove redundant assignment to rval (bsc#1189392). - scsi: qla2xxx: Remove redundant continue statement in a for-loop (bsc#1189392). - scsi: qla2xxx: Remove redundant initialization of variable num_cnt (bsc#1189392). - scsi: qla2xxx: Remove unused variable 'status' (bsc#1189392). - scsi: qla2xxx: Update version to 10.02.00.107-k (bsc#1189392). - scsi: qla2xxx: Use list_move_tail() instead of list_del()/list_add_tail() (bsc#1189392). - scsi: qla2xxx: Use the proper SCSI midlayer interfaces for PI (bsc#1189392). - scsi: qla2xxx: edif: Add authentication pass + fail bsgs (bsc#1189392). - scsi: qla2xxx: edif: Add detection of secure device (bsc#1189392). - scsi: qla2xxx: edif: Add doorbell notification for app (bsc#1189392). - scsi: qla2xxx: edif: Add encryption to I/O path (bsc#1189392). - scsi: qla2xxx: edif: Add extraction of auth_els from the wire (bsc#1189392). - scsi: qla2xxx: edif: Add getfcinfo and statistic bsgs (bsc#1189392). - scsi: qla2xxx: edif: Add key update (bsc#1189392). - scsi: qla2xxx: edif: Add send, receive, and accept for auth_els (bsc#1189392). - scsi: qla2xxx: edif: Add start + stop bsgs (bsc#1189392). - scsi: qla2xxx: edif: Increment command and completion counts (bsc#1189392). - scsi: scsi_transport_srp: Do not block target in SRP_PORT_LOST state (bsc#1184180). - scsi: target: qla2xxx: Wait for stop_phase1 at WWN removal (bsc#1189392). - scsi: zfcp: Report port fc_security as unknown early during remote cable pull (git-fixes). - serial: 8250: Mask out floating 16/32-bit bus bits (git-fixes). - serial: 8250_mtk: fix uart corruption issue when rx power off (git-fixes). - serial: 8250_pci: Avoid irq sharing for MSI(-X) interrupts (git-fixes). - serial: 8250_pci: Enumerate Elkhart Lake UARTs via dedicated driver (git-fixes). - serial: tegra: Only print FIFO error message when an error occurs (git-fixes). - slimbus: messaging: check for valid transaction id (git-fixes). - slimbus: messaging: start transaction ids from 1 instead of zero (git-fixes). - slimbus: ngd: reset dma setup during runtime pm (git-fixes). - soc: aspeed: lpc-ctrl: Fix boundary check for mmap (git-fixes). - soc: aspeed: p2a-ctrl: Fix boundary check for mmap (git-fixes). - soc: ixp4xx/qmgr: fix invalid __iomem access (git-fixes). - soc: ixp4xx/qmgr: fix invalid __iomem access (git-fixes). - soc: ixp4xx: fix printing resources (git-fixes). - soc: ixp4xx: fix printing resources (git-fixes). - soc: qcom: rpmhpd: Use corner in power_off (git-fixes). - soc: qcom: smsm: Fix missed interrupts if state changes while masked (git-fixes). - spi: imx: mx51-ecspi: Fix CONFIGREG delay comment (git-fixes). - spi: imx: mx51-ecspi: Fix low-speed CONFIGREG delay calculation (git-fixes). - spi: imx: mx51-ecspi: Reinstate low-speed CONFIGREG delay (git-fixes). - spi: mediatek: Fix fifo transfer (git-fixes). - spi: meson-spicc: fix memory leak in meson_spicc_remove (git-fixes). - spi: spi-fsl-dspi: Fix issue with uninitialized dma_slave_config (git-fixes). - spi: spi-pic32: Fix issue with uninitialized dma_slave_config (git-fixes). - spi: sprd: Fix the wrong WDG_LOAD_VAL (git-fixes). - spi: stm32h7: fix full duplex irq handler handling (git-fixes). - staging: rtl8192u: Fix bitwise vs logical operator in TranslateRxSignalStuff819xUsb() (git-fixes). - staging: rtl8712: get rid of flush_scheduled_work (git-fixes). - staging: rtl8723bs: Fix a resource leak in sd_int_dpc (git-fixes). - staging: rtl8723bs: Fix a resource leak in sd_int_dpc (git-fixes). - tracing / histogram: Fix NULL pointer dereference on strcmp() on NULL event name (git-fixes). - tracing / histogram: Give calculation hist_fields a size (git-fixes). - tracing: Reject string operand in the histogram expression (git-fixes). - tty: serial: fsl_lpuart: fix the wrong mapbase value (git-fixes). - ubifs: Fix error return code in alloc_wbufs() (bsc#1189585). - ubifs: Fix memleak in ubifs_init_authentication (bsc#1189583). - ubifs: Only check replay with inode type to judge if inode linked (bsc#1187455). - ubifs: Set/Clear I_LINKABLE under i_lock for whiteout inode (bsc#1189587). - ubifs: journal: Fix error return code in ubifs_jnl_write_inode() (bsc#1189586). - usb: bdc: Fix an error handling path in 'bdc_probe()' when no suitable DMA config is available (git-fixes). - usb: dwc3: Disable phy suspend after power-on reset (git-fixes). - usb: dwc3: Separate field holding multiple properties (git-fixes). - usb: dwc3: Stop active transfers before halting the controller (git-fixes). - usb: dwc3: Use clk_bulk_prepare_enable() (git-fixes). - usb: dwc3: Use devres to get clocks (git-fixes). - usb: dwc3: core: do not do suspend for device mode if already suspended (git-fixes). - usb: dwc3: debug: Remove newline printout (git-fixes). - usb: dwc3: gadget: Check MPS of the request length (git-fixes). - usb: dwc3: gadget: Clear DCTL.ULSTCHNGREQ before set (git-fixes). - usb: dwc3: gadget: Clear DEP flags after stop transfers in ep disable (git-fixes). - usb: dwc3: gadget: Disable gadget IRQ during pullup disable (git-fixes). - usb: dwc3: gadget: Do not send unintended link state change (git-fixes). - usb: dwc3: gadget: Do not setup more than requested (git-fixes). - usb: dwc3: gadget: Fix dwc3_calc_trbs_left() (git-fixes). - usb: dwc3: gadget: Fix handling ZLP (git-fixes). - usb: dwc3: gadget: Give back staled requests (git-fixes). - usb: dwc3: gadget: Handle ZLP for sg requests (git-fixes). - usb: dwc3: gadget: Prevent EP queuing while stopping transfers (git-fixes). - usb: dwc3: gadget: Properly track pending and queued SG (git-fixes). - usb: dwc3: gadget: Restart DWC3 gadget when enabling pullup (git-fixes). - usb: dwc3: gadget: Set BESL config parameter (git-fixes). - usb: dwc3: gadget: Set link state to RX_Detect on disconnect (git-fixes). - usb: dwc3: gadget: Stop EP0 transfers during pullup disable (git-fixes). - usb: dwc3: gadget: Workaround Mirosoft's BESL check (git-fixes). - usb: dwc3: meson-g12a: add IRQ check (git-fixes). - usb: dwc3: meson-g12a: check return of dwc3_meson_g12a_usb_init (git-fixes). - usb: dwc3: of-simple: add a shutdown (git-fixes). - usb: dwc3: st: Add of_dev_put() in probe function (git-fixes). - usb: dwc3: st: Add of_node_put() before return in probe function (git-fixes). - usb: dwc3: support continuous runtime PM with dual role (git-fixes). - usb: ehci-orion: Handle errors of clk_prepare_enable() in probe (git-fixes). - usb: gadget: Export recommended BESL values (git-fixes). - usb: gadget: f_hid: added GET_IDLE and SET_IDLE handlers (git-fixes). - usb: gadget: f_hid: fixed NULL pointer dereference (git-fixes). - usb: gadget: f_hid: idle uses the highest byte for duration (git-fixes). - usb: gadget: mv_u3d: request_irq() after initializing UDC (git-fixes). - usb: gadget: udc: at91: add IRQ check (git-fixes). - usb: gadget: udc: renesas_usb3: Fix soc_device_match() abuse (git-fixes). - usb: host: ohci-tmio: add IRQ check (git-fixes). - usb: host: xhci-rcar: Do not reload firmware after the completion (git-fixes). - usb: mtu3: fix the wrong HS mult value (git-fixes). - usb: mtu3: use @mult for HS isoc or intr (git-fixes). - usb: phy: fsl-usb: add IRQ check (git-fixes). - usb: phy: tahvo: add IRQ check (git-fixes). - usb: phy: twl6030: add IRQ checks (git-fixes). - usr: Add support for zstd compressed initramfs (bsc#1187483, jsc#SLE-18766). - virt_wifi: fix error on connect (git-fixes). - wireguard: allowedips: allocate nodes in kmem_cache (git-fixes). - wireguard: allowedips: free empty intermediate nodes when removing single node (git-fixes). - wireguard: allowedips: remove nodes in O(1) (git-fixes). - writeback: fix obtain a reference to a freeing memcg css (bsc#1189577). - x86/fpu: Limit xstate copy size in xstateregs_set() (bsc#1152489). - x86/fpu: Make init_fpstate correct with optimized XSAVE (bsc#1152489). - x86/fpu: Reset state for all signal restore failures (bsc#1152489). - x86/kvm: fix vcpu-id indexed array sizes (git-fixes). - x86/sev: Make sure IRQs are disabled while GHCB is active (jsc#SLE-14337). - x86/sev: Split up runtime #VC handler for correct state tracking (jsc#SLE-14337). - x86/sev: Use "SEV: " prefix for messages from sev.c (jsc#SLE-14337). - x86/signal: Detect and prevent an alternate signal stack overflow (bsc#1152489). - x86/split_lock: Provide handle_guest_split_lock() (bsc#1187959). - xen/events: Fix race in set_evtchn_to_irq (git-fixes). - xprtrdma: Pad optimization, revisited (bsc#1189760). cluster-md-kmp-default-5.3.18-59.24.1.x86_64.rpm True cluster-md-kmp-preempt-5.3.18-59.24.1.x86_64.rpm True dlm-kmp-default-5.3.18-59.24.1.x86_64.rpm True dlm-kmp-preempt-5.3.18-59.24.1.x86_64.rpm True gfs2-kmp-default-5.3.18-59.24.1.x86_64.rpm True gfs2-kmp-preempt-5.3.18-59.24.1.x86_64.rpm True kernel-debug-5.3.18-59.24.1.nosrc.rpm True kernel-debug-5.3.18-59.24.1.x86_64.rpm True kernel-debug-devel-5.3.18-59.24.1.x86_64.rpm True kernel-debug-livepatch-devel-5.3.18-59.24.1.x86_64.rpm True kernel-default-5.3.18-59.24.1.nosrc.rpm True kernel-default-5.3.18-59.24.1.x86_64.rpm True kernel-default-base-5.3.18-59.24.1.18.12.1.src.rpm True kernel-default-base-5.3.18-59.24.1.18.12.1.x86_64.rpm True kernel-default-base-rebuild-5.3.18-59.24.1.18.12.1.x86_64.rpm True kernel-default-devel-5.3.18-59.24.1.x86_64.rpm True kernel-default-extra-5.3.18-59.24.1.x86_64.rpm True kernel-default-livepatch-5.3.18-59.24.1.x86_64.rpm True kernel-default-livepatch-devel-5.3.18-59.24.1.x86_64.rpm True kernel-default-optional-5.3.18-59.24.1.x86_64.rpm True kernel-devel-5.3.18-59.24.1.noarch.rpm True kernel-docs-5.3.18-59.24.1.noarch.rpm True kernel-docs-5.3.18-59.24.1.nosrc.rpm True kernel-docs-html-5.3.18-59.24.1.noarch.rpm True kernel-kvmsmall-5.3.18-59.24.1.nosrc.rpm True kernel-kvmsmall-5.3.18-59.24.1.x86_64.rpm True kernel-kvmsmall-devel-5.3.18-59.24.1.x86_64.rpm True kernel-kvmsmall-livepatch-devel-5.3.18-59.24.1.x86_64.rpm True kernel-macros-5.3.18-59.24.1.noarch.rpm True kernel-obs-build-5.3.18-59.24.1.src.rpm True kernel-obs-build-5.3.18-59.24.1.x86_64.rpm True kernel-obs-qa-5.3.18-59.24.1.src.rpm True kernel-obs-qa-5.3.18-59.24.1.x86_64.rpm True kernel-preempt-5.3.18-59.24.1.nosrc.rpm True kernel-preempt-5.3.18-59.24.1.x86_64.rpm True kernel-preempt-devel-5.3.18-59.24.1.x86_64.rpm True kernel-preempt-extra-5.3.18-59.24.1.x86_64.rpm True kernel-preempt-livepatch-devel-5.3.18-59.24.1.x86_64.rpm True kernel-preempt-optional-5.3.18-59.24.1.x86_64.rpm True kernel-source-5.3.18-59.24.1.noarch.rpm True kernel-source-5.3.18-59.24.1.src.rpm True kernel-source-vanilla-5.3.18-59.24.1.noarch.rpm True kernel-syms-5.3.18-59.24.1.src.rpm True kernel-syms-5.3.18-59.24.1.x86_64.rpm True kselftests-kmp-default-5.3.18-59.24.1.x86_64.rpm True kselftests-kmp-preempt-5.3.18-59.24.1.x86_64.rpm True ocfs2-kmp-default-5.3.18-59.24.1.x86_64.rpm True ocfs2-kmp-preempt-5.3.18-59.24.1.x86_64.rpm True reiserfs-kmp-default-5.3.18-59.24.1.x86_64.rpm True reiserfs-kmp-preempt-5.3.18-59.24.1.x86_64.rpm True cluster-md-kmp-default-5.3.18-59.24.1.s390x.rpm True dlm-kmp-default-5.3.18-59.24.1.s390x.rpm True gfs2-kmp-default-5.3.18-59.24.1.s390x.rpm True kernel-default-5.3.18-59.24.1.s390x.rpm True kernel-default-base-5.3.18-59.24.1.18.12.1.s390x.rpm True kernel-default-base-rebuild-5.3.18-59.24.1.18.12.1.s390x.rpm True kernel-default-devel-5.3.18-59.24.1.s390x.rpm True kernel-default-extra-5.3.18-59.24.1.s390x.rpm True kernel-default-livepatch-5.3.18-59.24.1.s390x.rpm True kernel-default-livepatch-devel-5.3.18-59.24.1.s390x.rpm True kernel-default-optional-5.3.18-59.24.1.s390x.rpm True kernel-obs-build-5.3.18-59.24.1.s390x.rpm True kernel-obs-qa-5.3.18-59.24.1.s390x.rpm True kernel-syms-5.3.18-59.24.1.s390x.rpm True kernel-zfcpdump-5.3.18-59.24.1.nosrc.rpm True kernel-zfcpdump-5.3.18-59.24.1.s390x.rpm True kselftests-kmp-default-5.3.18-59.24.1.s390x.rpm True ocfs2-kmp-default-5.3.18-59.24.1.s390x.rpm True reiserfs-kmp-default-5.3.18-59.24.1.s390x.rpm True cluster-md-kmp-default-5.3.18-59.24.1.ppc64le.rpm True dlm-kmp-default-5.3.18-59.24.1.ppc64le.rpm True gfs2-kmp-default-5.3.18-59.24.1.ppc64le.rpm True kernel-debug-5.3.18-59.24.1.ppc64le.rpm True kernel-debug-devel-5.3.18-59.24.1.ppc64le.rpm True kernel-debug-livepatch-devel-5.3.18-59.24.1.ppc64le.rpm True kernel-default-5.3.18-59.24.1.ppc64le.rpm True kernel-default-base-5.3.18-59.24.1.18.12.1.ppc64le.rpm True kernel-default-base-rebuild-5.3.18-59.24.1.18.12.1.ppc64le.rpm True kernel-default-devel-5.3.18-59.24.1.ppc64le.rpm True kernel-default-extra-5.3.18-59.24.1.ppc64le.rpm True kernel-default-livepatch-5.3.18-59.24.1.ppc64le.rpm True kernel-default-livepatch-devel-5.3.18-59.24.1.ppc64le.rpm True kernel-default-optional-5.3.18-59.24.1.ppc64le.rpm True kernel-kvmsmall-5.3.18-59.24.1.ppc64le.rpm True kernel-kvmsmall-devel-5.3.18-59.24.1.ppc64le.rpm True kernel-kvmsmall-livepatch-devel-5.3.18-59.24.1.ppc64le.rpm True kernel-obs-build-5.3.18-59.24.1.ppc64le.rpm True kernel-obs-qa-5.3.18-59.24.1.ppc64le.rpm True kernel-syms-5.3.18-59.24.1.ppc64le.rpm True kselftests-kmp-default-5.3.18-59.24.1.ppc64le.rpm True ocfs2-kmp-default-5.3.18-59.24.1.ppc64le.rpm True reiserfs-kmp-default-5.3.18-59.24.1.ppc64le.rpm True cluster-md-kmp-64kb-5.3.18-59.24.1.aarch64.rpm True cluster-md-kmp-default-5.3.18-59.24.1.aarch64.rpm True cluster-md-kmp-preempt-5.3.18-59.24.1.aarch64.rpm True dlm-kmp-64kb-5.3.18-59.24.1.aarch64.rpm True dlm-kmp-default-5.3.18-59.24.1.aarch64.rpm True dlm-kmp-preempt-5.3.18-59.24.1.aarch64.rpm True dtb-aarch64-5.3.18-59.24.1.src.rpm True dtb-al-5.3.18-59.24.1.aarch64.rpm True dtb-allwinner-5.3.18-59.24.1.aarch64.rpm True dtb-altera-5.3.18-59.24.1.aarch64.rpm True dtb-amd-5.3.18-59.24.1.aarch64.rpm True dtb-amlogic-5.3.18-59.24.1.aarch64.rpm True dtb-apm-5.3.18-59.24.1.aarch64.rpm True dtb-arm-5.3.18-59.24.1.aarch64.rpm True dtb-broadcom-5.3.18-59.24.1.aarch64.rpm True dtb-cavium-5.3.18-59.24.1.aarch64.rpm True dtb-exynos-5.3.18-59.24.1.aarch64.rpm True dtb-freescale-5.3.18-59.24.1.aarch64.rpm True dtb-hisilicon-5.3.18-59.24.1.aarch64.rpm True dtb-lg-5.3.18-59.24.1.aarch64.rpm True dtb-marvell-5.3.18-59.24.1.aarch64.rpm True dtb-mediatek-5.3.18-59.24.1.aarch64.rpm True dtb-nvidia-5.3.18-59.24.1.aarch64.rpm True dtb-qcom-5.3.18-59.24.1.aarch64.rpm True dtb-renesas-5.3.18-59.24.1.aarch64.rpm True dtb-rockchip-5.3.18-59.24.1.aarch64.rpm True dtb-socionext-5.3.18-59.24.1.aarch64.rpm True dtb-sprd-5.3.18-59.24.1.aarch64.rpm True dtb-xilinx-5.3.18-59.24.1.aarch64.rpm True dtb-zte-5.3.18-59.24.1.aarch64.rpm True gfs2-kmp-64kb-5.3.18-59.24.1.aarch64.rpm True gfs2-kmp-default-5.3.18-59.24.1.aarch64.rpm True gfs2-kmp-preempt-5.3.18-59.24.1.aarch64.rpm True kernel-64kb-5.3.18-59.24.1.aarch64.rpm True kernel-64kb-5.3.18-59.24.1.nosrc.rpm True kernel-64kb-devel-5.3.18-59.24.1.aarch64.rpm True kernel-64kb-extra-5.3.18-59.24.1.aarch64.rpm True kernel-64kb-livepatch-devel-5.3.18-59.24.1.aarch64.rpm True kernel-64kb-optional-5.3.18-59.24.1.aarch64.rpm True kernel-default-5.3.18-59.24.1.aarch64.rpm True kernel-default-base-5.3.18-59.24.1.18.12.1.aarch64.rpm True kernel-default-base-rebuild-5.3.18-59.24.1.18.12.1.aarch64.rpm True kernel-default-devel-5.3.18-59.24.1.aarch64.rpm True kernel-default-extra-5.3.18-59.24.1.aarch64.rpm True kernel-default-livepatch-5.3.18-59.24.1.aarch64.rpm True kernel-default-livepatch-devel-5.3.18-59.24.1.aarch64.rpm True kernel-default-optional-5.3.18-59.24.1.aarch64.rpm True kernel-obs-build-5.3.18-59.24.1.aarch64.rpm True kernel-obs-qa-5.3.18-59.24.1.aarch64.rpm True kernel-preempt-5.3.18-59.24.1.aarch64.rpm True kernel-preempt-devel-5.3.18-59.24.1.aarch64.rpm True kernel-preempt-extra-5.3.18-59.24.1.aarch64.rpm True kernel-preempt-livepatch-devel-5.3.18-59.24.1.aarch64.rpm True kernel-preempt-optional-5.3.18-59.24.1.aarch64.rpm True kernel-syms-5.3.18-59.24.1.aarch64.rpm True kselftests-kmp-64kb-5.3.18-59.24.1.aarch64.rpm True kselftests-kmp-default-5.3.18-59.24.1.aarch64.rpm True kselftests-kmp-preempt-5.3.18-59.24.1.aarch64.rpm True ocfs2-kmp-64kb-5.3.18-59.24.1.aarch64.rpm True ocfs2-kmp-default-5.3.18-59.24.1.aarch64.rpm True ocfs2-kmp-preempt-5.3.18-59.24.1.aarch64.rpm True reiserfs-kmp-64kb-5.3.18-59.24.1.aarch64.rpm True reiserfs-kmp-default-5.3.18-59.24.1.aarch64.rpm True reiserfs-kmp-preempt-5.3.18-59.24.1.aarch64.rpm True openSUSE-SLE-15.3-2021-3179 Security update for the Linux Kernel important SUSE Updates openSUSE-SLE 15.3 The SUSE Linux Enterprise 15 SP3 Azure kernel was updated to receive various security and bugfixes. The following security bugs were fixed: - CVE-2021-3640: Fixed a Use-After-Free vulnerability in function sco_sock_sendmsg() in the bluetooth stack (bsc#1188172). - CVE-2021-3653: Missing validation of the `int_ctl` VMCB field and allows a malicious L1 guest to enable AVIC support for the L2 guest. (bsc#1189399). - CVE-2021-3656: Missing validation of the the `virt_ext` VMCB field and allows a malicious L1 guest to disable both VMLOAD/VMSAVE intercepts and VLS for the L2 guest (bsc#1189400). - CVE-2021-3679: A lack of CPU resource in tracing module functionality was found in the way user uses trace ring buffer in a specific way. Only privileged local users (with CAP_SYS_ADMIN capability) could use this flaw to starve the resources causing denial of service (bnc#1189057). - CVE-2021-3732: Mounting overlayfs inside an unprivileged user namespace can reveal files (bsc#1189706). - CVE-2021-3739: Fixed a NULL pointer dereference when deleting device by invalid id (bsc#1189832 ). - CVE-2021-3743: Fixed OOB Read in qrtr_endpoint_post (bsc#1189883). - CVE-2021-3753: Fixed race out-of-bounds in virtual terminal handling (bsc#1190025). - CVE-2021-38160: Data corruption or loss could be triggered by an untrusted device that supplies a buf->len value exceeding the buffer size in drivers/char/virtio_console.c (bsc#1190117) - CVE-2021-38198: arch/x86/kvm/mmu/paging_tmpl.h incorrectly computes the access permissions of a shadow page, leading to a missing guest protection page fault (bnc#1189262). - CVE-2021-38204: drivers/usb/host/max3421-hcd.c allowed physically proximate attackers to cause a denial of service (use-after-free and panic) by removing a MAX-3421 USB device in certain situations (bnc#1189291). - CVE-2021-38205: drivers/net/ethernet/xilinx/xilinx_emaclite.c made it easier for attackers to defeat an ASLR protection mechanism because it prints a kernel pointer (i.e., the real IOMEM pointer) (bnc#1189292). - CVE-2021-38207: drivers/net/ethernet/xilinx/ll_temac_main.c allowed remote attackers to cause a denial of service (buffer overflow and lockup) by sending heavy network traffic for about ten minutes (bnc#1189298). - CVE-2021-38166: Fixed an integer overflow and out-of-bounds write when many elements are placed in a single bucket in kernel/bpf/hashtab.c (bnc#1189233 ). - CVE-2021-38209: Fixed allowed observation of changes in any net namespace via net/netfilter/nf_conntrack_standalone.c (bnc#1189393). - CVE-2021-38206: Fixed NULL pointer dereference in the radiotap parser inside the mac80211 subsystem (bnc#1189296). - CVE-2021-34556: Fixed side-channel attack via a Speculative Store Bypass via unprivileged BPF program that could have obtain sensitive information from kernel memory (bsc#1188983). - CVE-2021-35477: Fixed BPF stack frame pointer which could have been abused to disclose content of arbitrary kernel memory (bsc#1188985). - CVE-2021-3759: Unaccounted ipc objects in Linux kernel could have lead to breaking memcg limits and DoS attacks (bsc#1190115). - CVE-2020-12770: Fixed sg_remove_request call in a certain failure cases (bsc#1171420). The following non-security bugs were fixed: - ACPI: NFIT: Fix support for virtual SPA ranges (git-fixes). - ACPI: processor: Clean up acpi_processor_evaluate_cst() (bsc#1175543) - ACPI: processor: Export acpi_processor_evaluate_cst() (bsc#1175543) - ACPI: processor: Export function to claim _CST control (bsc#1175543) - ACPI: processor: Introduce acpi_processor_evaluate_cst() (bsc#1175543) - ACPI: processor: Make ACPI_PROCESSOR_CSTATE depend on ACPI_PROCESSOR (bsc#1175543) - ALSA: hda - fix the 'Capture Switch' value change notifications (git-fixes). - ALSA: hda/hdmi: Add quirk to force pin connectivity on NUC10 (git-fixes). - ALSA: hda/hdmi: fix max DP-MST dev_num for Intel TGL+ platforms (git-fixes). - ALSA: hda/hdmi: let new platforms assign the pcm slot dynamically (git-fixes). - ALSA: hda/realtek - Add ALC285 HP init procedure (git-fixes). - ALSA: hda/realtek - Add type for ALC287 (git-fixes). - ALSA: hda/realtek: Change device names for quirks to barebone names (git-fixes). - ALSA: hda/realtek: Enable 4-speaker output for Dell XPS 15 9510 laptop (git-fixes). - ALSA: hda/realtek: Fix headset mic for Acer SWIFT SF314-56 (ALC256) (git-fixes). - ALSA: hda/realtek: Limit mic boost on HP ProBook 445 G8 (git-fixes). - ALSA: hda/realtek: add mic quirk for Acer SF314-42 (git-fixes). - ALSA: hda/realtek: fix mute led of the HP Pavilion 15-eh1xxx series (git-fixes). - ALSA: hda/realtek: fix mute/micmute LEDs for HP ProBook 650 G8 Notebook PC (git-fixes). - ALSA: hda/via: Apply runtime PM workaround for ASUS B23E (git-fixes). - ALSA: hda: Add quirk for ASUS Flow x13 (git-fixes). - ALSA: hda: Fix hang during shutdown due to link reset (git-fixes). - ALSA: hda: Release controller display power during shutdown/reboot (git-fixes). - ALSA: pcm: Fix mmap breakage without explicit buffer setup (git-fixes). - ALSA: pcm: fix divide error in snd_pcm_lib_ioctl (git-fixes). - ALSA: seq: Fix racy deletion of subscriber (git-fixes). - ALSA: usb-audio: Add registration quirk for JBL Quantum 600 (git-fixes). - ALSA: usb-audio: Avoid unnecessary or invalid connector selection at resume (git-fixes). - ALSA: usb-audio: Fix regression on Sony WALKMAN NW-A45 DAC (git-fixes). - ALSA: usb-audio: Fix superfluous autosuspend recovery (git-fixes). - ALSA: usb-audio: fix incorrect clock source setting (git-fixes). - ASoC: Intel: Skylake: Fix module resource and format selection (git-fixes). - ASoC: Intel: Skylake: Leave data as is when invoking TLV IPCs (git-fixes). - ASoC: Intel: kbl_da7219_max98927: Fix format selection for max98373 (git-fixes). - ASoC: SOF: Intel: hda-ipc: fix reply size checking (git-fixes). - ASoC: amd: Fix reference to PCM buffer address (git-fixes). - ASoC: component: Remove misplaced prefix handling in pin control functions (git-fixes). - ASoC: cs42l42: Correct definition of ADC Volume control (git-fixes). - ASoC: cs42l42: Do not allow SND_SOC_DAIFMT_LEFT_J (git-fixes). - ASoC: cs42l42: Fix LRCLK frame start edge (git-fixes). - ASoC: cs42l42: Fix inversion of ADC Notch Switch control (git-fixes). - ASoC: cs42l42: Remove duplicate control for WNF filter frequency (git-fixes). - ASoC: intel: atom: Fix breakage for PCM buffer address setup (git-fixes). - ASoC: intel: atom: Fix reference to PCM buffer address (git-fixes). - ASoC: mediatek: mt8183: Fix Unbalanced pm_runtime_enable in mt8183_afe_pcm_dev_probe (git-fixes). - ASoC: rt5682: Adjust headset volume button threshold (git-fixes). - ASoC: rt5682: Adjust headset volume button threshold again (git-fixes). - ASoC: rt5682: Fix the issue of garbled recording after powerd_dbus_suspend (git-fixes). - ASoC: ti: j721e-evm: Check for not initialized parent_clk_id (git-fixes). - ASoC: ti: j721e-evm: Fix unbalanced domain activity tracking during startup (git-fixes). - ASoC: tlv320aic31xx: Fix jack detection after suspend (git-fixes). - ASoC: tlv320aic31xx: fix reversed bclk/wclk master bits (git-fixes). - ASoC: uniphier: Fix reference to PCM buffer address (git-fixes). - ASoC: wcd9335: Disable irq on slave ports in the remove function (git-fixes). - ASoC: wcd9335: Fix a double irq free in the remove function (git-fixes). - ASoC: wcd9335: Fix a memory leak in the error handling path of the probe function (git-fixes). - ASoC: xilinx: Fix reference to PCM buffer address (git-fixes). - Avoid double printing SUSE specific flags in mod->taint (bsc#1190413). - Bluetooth: add timeout sanity check to hci_inquiry (git-fixes). - Bluetooth: btusb: Fix a unspported condition to set available debug features (git-fixes). - Bluetooth: btusb: check conditions before enabling USB ALT 3 for WBS (git-fixes). - Bluetooth: defer cleanup of resources in hci_unregister_dev() (git-fixes). - Bluetooth: fix repeated calls to sco_sock_kill (git-fixes). - Bluetooth: hidp: use correct wait queue when removing ctrl_wait (git-fixes). - Bluetooth: increase BTNAMSIZ to 21 chars to fix potential buffer overflow (git-fixes). - Bluetooth: mgmt: Fix wrong opcode in the response for add_adv cmd (git-fixes). - Bluetooth: sco: prevent information leak in sco_conn_defer_accept() (git-fixes). - Documentation: admin-guide: PM: Add intel_idle document (bsc#1175543) - KVM: VMX: Drop guest CPUID check for VMXE in vmx_set_cr4() (bsc#1188786). - KVM: VMX: Enable machine check support for 32bit targets (bsc#1188787). - KVM: VMX: Explicitly clear RFLAGS.CF and RFLAGS.ZF in VM-Exit RSB path (bsc#1188788). - KVM: VMX: Extend VMXs #AC interceptor to handle split lock #AC in guest (bsc#1187959). - KVM: nVMX: Handle split-lock #AC exceptions that happen in L2 (bsc#1187959). - KVM: nVMX: Really make emulated nested preemption timer pinned (bsc#1188780). - KVM: nVMX: Reset the segment cache when stuffing guest segs (bsc#1188781). - KVM: nVMX: Skip IBPB when switching between vmcs01 and vmcs02 (bsc#1188782). - KVM: nVMX: Sync unsync'd vmcs02 state to vmcs12 on migration (bsc#1188783). - KVM: nVMX: Truncate bits 63:32 of VMCS field on nested check in !64-bit (bsc#1188784). - KVM: x86: Emulate split-lock access as a write in emulator (bsc#1187959). - KVM: x86: bit 8 of non-leaf PDPEs is not reserved (bsc#1188790). - NFS: Correct size calculation for create reply length (bsc#1189870). - NFSv4.1: Do not rebind to the same source port when (bnc#1186264 bnc#1189021) - NFSv4/pNFS: Do not call _nfs4_pnfs_v3_ds_connect multiple times (git-fixes). - NFSv4: Initialise connection to the server in nfs4_alloc_client() (bsc#1040364). - PCI/MSI: Correct misleading comments (git-fixes). - PCI/MSI: Do not set invalid bits in MSI mask (git-fixes). - PCI/MSI: Enable and mask MSI-X early (git-fixes). - PCI/MSI: Mask all unused MSI-X entries (git-fixes). - PCI/MSI: Skip masking MSI-X on Xen PV (git-fixes). - PCI/MSI: Use msi_mask_irq() in pci_msi_shutdown() (git-fixes). - PCI: Increase D3 delay for AMD Renoir/Cezanne XHCI (git-fixes). - PCI: PM: Avoid forcing PCI_D0 for wakeup reasons inconsistently (git-fixes). - PCI: PM: Enable PME if it can be signaled from D3cold (git-fixes). - RDMA/bnxt_re: Fix stats counters (bsc#1188231). - SUNRPC: 'Directory with parent 'rpc_clnt' already present!' (bsc#1168202 bsc#1188924). - SUNRPC: Fix the batch tasks count wraparound (git-fixes). - SUNRPC: Should wake up the privileged task firstly (git-fixes). - SUNRPC: defer slow parts of rpc_free_client() to a workqueue (bsc#1168202 bsc#1188924). - SUNRPC: fix use-after-free in rpc_free_client_work() (bsc#1168202 bsc#1188924). - SUNRPC: improve error response to over-size gss credential (bsc#1190022). - SUNRPC: prevent port reuse on transports which do not request it (bnc#1186264 bnc#1189021). - USB: core: Avoid WARNings for 0-length descriptor requests (git-fixes). - USB: serial: ch341: fix character loss at high transfer rates (git-fixes). - USB: serial: ftdi_sio: add device ID for Auto-M3 OP-COM v2 (git-fixes). - USB: serial: option: add Telit FD980 composition 0x1056 (git-fixes). - USB: usbtmc: Fix RCU stall warning (git-fixes). - USB:ehci:fix Kunpeng920 ehci hardware problem (git-fixes). - VMCI: fix NULL pointer dereference when unmapping queue pair (git-fixes). - ath6kl: wmi: fix an error code in ath6kl_wmi_sync_point() (git-fixes). - ath9k: Clear key cache explicitly on disabling hardware (git-fixes). - ath: Use safer key clearing with key cache entries (git-fixes). - bcma: Fix memory leak for internally-handled cores (git-fixes). - bdi: Do not use freezable workqueue (bsc#1189573). - blk-iolatency: error out if blk_get_queue() failed in iolatency_set_limit() (bsc#1189507). - blk-mq-sched: Fix blk_mq_sched_alloc_tags() error handling (bsc#1189506). - blk-wbt: introduce a new disable state to prevent false positive by rwb_enabled() (bsc#1189503). - blk-wbt: make sure throttle is enabled properly (bsc#1189504). - block: fix trace completion for chained bio (bsc#1189505). - bnxt_en: Validate vlan protocol ID on RX packets (jsc#SLE-15075). - brcmfmac: pcie: fix oops on failure to resume and reprobe (git-fixes). - btrfs: Rename __btrfs_alloc_chunk to btrfs_alloc_chunk (bsc#1189079). - btrfs: add a trace class for dumping the current ENOSPC state (bsc#1135481). - btrfs: add a trace point for reserve tickets (bsc#1135481). - btrfs: adjust the flush trace point to include the source (bsc#1135481). - btrfs: check reclaim_size in need_preemptive_reclaim (bsc#1135481). - btrfs: factor out create_chunk() (bsc#1189077). - btrfs: factor out decide_stripe_size() (bsc#1189077). - btrfs: factor out gather_device_info() (bsc#1189077). - btrfs: factor out init_alloc_chunk_ctl (bsc#1189077). - btrfs: fix btrfs_calc_reclaim_metadata_size calculation (bsc#1135481). - btrfs: fix deadlock with concurrent chunk allocations involving system chunks (bsc#1189077). - btrfs: handle invalid profile in chunk allocation (bsc#1189077). - btrfs: implement space clamping for preemptive flushing (bsc#1135481). - btrfs: improve preemptive background space flushing (bsc#1135481). - btrfs: introduce a FORCE_COMMIT_TRANS flush operation (bsc#1135481). - btrfs: introduce alloc_chunk_ctl (bsc#1189077). - btrfs: introduce chunk allocation policy (bsc#1189077). - btrfs: make flush_space take a enum btrfs_flush_state instead of int (bsc#1135481). - btrfs: move the chunk_mutex in btrfs_read_chunk_tree (bsc#1189077). - btrfs: parameterize dev_extent_min for chunk allocation (bsc#1189077). - btrfs: refactor find_free_dev_extent_start() (bsc#1189077). - btrfs: remove FLUSH_DELAYED_REFS from data ENOSPC flushing (bsc#1135481). - btrfs: rename need_do_async_reclaim (bsc#1135481). - btrfs: rework btrfs_calc_reclaim_metadata_size (bsc#1135481). - btrfs: rework chunk allocation to avoid exhaustion of the system chunk array (bsc#1189077). - btrfs: rip out btrfs_space_info::total_bytes_pinned (bsc#1135481). - btrfs: rip the first_ticket_bytes logic from fail_all_tickets (bsc#1135481). - btrfs: simplify the logic in need_preemptive_flushing (bsc#1135481). - btrfs: tracepoints: convert flush states to using EM macros (bsc#1135481). - btrfs: tracepoints: fix btrfs_trigger_flush symbolic string for flags (bsc#1135481). - can: ti_hecc: Fix memleak in ti_hecc_probe (git-fixes). - can: usb: esd_usb2: esd_usb2_rx_event(): fix the interchange of the CAN RX and TX error counters (git-fixes). - ceph: clean up and optimize ceph_check_delayed_caps() (bsc#1187468). - ceph: reduce contention in ceph_check_delayed_caps() (bsc#1187468). - ceph: take snap_empty_lock atomically with snaprealm refcount change (bsc#1189427). - cifs: Remove unused inline function is_sysvol_or_netlogon() (bsc#1185902). - cifs: avoid starvation when refreshing dfs cache (bsc#1185902). - cifs: constify get_normalized_path() properly (bsc#1185902). - cifs: do not cargo-cult strndup() (bsc#1185902). - cifs: do not send tree disconnect to ipc shares (bsc#1185902). - cifs: do not share tcp servers with dfs mounts (bsc#1185902). - cifs: do not share tcp sessions of dfs connections (bsc#1185902). - cifs: fix check of dfs interlinks (bsc#1185902). - cifs: fix path comparison and hash calc (bsc#1185902). - cifs: get rid of @noreq param in __dfs_cache_find() (bsc#1185902). - cifs: handle different charsets in dfs cache (bsc#1185902). - cifs: keep referral server sessions alive (bsc#1185902). - cifs: missing null pointer check in cifs_mount (bsc#1185902). - cifs: prevent NULL deref in cifs_compose_mount_options() (bsc#1185902). - cifs: set a minimum of 2 minutes for refreshing dfs cache (bsc#1185902). - clk: fix leak on devm_clk_bulk_get_all() unwind (git-fixes). - clk: stm32f4: fix post divisor setup for I2S/SAI PLLs (git-fixes). - cpuidle: Allow idle states to be disabled by default (bsc#1175543) - cpuidle: Consolidate disabled state checks (bsc#1175543) - cpuidle: Drop disabled field from struct cpuidle_state (bsc#1175543) - cpuidle: Fix cpuidle_driver_state_disabled() (bsc#1175543) - cpuidle: Introduce cpuidle_driver_state_disabled() for driver quirks (bsc#1175543) - crypto: ccp - Annotate SEV Firmware file names (bsc#1189212). - crypto: qat - use proper type for vf_mask (git-fixes). - crypto: x86/curve25519 - fix cpu feature checking logic in mod_exit (git-fixes). - device-dax: Fix default return code of range_parse() (git-fixes). - dm integrity: fix missing goto in bitmap_flush_interval error handling (git-fixes). - dm rq: fix double free of blk_mq_tag_set in dev remove after table load fails (git-fixes). - dm verity: fix DM_VERITY_OPTS_MAX value (git-fixes). - dmaengine: idxd: fix setup sequence for MSIXPERM table (git-fixes). - dmaengine: imx-dma: configure the generic DMA type to make it work (git-fixes). - dmaengine: imx-dma: configure the generic DMA type to make it work (git-fixes). - dmaengine: imx-sdma: remove duplicated sdma_load_context (git-fixes). - dmaengine: of-dma: router_xlate to return -EPROBE_DEFER if controller is not yet available (git-fixes). - dmaengine: usb-dmac: Fix PM reference leak in usb_dmac_probe() (git-fixes). - dmaengine: xilinx_dma: Fix read-after-free bug when terminating transfers (git-fixes). - drivers/block/null_blk/main: Fix a double free in null_init (git-fixes). - drm/amd/display: Fix Dynamic bpp issue with 8K30 with Navi 1X (git-fixes). - drm/amd/display: Fix comparison error in dcn21 DML (git-fixes). - drm/amd/display: Fix max vstartup calculation for modes with borders (git-fixes). - drm/amd/display: Remove invalid assert for ODM + MPC case (git-fixes). - drm/amd/display: use GFP_ATOMIC in amdgpu_dm_irq_schedule_work (git-fixes). - drm/amd/display: workaround for hard hang on HPD on native DP (git-fixes). - drm/amdgpu/acp: Make PM domain really work (git-fixes). - drm/amdgpu/display: fix DMUB firmware version info (git-fixes). - drm/amdgpu/display: only enable aux backlight control for OLED panels (git-fixes). - drm/amdgpu: do not enable baco on boco platforms in runpm (git-fixes). - drm/amdgpu: fix the doorbell missing when in CGPG issue for renoir (git-fixes). - drm/dp_mst: Fix return code on sideband message failure (git-fixes). - drm/i915/dg1: gmbus pin mapping (bsc#1188700). - drm/i915/dg1: provide port/phy mapping for vbt (bsc#1188700). - drm/i915/gen9_bc: Add W/A for missing STRAP config on TGP PCH + CML combos (bsc#1188700). - drm/i915/gen9_bc: Introduce HPD pin mappings for TGP PCH + CML combos (bsc#1188700). - drm/i915/gen9_bc: Introduce TGP PCH DDC pin mappings (bsc#1188700). - drm/i915/gen9_bc: Recognize TGP PCH + CML combos (bsc#1188700). - drm/i915/rkl: new rkl ddc map for different PCH (bsc#1188700). - drm/i915: Add VBT AUX CH H and I (bsc#1188700). - drm/i915: Add VBT DVO ports H and I (bsc#1188700). - drm/i915: Add more AUX CHs to the enum (bsc#1188700). - drm/i915: Configure GEN11_{TBT,TC}_HOTPLUG_CTL for ports TC5/6 (bsc#1188700). - drm/i915: Correct SFC_DONE register offset (git-fixes). - drm/i915: Introduce HPD_PORT_TC&lt;n> (bsc#1188700). - drm/i915: Move hpd_pin setup to encoder init (bsc#1188700). - drm/i915: Nuke the redundant TC/TBT HPD bit defines (bsc#1188700). - drm/i915: Only access SFC_DONE when media domain is not fused off (git-fixes). - drm/meson: fix colour distortion from HDR set during vendor u-boot (git-fixes). - drm/msi/mdp4: populate priv->kms in mdp4_kms_init (git-fixes). - drm/msm/dpu: make dpu_hw_ctl_clear_all_blendstages clear necessary LMs (git-fixes). - drm/msm/dsi: Fix some reference counted resource leaks (git-fixes). - drm/msm: Fix error return code in msm_drm_init() (git-fixes). - drm/nouveau/kms/nv50: workaround EFI GOP window channel format differences (git-fixes). - drm/of: free the iterator object on failure (git-fixes). - drm/of: free the right object (git-fixes). - drm/panfrost: Fix missing clk_disable_unprepare() on error in panfrost_clk_init() (git-fixes). - drm/prime: fix comment on PRIME Helpers (git-fixes). - ext4: cleanup in-core orphan list if ext4_truncate() failed to get a transaction handle (bsc#1189568). - ext4: correct the cache_nr in tracepoint ext4_es_shrink_exit (bsc#1189564). - ext4: fix avefreec in find_group_orlov (bsc#1189566). - ext4: fix kernel infoleak via ext4_extent_header (bsc#1189562). - ext4: fix potential htree corruption when growing large_dir directories (bsc#1189576). - ext4: remove check for zero nr_to_scan in ext4_es_scan() (bsc#1189565). - ext4: return error code when ext4_fill_flex_info() fails (bsc#1189563). - ext4: use ext4_grp_locked_error in mb_find_extent (bsc#1189567). - fanotify: fix copy_event_to_user() fid error clean up (bsc#1189574). - firmware_loader: fix use-after-free in firmware_fallback_sysfs (git-fixes). - firmware_loader: use -ETIMEDOUT instead of -EAGAIN in fw_load_sysfs_fallback (git-fixes). - fixup "rpm: support gz and zst compression methods" (bsc#1190358, bsc#1190428). - fpga: altera-freeze-bridge: Address warning about unused variable (git-fixes). - fpga: dfl: fme: Fix cpu hotplug issue in performance reporting (git-fixes). - fpga: dfl: fme: Fix cpu hotplug issue in performance reporting (git-fixes). - fpga: xiilnx-spi: Address warning about unused variable (git-fixes). - fpga: zynqmp-fpga: Address warning about unused variable (git-fixes). - gpio: eic-sprd: break loop when getting NULL device resource (git-fixes). - gpio: tqmx86: really make IRQ optional (git-fixes). - i2c: dev: zero out array used for i2c reads from userspace (git-fixes). - i2c: highlander: add IRQ check (git-fixes). - i2c: iop3xx: fix deferred probing (git-fixes). - i2c: mt65xx: fix IRQ check (git-fixes). - i2c: s3c2410: fix IRQ check (git-fixes). - iio: adc: Fix incorrect exit of for-loop (git-fixes). - iio: adc: ti-ads7950: Ensure CS is deasserted after reading channels (git-fixes). - iio: humidity: hdc100x: Add margin to the conversion time (git-fixes). - intel_idle: Add module parameter to prevent ACPI _CST from being used (bsc#1175543) - intel_idle: Allow ACPI _CST to be used for selected known processors (bsc#1175543) - intel_idle: Annotate init time data structures (bsc#1175543) - intel_idle: Customize IceLake server support (bsc#1175543) - intel_idle: Disable ACPI _CST on Haswell (bsc#1175543, bsc#1177399, bsc#1180347, bsc#1180141) - intel_idle: Fix max_cstate for processor models without C-state tables (bsc#1175543) - intel_idle: Ignore _CST if control cannot be taken from the platform (bsc#1175543) - intel_idle: Refactor intel_idle_cpuidle_driver_init() (bsc#1175543) - intel_idle: Use ACPI _CST for processor models without C-state tables (bsc#1175543) - iommu/amd: Fix extended features logging (bsc#1189213). - iommu/amd: Move Stoney Ridge check to detect_ivrs() (bsc#1189762). - iommu/arm-smmu-v3: Decrease the queue size of evtq and priq (bsc#1189210). - iommu/arm-smmu-v3: add bit field SFM into GERROR_ERR_MASK (bsc#1189209). - iommu/dma: Fix IOVA reserve dma ranges (bsc#1189214). - iommu/dma: Fix compile warning in 32-bit builds (bsc#1189229). - iommu/vt-d: Check for allocation failure in aux_detach_device() (bsc#1189215). - iommu/vt-d: Define counter explicitly as unsigned int (bsc#1189216). - iommu/vt-d: Do not set then clear private data in prq_event_thread() (bsc#1189217). - iommu/vt-d: Fix sysfs leak in alloc_iommu() (bsc#1189218). - iommu/vt-d: Force to flush iotlb before creating superpage (bsc#1189219). - iommu/vt-d: Global devTLB flush when present context entry changed (bsc#1189220). - iommu/vt-d: Invalidate PASID cache when root/context entry changed (bsc#1189221). - iommu/vt-d: Reject unsupported page request modes (bsc#1189222). - ionic: add handling of larger descriptors (jsc#SLE-16649). - ionic: add new queue features to interface (jsc#SLE-16649). - ionic: aggregate Tx byte counting calls (jsc#SLE-16649). - ionic: block actions during fw reset (jsc#SLE-16649). - ionic: change mtu after queues are stopped (jsc#SLE-16649). - ionic: check for link after netdev registration (jsc#SLE-16649). - ionic: code cleanup details (jsc#SLE-16649). - ionic: fix sizeof usage (jsc#SLE-16649). - ionic: fix unchecked reference (jsc#SLE-16649). - ionic: fix up dim accounting for tx and rx (jsc#SLE-16649). - ionic: generic tx skb mapping (jsc#SLE-16649). - ionic: implement Rx page reuse (jsc#SLE-16649). - ionic: make all rx_mode work threadsafe (jsc#SLE-16649). - ionic: move rx_page_alloc and free (jsc#SLE-16649). - ionic: optimize fastpath struct usage (jsc#SLE-16649). - ionic: protect adminq from early destroy (jsc#SLE-16649). - ionic: rebuild debugfs on qcq swap (jsc#SLE-16649). - ionic: remove intr coalesce update from napi (jsc#SLE-16649). - ionic: remove some unnecessary oom messages (jsc#SLE-16649). - ionic: simplify TSO descriptor mapping (jsc#SLE-16649). - ionic: simplify rx skb alloc (jsc#SLE-16649). - ionic: simplify the intr_index use in txq_init (jsc#SLE-16649). - ionic: simplify tx clean (jsc#SLE-16649). - ionic: simplify use of completion types (jsc#SLE-16649). - ionic: start queues before announcing link up (jsc#SLE-16649). - ionic: stop watchdog when in broken state (jsc#SLE-16649). - ionic: useful names for booleans (jsc#SLE-16649). - iwlwifi: pnvm: accept multiple HW-type TLVs (git-fixes). - iwlwifi: rs-fw: do not support stbc for HE 160 (git-fixes). - iwlwifi: skip first element in the WTAS ACPI table (git-fixes). - kABI fix of usb_dcd_config_params (git-fixes). - kABI: Fix kABI after fixing vcpu-id indexed arrays (git-fixes). - kabi fix for NFSv4.1: Do not rebind to the same source port when reconnecting to the server (bnc#1186264 bnc#1189021) - kabi fix for SUNRPC: defer slow parts of rpc_free_client() to a workqueue (bsc#1168202 bsc#1188924). - kernel, fs: Introduce and use set_restart_fn() and arch_set_restart_data() (bsc#1189153). - kernel-cert-subpackage: Fix certificate location in scriptlets (bsc#1189841). - leds: trigger: audio: Add an activate callback to ensure the initial brightness is set (git-fixes). - lib/mpi: use kcalloc in mpi_resize (git-fixes). - lib: Add zstd support to decompress (bsc#1187483, jsc#SLE-18766). - libata: fix ata_pio_sector for CONFIG_HIGHMEM (git-fixes). - mac80211: Fix insufficient headroom issue for AMSDU (git-fixes). - md/raid10: properly indicate failure when ending a failed write request (git-fixes). - md: revert io stats accounting (git-fixes). - media: TDA1997x: enable EDID support (git-fixes). - media: cxd2880-spi: Fix an error handling path (git-fixes). - media: drivers/media/usb: fix memory leak in zr364xx_probe (git-fixes). - media: dvb-usb: Fix error handling in dvb_usb_i2c_init (git-fixes). - media: dvb-usb: fix uninit-value in dvb_usb_adapter_dvb_init (git-fixes). - media: dvb-usb: fix uninit-value in vp702x_read_mac_addr (git-fixes). - media: em28xx-input: fix refcount bug in em28xx_usb_disconnect (git-fixes). - media: go7007: fix memory leak in go7007_usb_probe (git-fixes). - media: go7007: remove redundant initialization (git-fixes). - media: rtl28xxu: fix zero-length control request (git-fixes). - media: stkwebcam: fix memory leak in stk_camera_probe (git-fixes). - media: venus: venc: Fix potential null pointer dereference on pointer fmt (git-fixes). - media: videobuf2-core: dequeue if start_streaming fails (git-fixes). - media: zr364xx: fix memory leaks in probe() (git-fixes). - media: zr364xx: propagate errors from zr364xx_start_readpipe() (git-fixes). - misc: atmel-ssc: lock with mutex instead of spinlock (git-fixes). - misc: rtsx: do not setting OC_POWER_DOWN reg in rtsx_pci_init_ocp() (git-fixes). - mm/thp: unmap_mapping_page() to fix THP truncate_cleanup_page() (bsc#1189569). - mm/vmscan: fix infinite loop in drop_slab_node (VM Functionality, bsc#1189301). - mm: fix memory_failure() handling of dax-namespace metadata (bsc#1189872). - mm: swap: properly update readahead statistics in unuse_pte_range() (bsc#1187619). - mmc: dw_mmc: Fix hang on data CRC error (git-fixes). - mmc: dw_mmc: Fix issue with uninitialized dma_slave_config (git-fixes). - mmc: moxart: Fix issue with uninitialized dma_slave_config (git-fixes). - mmc: sdhci-iproc: Cap min clock frequency on BCM2711 (git-fixes). - mmc: sdhci-iproc: Set SDHCI_QUIRK_CAP_CLOCK_BASE_BROKEN on BCM2711 (git-fixes). - mtd: cfi_cmdset_0002: fix crash when erasing/writing AMD cards (git-fixes). - nbd: Aovid double completion of a request (git-fixes). - nbd: Fix NULL pointer in flush_workqueue (git-fixes). - net/mlx5: Add ts_cqe_to_dest_cqn related bits (bsc#1188412) - net/mlx5: Properly convey driver version to firmware (git-fixes). - net/mlx5e: Add missing capability check for uplink follow (bsc#1188412) - net: dsa: mv88e6xxx: Avoid VTU corruption on 6097 (git-fixes). - net: dsa: mv88e6xxx: also read STU state in mv88e6250_g1_vtu_getnext (git-fixes). - net: stmmac: free tx skb buffer in stmmac_resume() (git-fixes). - net: usb: lan78xx: do not modify phy_device state concurrently (bsc#1188270) - nfs: fix acl memory leak of posix_acl_create() (git-fixes). - nvme-multipath: revalidate paths during rescan (bsc#1187211) - nvme-pci: Use u32 for nvme_dev.q_depth and nvme_queue.q_depth (bsc#1181972). - nvme-pci: fix NULL req in completion handler (bsc#1181972). - nvme-pci: limit maximum queue depth to 4095 (bsc#1181972). - nvme-pci: use unsigned for io queue depth (bsc#1181972). - nvme-tcp: Do not reset transport on data digest errors (bsc#1188418). - nvme-tcp: do not check blk_mq_tag_to_rq when receiving pdu data (bsc#1181972). - nvme: avoid possible double fetch in handling CQE (bsc#1181972). - nvme: code command_id with a genctr for use-after-free validation (bsc#1181972). - nvme: only call synchronize_srcu when clearing current path (bsc#1188067). - nvmet: use NVMET_MAX_NAMESPACES to set nn value (bsc#1189384). - ocfs2: fix snprintf() checking (bsc#1189581). - ocfs2: fix zero out valid data (bsc#1189579). - ocfs2: initialize ip_next_orphan (bsc#1186731). - ocfs2: issue zeroout to EOF blocks (bsc#1189582). - ovl: allow upperdir inside lowerdir (bsc#1189323). - ovl: expand warning in ovl_d_real() (bsc#1189323). - ovl: fix missing revert_creds() on error path (bsc#1189323). - ovl: perform vfs_getxattr() with mounter creds (bsc#1189323). - ovl: skip getxattr of security labels (bsc#1189323). - params: lift param_set_uint_minmax to common code (bsc#1181972). - pcmcia: i82092: fix a null pointer dereference bug (git-fixes). - perf/x86/amd: Do not touch the AMD64_EVENTSEL_HOSTONLY bit inside the guest (bsc#1189225). - pinctrl: tigerlake: Fix GPIO mapping for newer version of software (git-fixes). - platform/x86: pcengines-apuv2: Add missing terminating entries to gpio-lookup tables (git-fixes). - post.sh: detect /usr mountpoint too - power: supply: max17042: handle fails of reading status register (git-fixes). - powerpc/cacheinfo: Improve diagnostics about malformed cache lists (jsc#SLE-13615 bsc#1180100 ltc#190257 git-fixes). - powerpc/cacheinfo: Lookup cache by dt node and thread-group id (jsc#SLE-13615 bsc#1180100 ltc#190257 git-fixes). - powerpc/cacheinfo: Remove the redundant get_shared_cpu_map() (jsc#SLE-13615 bsc#1180100 ltc#190257 git-fixes). - powerpc/cacheinfo: Use name@unit instead of full DT path in debug messages (jsc#SLE-13615 bsc#1180100 ltc#190257 git-fixes). - powerpc/papr_scm: Make 'perf_stats' invisible if perf-stats unavailable (bsc#1175052 jsc#SLE-13823 bsc#1174969 jsc#SLE-12769 git-fixes). - powerpc/papr_scm: Reduce error severity if nvdimm stats inaccessible (bsc#1189197 ltc#193906). - powerpc/pseries: Fix regression while building external modules (bsc#1160010 ltc#183046 git-fixes). - powerpc/pseries: Fix update of LPAR security flavor after LPM (bsc#1188885 ltc#193722 git-fixes). - powerpc/smp: Make some symbols static (jsc#SLE-13615 bsc#1180100 ltc#190257 git-fixes). - powerpc/smp: Use existing L2 cache_map cpumask to find L3 cache siblings (jsc#SLE-13615 bsc#1180100 ltc#190257 git-fixes). - powerpc: Fix is_kvm_guest() / kvm_para_available() (bsc#1181148 ltc#190702 git-fixes). - regulator: rt5033: Fix n_voltages settings for BUCK and LDO (git-fixes). - regulator: vctrl: Avoid lockdep warning in enable/disable ops (git-fixes). - regulator: vctrl: Use locked regulator_get_voltage in probe path (git-fixes). - rpm/kernel-binary.spec.in: Use kmod-zstd provide. This makes it possible to use kmod with ZSTD support on non-Tumbleweed. - rpm/kernel-obs-build.spec.in: make builds reproducible (bsc#1189305) - rpm/kernel-source.rpmlintrc: ignore new include/config files In 5.13, since 0e0345b77ac4, config files have no longer .h suffix. Adapt the zero-length check. Based on Martin Liska's change. - rq-qos: fix missed wake-ups in rq_qos_throttle try two (bsc#1189575). - rsi: fix an error code in rsi_probe() (git-fixes). - rsi: fix error code in rsi_load_9116_firmware() (git-fixes). - s390/ap: Fix hanging ioctl caused by wrong msg counter (bsc#1188982 LTC#193817). - s390/boot: fix use of expolines in the DMA code (bsc#1188878 ltc#193771). - scsi: blkcg: Add app identifier support for blkcg (bsc#1189385 jsc#SLE-18970). - scsi: blkcg: Fix application ID config options (bsc#1189385 jsc#SLE-18970). - scsi: cgroup: Add cgroup_get_from_id() (bsc#1189385 jsc#SLE-18970). - scsi: core: Add scsi_prot_ref_tag() helper (bsc#1189392). - scsi: ibmvfc: Do not wait for initial device scan (bsc#1127650). - scsi: libfc: Fix array index out of bound exception (bsc#1188616). - scsi: lpfc: Add 256 Gb link speed support (bsc#1189385). - scsi: lpfc: Add PCI ID support for LPe37000/LPe38000 series adapters (bsc#1189385). - scsi: lpfc: Call discovery state machine when handling PLOGI/ADISC completions (bsc#1189385). - scsi: lpfc: Clear outstanding active mailbox during PCI function reset (bsc#1189385). - scsi: lpfc: Copyright updates for 12.8.0.11 patches (bsc#1189385). - scsi: lpfc: Copyright updates for 14.0.0.0 patches (bsc#1189385). - scsi: lpfc: Delay unregistering from transport until GIDFT or ADISC completes (bsc#1189385). - scsi: lpfc: Discovery state machine fixes for LOGO handling (bsc#1189385). - scsi: lpfc: Enable adisc discovery after RSCN by default (bsc#1189385). - scsi: lpfc: Fix KASAN slab-out-of-bounds in lpfc_unreg_rpi() routine (bsc#1189385). - scsi: lpfc: Fix NULL ptr dereference with NPIV ports for RDF handling (bsc#1189385). - scsi: lpfc: Fix NVMe support reporting in log message (bsc#1189385). - scsi: lpfc: Fix build error in lpfc_scsi.c (bsc#1189385). - scsi: lpfc: Fix cq_id truncation in rq create (bsc#1189385). - scsi: lpfc: Fix function description comments for vmid routines (bsc#1189385). - scsi: lpfc: Fix memory leaks in error paths while issuing ELS RDF/SCR request (bsc#1189385). - scsi: lpfc: Fix possible ABBA deadlock in nvmet_xri_aborted() (bsc#1189385). - scsi: lpfc: Fix target reset handler from falsely returning FAILURE (bsc#1189385). - scsi: lpfc: Improve firmware download logging (bsc#1189385). - scsi: lpfc: Keep NDLP reference until after freeing the IOCB after ELS handling (bsc#1189385). - scsi: lpfc: Move initialization of phba->poll_list earlier to avoid crash (git-fixes). - scsi: lpfc: Remove REG_LOGIN check requirement to issue an ELS RDF (bsc#1189385). - scsi: lpfc: Remove redundant assignment to pointer pcmd (bsc#1189385). - scsi: lpfc: Remove redundant assignment to pointer temp_hdr (bsc#1189385). - scsi: lpfc: Remove use of kmalloc() in trace event logging (bsc#1189385). - scsi: lpfc: Revise Topology and RAS support checks for new adapters (bsc#1189385). - scsi: lpfc: Skip issuing ADISC when node is in NPR state (bsc#1189385). - scsi: lpfc: Skip reg_vpi when link is down for SLI3 in ADISC cmpl path (bsc#1189385). - scsi: lpfc: Update lpfc version to 12.8.0.11 (bsc#1189385). - scsi: lpfc: Update lpfc version to 14.0.0.0 (bsc#1189385). - scsi: lpfc: Use PBDE feature enabled bit to determine PBDE support (bsc#1189385). - scsi: lpfc: Use list_move_tail() instead of list_del()/list_add_tail() (bsc#1189385). - scsi: lpfc: vmid: Add QFPA and VMID timeout check in worker thread (bsc#1189385 jsc#SLE-18970). - scsi: lpfc: vmid: Add datastructure for supporting VMID in lpfc (bsc#1189385 jsc#SLE-18970). - scsi: lpfc: vmid: Add support for VMID in mailbox command (bsc#1189385 jsc#SLE-18970). - scsi: lpfc: vmid: Append the VMID to the wqe before sending (bsc#1189385 jsc#SLE-18970). - scsi: lpfc: vmid: Functions to manage VMIDs (bsc#1189385 jsc#SLE-18970). - scsi: lpfc: vmid: Implement CT commands for appid (bsc#1189385 jsc#SLE-18970). - scsi: lpfc: vmid: Implement ELS commands for appid (bsc#1189385 jsc#SLE-18970). - scsi: lpfc: vmid: Introduce VMID in I/O path (bsc#1189385 jsc#SLE-18970). - scsi: lpfc: vmid: Timeout implementation for VMID (bsc#1189385 jsc#SLE-18970). - scsi: lpfc: vmid: VMID parameter initialization (bsc#1189385 jsc#SLE-18970). - scsi: mpt3sas: Fix ReplyPostFree pool allocation (bsc#1181006). - scsi: qla2xxx: Add heartbeat check (bsc#1189392). - scsi: qla2xxx: Fix error return code in qla82xx_write_flash_dword() (bsc#1189392). - scsi: qla2xxx: Fix spelling mistakes "allloc" -> "alloc" (bsc#1189392). - scsi: qla2xxx: Fix use after free in debug code (bsc#1189392). - scsi: qla2xxx: Log PCI address in qla_nvme_unregister_remote_port() (bsc#1189392). - scsi: qla2xxx: Remove duplicate declarations (bsc#1189392). - scsi: qla2xxx: Remove redundant assignment to rval (bsc#1189392). - scsi: qla2xxx: Remove redundant continue statement in a for-loop (bsc#1189392). - scsi: qla2xxx: Remove redundant initialization of variable num_cnt (bsc#1189392). - scsi: qla2xxx: Remove unused variable 'status' (bsc#1189392). - scsi: qla2xxx: Update version to 10.02.00.107-k (bsc#1189392). - scsi: qla2xxx: Use list_move_tail() instead of list_del()/list_add_tail() (bsc#1189392). - scsi: qla2xxx: Use the proper SCSI midlayer interfaces for PI (bsc#1189392). - scsi: qla2xxx: edif: Add authentication pass + fail bsgs (bsc#1189392). - scsi: qla2xxx: edif: Add detection of secure device (bsc#1189392). - scsi: qla2xxx: edif: Add doorbell notification for app (bsc#1189392). - scsi: qla2xxx: edif: Add encryption to I/O path (bsc#1189392). - scsi: qla2xxx: edif: Add extraction of auth_els from the wire (bsc#1189392). - scsi: qla2xxx: edif: Add getfcinfo and statistic bsgs (bsc#1189392). - scsi: qla2xxx: edif: Add key update (bsc#1189392). - scsi: qla2xxx: edif: Add send, receive, and accept for auth_els (bsc#1189392). - scsi: qla2xxx: edif: Add start + stop bsgs (bsc#1189392). - scsi: qla2xxx: edif: Increment command and completion counts (bsc#1189392). - scsi: scsi_transport_srp: Do not block target in SRP_PORT_LOST state (bsc#1184180). - scsi: target: qla2xxx: Wait for stop_phase1 at WWN removal (bsc#1189392). - scsi: zfcp: Report port fc_security as unknown early during remote cable pull (git-fixes). - serial: 8250: Mask out floating 16/32-bit bus bits (git-fixes). - serial: 8250_mtk: fix uart corruption issue when rx power off (git-fixes). - serial: 8250_pci: Avoid irq sharing for MSI(-X) interrupts (git-fixes). - serial: 8250_pci: Enumerate Elkhart Lake UARTs via dedicated driver (git-fixes). - serial: tegra: Only print FIFO error message when an error occurs (git-fixes). - slimbus: messaging: check for valid transaction id (git-fixes). - slimbus: messaging: start transaction ids from 1 instead of zero (git-fixes). - slimbus: ngd: reset dma setup during runtime pm (git-fixes). - soc: aspeed: lpc-ctrl: Fix boundary check for mmap (git-fixes). - soc: aspeed: p2a-ctrl: Fix boundary check for mmap (git-fixes). - soc: ixp4xx/qmgr: fix invalid __iomem access (git-fixes). - soc: ixp4xx/qmgr: fix invalid __iomem access (git-fixes). - soc: ixp4xx: fix printing resources (git-fixes). - soc: ixp4xx: fix printing resources (git-fixes). - soc: qcom: rpmhpd: Use corner in power_off (git-fixes). - soc: qcom: smsm: Fix missed interrupts if state changes while masked (git-fixes). - spi: imx: mx51-ecspi: Fix CONFIGREG delay comment (git-fixes). - spi: imx: mx51-ecspi: Fix low-speed CONFIGREG delay calculation (git-fixes). - spi: imx: mx51-ecspi: Reinstate low-speed CONFIGREG delay (git-fixes). - spi: mediatek: Fix fifo transfer (git-fixes). - spi: meson-spicc: fix memory leak in meson_spicc_remove (git-fixes). - spi: spi-fsl-dspi: Fix issue with uninitialized dma_slave_config (git-fixes). - spi: spi-pic32: Fix issue with uninitialized dma_slave_config (git-fixes). - spi: sprd: Fix the wrong WDG_LOAD_VAL (git-fixes). - spi: stm32h7: fix full duplex irq handler handling (git-fixes). - staging: rtl8192u: Fix bitwise vs logical operator in TranslateRxSignalStuff819xUsb() (git-fixes). - staging: rtl8712: get rid of flush_scheduled_work (git-fixes). - staging: rtl8723bs: Fix a resource leak in sd_int_dpc (git-fixes). - staging: rtl8723bs: Fix a resource leak in sd_int_dpc (git-fixes). - tracing / histogram: Fix NULL pointer dereference on strcmp() on NULL event name (git-fixes). - tracing / histogram: Give calculation hist_fields a size (git-fixes). - tracing: Reject string operand in the histogram expression (git-fixes). - tty: serial: fsl_lpuart: fix the wrong mapbase value (git-fixes). - ubifs: Fix error return code in alloc_wbufs() (bsc#1189585). - ubifs: Fix memleak in ubifs_init_authentication (bsc#1189583). - ubifs: Only check replay with inode type to judge if inode linked (bsc#1187455). - ubifs: Set/Clear I_LINKABLE under i_lock for whiteout inode (bsc#1189587). - ubifs: journal: Fix error return code in ubifs_jnl_write_inode() (bsc#1189586). - usb: bdc: Fix an error handling path in 'bdc_probe()' when no suitable DMA config is available (git-fixes). - usb: dwc3: Disable phy suspend after power-on reset (git-fixes). - usb: dwc3: Separate field holding multiple properties (git-fixes). - usb: dwc3: Stop active transfers before halting the controller (git-fixes). - usb: dwc3: Use clk_bulk_prepare_enable() (git-fixes). - usb: dwc3: Use devres to get clocks (git-fixes). - usb: dwc3: core: do not do suspend for device mode if already suspended (git-fixes). - usb: dwc3: debug: Remove newline printout (git-fixes). - usb: dwc3: gadget: Check MPS of the request length (git-fixes). - usb: dwc3: gadget: Clear DCTL.ULSTCHNGREQ before set (git-fixes). - usb: dwc3: gadget: Clear DEP flags after stop transfers in ep disable (git-fixes). - usb: dwc3: gadget: Disable gadget IRQ during pullup disable (git-fixes). - usb: dwc3: gadget: Do not send unintended link state change (git-fixes). - usb: dwc3: gadget: Do not setup more than requested (git-fixes). - usb: dwc3: gadget: Fix dwc3_calc_trbs_left() (git-fixes). - usb: dwc3: gadget: Fix handling ZLP (git-fixes). - usb: dwc3: gadget: Give back staled requests (git-fixes). - usb: dwc3: gadget: Handle ZLP for sg requests (git-fixes). - usb: dwc3: gadget: Prevent EP queuing while stopping transfers (git-fixes). - usb: dwc3: gadget: Properly track pending and queued SG (git-fixes). - usb: dwc3: gadget: Restart DWC3 gadget when enabling pullup (git-fixes). - usb: dwc3: gadget: Set BESL config parameter (git-fixes). - usb: dwc3: gadget: Set link state to RX_Detect on disconnect (git-fixes). - usb: dwc3: gadget: Stop EP0 transfers during pullup disable (git-fixes). - usb: dwc3: gadget: Workaround Mirosoft's BESL check (git-fixes). - usb: dwc3: meson-g12a: add IRQ check (git-fixes). - usb: dwc3: meson-g12a: check return of dwc3_meson_g12a_usb_init (git-fixes). - usb: dwc3: of-simple: add a shutdown (git-fixes). - usb: dwc3: st: Add of_dev_put() in probe function (git-fixes). - usb: dwc3: st: Add of_node_put() before return in probe function (git-fixes). - usb: dwc3: support continuous runtime PM with dual role (git-fixes). - usb: ehci-orion: Handle errors of clk_prepare_enable() in probe (git-fixes). - usb: gadget: Export recommended BESL values (git-fixes). - usb: gadget: f_hid: added GET_IDLE and SET_IDLE handlers (git-fixes). - usb: gadget: f_hid: fixed NULL pointer dereference (git-fixes). - usb: gadget: f_hid: idle uses the highest byte for duration (git-fixes). - usb: gadget: mv_u3d: request_irq() after initializing UDC (git-fixes). - usb: gadget: udc: at91: add IRQ check (git-fixes). - usb: gadget: udc: renesas_usb3: Fix soc_device_match() abuse (git-fixes). - usb: host: ohci-tmio: add IRQ check (git-fixes). - usb: host: xhci-rcar: Do not reload firmware after the completion (git-fixes). - usb: mtu3: fix the wrong HS mult value (git-fixes). - usb: mtu3: use @mult for HS isoc or intr (git-fixes). - usb: phy: fsl-usb: add IRQ check (git-fixes). - usb: phy: tahvo: add IRQ check (git-fixes). - usb: phy: twl6030: add IRQ checks (git-fixes). - usr: Add support for zstd compressed initramfs (bsc#1187483, jsc#SLE-18766). - virt_wifi: fix error on connect (git-fixes). - wireguard: allowedips: allocate nodes in kmem_cache (git-fixes). - wireguard: allowedips: free empty intermediate nodes when removing single node (git-fixes). - wireguard: allowedips: remove nodes in O(1) (git-fixes). - writeback: fix obtain a reference to a freeing memcg css (bsc#1189577). - x86/fpu: Limit xstate copy size in xstateregs_set() (bsc#1152489). - x86/fpu: Make init_fpstate correct with optimized XSAVE (bsc#1152489). - x86/fpu: Reset state for all signal restore failures (bsc#1152489). - x86/kvm: fix vcpu-id indexed array sizes (git-fixes). - x86/sev: Make sure IRQs are disabled while GHCB is active (jsc#SLE-14337). - x86/sev: Split up runtime #VC handler for correct state tracking (jsc#SLE-14337). - x86/sev: Use "SEV: " prefix for messages from sev.c (jsc#SLE-14337). - x86/signal: Detect and prevent an alternate signal stack overflow (bsc#1152489). - x86/split_lock: Provide handle_guest_split_lock() (bsc#1187959). - xen/events: Fix race in set_evtchn_to_irq (git-fixes). - xprtrdma: Pad optimization, revisited (bsc#1189760). cluster-md-kmp-azure-5.3.18-38.22.2.x86_64.rpm True dlm-kmp-azure-5.3.18-38.22.2.x86_64.rpm True gfs2-kmp-azure-5.3.18-38.22.2.x86_64.rpm True kernel-azure-5.3.18-38.22.2.nosrc.rpm True kernel-azure-5.3.18-38.22.2.x86_64.rpm True kernel-azure-devel-5.3.18-38.22.2.x86_64.rpm True kernel-azure-extra-5.3.18-38.22.2.x86_64.rpm True kernel-azure-livepatch-devel-5.3.18-38.22.2.x86_64.rpm True kernel-azure-optional-5.3.18-38.22.2.x86_64.rpm True kernel-devel-azure-5.3.18-38.22.1.noarch.rpm True kernel-source-azure-5.3.18-38.22.1.noarch.rpm True kernel-source-azure-5.3.18-38.22.1.src.rpm True kernel-syms-azure-5.3.18-38.22.1.src.rpm True kernel-syms-azure-5.3.18-38.22.1.x86_64.rpm True kselftests-kmp-azure-5.3.18-38.22.2.x86_64.rpm True ocfs2-kmp-azure-5.3.18-38.22.2.x86_64.rpm True reiserfs-kmp-azure-5.3.18-38.22.2.x86_64.rpm True openSUSE-SLE-15.3-2021-3300 Security update for git low SUSE Updates openSUSE-SLE 15.3 This update for git fixes the following issues: - CVE-2021-40330: Fixed unexpected cross-protocol requests via newline character in git_connect_git repository path (bsc#1189992). git-2.26.2-33.1.src.rpm openSUSE-SLE-15.3-2021-3140 Security update for xen moderate SUSE Updates openSUSE-SLE 15.3 This update for xen fixes the following issues: - CVE-2021-28701: Fixed race condition in XENMAPSPACE_grant_table handling (XSA-384) (bsc#1189632). - Upstream bug fixes (bsc#1027519) xen-4.14.2_06-3.12.1.src.rpm xen-4.14.2_06-3.12.1.x86_64.rpm xen-devel-4.14.2_06-3.12.1.x86_64.rpm xen-doc-html-4.14.2_06-3.12.1.x86_64.rpm xen-libs-32bit-4.14.2_06-3.12.1.x86_64.rpm xen-libs-4.14.2_06-3.12.1.x86_64.rpm xen-tools-4.14.2_06-3.12.1.x86_64.rpm xen-tools-domU-4.14.2_06-3.12.1.x86_64.rpm xen-tools-xendomains-wait-disk-4.14.2_06-3.12.1.noarch.rpm xen-4.14.2_06-3.12.1.aarch64.rpm xen-devel-4.14.2_06-3.12.1.aarch64.rpm xen-doc-html-4.14.2_06-3.12.1.aarch64.rpm xen-libs-4.14.2_06-3.12.1.aarch64.rpm xen-tools-4.14.2_06-3.12.1.aarch64.rpm xen-tools-domU-4.14.2_06-3.12.1.aarch64.rpm openSUSE-SLE-15.3-2021-3298 Security update for curl moderate SUSE Updates openSUSE-SLE 15.3 This update for curl fixes the following issues: - CVE-2021-22947: Fixed STARTTLS protocol injection via MITM (bsc#1190374). - CVE-2021-22946: Fixed protocol downgrade required TLS bypassed (bsc#1190373). curl-7.66.0-4.27.1.src.rpm curl-7.66.0-4.27.1.x86_64.rpm libcurl-devel-32bit-7.66.0-4.27.1.x86_64.rpm libcurl-devel-7.66.0-4.27.1.x86_64.rpm libcurl4-32bit-7.66.0-4.27.1.x86_64.rpm libcurl4-7.66.0-4.27.1.x86_64.rpm curl-7.66.0-4.27.1.s390x.rpm libcurl-devel-7.66.0-4.27.1.s390x.rpm libcurl4-7.66.0-4.27.1.s390x.rpm curl-7.66.0-4.27.1.ppc64le.rpm libcurl-devel-7.66.0-4.27.1.ppc64le.rpm libcurl4-7.66.0-4.27.1.ppc64le.rpm curl-7.66.0-4.27.1.aarch64.rpm libcurl-devel-7.66.0-4.27.1.aarch64.rpm libcurl4-7.66.0-4.27.1.aarch64.rpm openSUSE-SLE-15.3-2021-3130 Recommended update for sssd moderate SUSE Updates openSUSE-SLE 15.3 This update for sssd fixes the following issues: - Fixes a segfault with newer libcares2 versions when the library fails to parse a dns name. (bsc#1190021) libipa_hbac-devel-1.16.1-23.14.1.x86_64.rpm libipa_hbac0-1.16.1-23.14.1.x86_64.rpm libnfsidmap-sss-1.16.1-23.14.1.x86_64.rpm libsss_certmap-devel-1.16.1-23.14.1.x86_64.rpm libsss_certmap0-1.16.1-23.14.1.x86_64.rpm libsss_idmap-devel-1.16.1-23.14.1.x86_64.rpm libsss_idmap0-1.16.1-23.14.1.x86_64.rpm libsss_nss_idmap-devel-1.16.1-23.14.1.x86_64.rpm libsss_nss_idmap0-1.16.1-23.14.1.x86_64.rpm libsss_simpleifp-devel-1.16.1-23.14.1.x86_64.rpm libsss_simpleifp0-1.16.1-23.14.1.x86_64.rpm python3-ipa_hbac-1.16.1-23.14.1.x86_64.rpm python3-sss-murmur-1.16.1-23.14.1.x86_64.rpm python3-sss_nss_idmap-1.16.1-23.14.1.x86_64.rpm python3-sssd-config-1.16.1-23.14.1.x86_64.rpm sssd-1.16.1-23.14.1.src.rpm sssd-1.16.1-23.14.1.x86_64.rpm sssd-ad-1.16.1-23.14.1.x86_64.rpm sssd-common-1.16.1-23.14.1.x86_64.rpm sssd-dbus-1.16.1-23.14.1.x86_64.rpm sssd-ipa-1.16.1-23.14.1.x86_64.rpm sssd-krb5-1.16.1-23.14.1.x86_64.rpm sssd-krb5-common-1.16.1-23.14.1.x86_64.rpm sssd-ldap-1.16.1-23.14.1.x86_64.rpm sssd-proxy-1.16.1-23.14.1.x86_64.rpm sssd-tools-1.16.1-23.14.1.x86_64.rpm sssd-wbclient-1.16.1-23.14.1.x86_64.rpm sssd-wbclient-devel-1.16.1-23.14.1.x86_64.rpm sssd-winbind-idmap-1.16.1-23.14.1.x86_64.rpm libipa_hbac-devel-1.16.1-23.14.1.s390x.rpm libipa_hbac0-1.16.1-23.14.1.s390x.rpm libnfsidmap-sss-1.16.1-23.14.1.s390x.rpm libsss_certmap-devel-1.16.1-23.14.1.s390x.rpm libsss_certmap0-1.16.1-23.14.1.s390x.rpm libsss_idmap-devel-1.16.1-23.14.1.s390x.rpm libsss_idmap0-1.16.1-23.14.1.s390x.rpm libsss_nss_idmap-devel-1.16.1-23.14.1.s390x.rpm libsss_nss_idmap0-1.16.1-23.14.1.s390x.rpm libsss_simpleifp-devel-1.16.1-23.14.1.s390x.rpm libsss_simpleifp0-1.16.1-23.14.1.s390x.rpm python3-ipa_hbac-1.16.1-23.14.1.s390x.rpm python3-sss-murmur-1.16.1-23.14.1.s390x.rpm python3-sss_nss_idmap-1.16.1-23.14.1.s390x.rpm python3-sssd-config-1.16.1-23.14.1.s390x.rpm sssd-1.16.1-23.14.1.s390x.rpm sssd-ad-1.16.1-23.14.1.s390x.rpm sssd-common-1.16.1-23.14.1.s390x.rpm sssd-dbus-1.16.1-23.14.1.s390x.rpm sssd-ipa-1.16.1-23.14.1.s390x.rpm sssd-krb5-1.16.1-23.14.1.s390x.rpm sssd-krb5-common-1.16.1-23.14.1.s390x.rpm sssd-ldap-1.16.1-23.14.1.s390x.rpm sssd-proxy-1.16.1-23.14.1.s390x.rpm sssd-tools-1.16.1-23.14.1.s390x.rpm sssd-wbclient-1.16.1-23.14.1.s390x.rpm sssd-wbclient-devel-1.16.1-23.14.1.s390x.rpm sssd-winbind-idmap-1.16.1-23.14.1.s390x.rpm libipa_hbac-devel-1.16.1-23.14.1.ppc64le.rpm libipa_hbac0-1.16.1-23.14.1.ppc64le.rpm libnfsidmap-sss-1.16.1-23.14.1.ppc64le.rpm libsss_certmap-devel-1.16.1-23.14.1.ppc64le.rpm libsss_certmap0-1.16.1-23.14.1.ppc64le.rpm libsss_idmap-devel-1.16.1-23.14.1.ppc64le.rpm libsss_idmap0-1.16.1-23.14.1.ppc64le.rpm libsss_nss_idmap-devel-1.16.1-23.14.1.ppc64le.rpm libsss_nss_idmap0-1.16.1-23.14.1.ppc64le.rpm libsss_simpleifp-devel-1.16.1-23.14.1.ppc64le.rpm libsss_simpleifp0-1.16.1-23.14.1.ppc64le.rpm python3-ipa_hbac-1.16.1-23.14.1.ppc64le.rpm python3-sss-murmur-1.16.1-23.14.1.ppc64le.rpm python3-sss_nss_idmap-1.16.1-23.14.1.ppc64le.rpm python3-sssd-config-1.16.1-23.14.1.ppc64le.rpm sssd-1.16.1-23.14.1.ppc64le.rpm sssd-ad-1.16.1-23.14.1.ppc64le.rpm sssd-common-1.16.1-23.14.1.ppc64le.rpm sssd-dbus-1.16.1-23.14.1.ppc64le.rpm sssd-ipa-1.16.1-23.14.1.ppc64le.rpm sssd-krb5-1.16.1-23.14.1.ppc64le.rpm sssd-krb5-common-1.16.1-23.14.1.ppc64le.rpm sssd-ldap-1.16.1-23.14.1.ppc64le.rpm sssd-proxy-1.16.1-23.14.1.ppc64le.rpm sssd-tools-1.16.1-23.14.1.ppc64le.rpm sssd-wbclient-1.16.1-23.14.1.ppc64le.rpm sssd-wbclient-devel-1.16.1-23.14.1.ppc64le.rpm sssd-winbind-idmap-1.16.1-23.14.1.ppc64le.rpm libipa_hbac-devel-1.16.1-23.14.1.aarch64.rpm libipa_hbac0-1.16.1-23.14.1.aarch64.rpm libnfsidmap-sss-1.16.1-23.14.1.aarch64.rpm libsss_certmap-devel-1.16.1-23.14.1.aarch64.rpm libsss_certmap0-1.16.1-23.14.1.aarch64.rpm libsss_idmap-devel-1.16.1-23.14.1.aarch64.rpm libsss_idmap0-1.16.1-23.14.1.aarch64.rpm libsss_nss_idmap-devel-1.16.1-23.14.1.aarch64.rpm libsss_nss_idmap0-1.16.1-23.14.1.aarch64.rpm libsss_simpleifp-devel-1.16.1-23.14.1.aarch64.rpm libsss_simpleifp0-1.16.1-23.14.1.aarch64.rpm python3-ipa_hbac-1.16.1-23.14.1.aarch64.rpm python3-sss-murmur-1.16.1-23.14.1.aarch64.rpm python3-sss_nss_idmap-1.16.1-23.14.1.aarch64.rpm python3-sssd-config-1.16.1-23.14.1.aarch64.rpm sssd-1.16.1-23.14.1.aarch64.rpm sssd-ad-1.16.1-23.14.1.aarch64.rpm sssd-common-1.16.1-23.14.1.aarch64.rpm sssd-dbus-1.16.1-23.14.1.aarch64.rpm sssd-ipa-1.16.1-23.14.1.aarch64.rpm sssd-krb5-1.16.1-23.14.1.aarch64.rpm sssd-krb5-common-1.16.1-23.14.1.aarch64.rpm sssd-ldap-1.16.1-23.14.1.aarch64.rpm sssd-proxy-1.16.1-23.14.1.aarch64.rpm sssd-tools-1.16.1-23.14.1.aarch64.rpm sssd-wbclient-1.16.1-23.14.1.aarch64.rpm sssd-wbclient-devel-1.16.1-23.14.1.aarch64.rpm sssd-winbind-idmap-1.16.1-23.14.1.aarch64.rpm openSUSE-SLE-15.3-2021-3226 Recommended update for crmsh moderate SUSE Updates openSUSE-SLE 15.3 This update for crmsh fixes the following issues: - Fix for 'hb_report': Using python way to collect ra trace files. (bsc#1189641) - Fix for 'bootstrap': Adjust host list for parallax to get and copy 'known_hosts' file. (bsc#1188971) crmsh-4.3.1+20210827.4fb174c4-5.65.1.noarch.rpm crmsh-4.3.1+20210827.4fb174c4-5.65.1.src.rpm crmsh-scripts-4.3.1+20210827.4fb174c4-5.65.1.noarch.rpm crmsh-test-4.3.1+20210827.4fb174c4-5.65.1.noarch.rpm openSUSE-SLE-15.3-2021-3312 Recommended update for yast2-installation moderate SUSE Updates openSUSE-SLE 15.3 This update for yast2-installation fixes the following issues: - Display release notes during upgrade. (bsc#1186044) yast2-installation-4.3.42-3.10.1.noarch.rpm yast2-installation-4.3.42-3.10.1.src.rpm openSUSE-SLE-15.3-2021-3309 Recommended update for google-roboto-mono-fonts low SUSE Updates openSUSE-SLE 15.3 This update for google-roboto-mono-fonts fixes the following issue: - Add google-roboto-mono-fonts. (jsc#SLE-21182, jsc#SLE-17946, jsc#SLE-17947) google-roboto-mono-fonts-20160111-1.3.2.noarch.rpm google-roboto-mono-fonts-20160111-1.3.2.src.rpm openSUSE-SLE-15.3-2021-3301 Security update for libcryptopp moderate SUSE Updates openSUSE-SLE 15.3 This update for libcryptopp fixes the following issues: - CVE-2016-9939: Fixed potential DoS in Crypto++ (libcryptopp) ASN.1 parser (bsc#1015243). libcryptopp-5.6.5-1.6.1.src.rpm libcryptopp-devel-5.6.5-1.6.1.x86_64.rpm libcryptopp5_6_5-32bit-5.6.5-1.6.1.x86_64.rpm libcryptopp5_6_5-5.6.5-1.6.1.x86_64.rpm libcryptopp-devel-5.6.5-1.6.1.s390x.rpm libcryptopp5_6_5-5.6.5-1.6.1.s390x.rpm libcryptopp-devel-5.6.5-1.6.1.ppc64le.rpm libcryptopp5_6_5-5.6.5-1.6.1.ppc64le.rpm libcryptopp-devel-5.6.5-1.6.1.aarch64.rpm libcryptopp5_6_5-5.6.5-1.6.1.aarch64.rpm openSUSE-SLE-15.3-2021-3175 Security update for grafana-piechart-panel moderate SUSE Updates openSUSE-SLE 15.3 This update for grafana-piechart-panel fixes the following issues: - CVE-2020-13429: Fixed XSS via the Values Header option in the piechart-panel (bsc#1172125). grafana-piechart-panel-1.6.1-3.6.1.noarch.rpm grafana-piechart-panel-1.6.1-3.6.1.src.rpm openSUSE-SLE-15.3-2021-3236 Security update for gd moderate SUSE Updates openSUSE-SLE 15.3 This update for gd fixes the following issues: - CVE-2021-40812: Fixed out-of-bounds read caused by the lack of certain gdGetBuf and gdPutBuf return value checks (bsc#1190400). gd-2.2.5-11.3.1.src.rpm gd-2.2.5-11.3.1.x86_64.rpm gd-devel-2.2.5-11.3.1.x86_64.rpm libgd3-2.2.5-11.3.1.x86_64.rpm libgd3-32bit-2.2.5-11.3.1.x86_64.rpm gd-2.2.5-11.3.1.s390x.rpm gd-devel-2.2.5-11.3.1.s390x.rpm libgd3-2.2.5-11.3.1.s390x.rpm gd-2.2.5-11.3.1.ppc64le.rpm gd-devel-2.2.5-11.3.1.ppc64le.rpm libgd3-2.2.5-11.3.1.ppc64le.rpm gd-2.2.5-11.3.1.aarch64.rpm gd-devel-2.2.5-11.3.1.aarch64.rpm libgd3-2.2.5-11.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-3171 Recommended update for java-11-openjdk important SUSE Updates openSUSE-SLE 15.3 This update for java-11-openjdk fixes the following issues: - Implement FIPS support in OpenJDK - Fix build with 'glibc-2.34' (bsc#1189201) - Add support for 'riscv64' (zero VM) - Make NSS the default security provider. (bsc#1190252) java-11-openjdk-11.0.12.0-3.62.1.src.rpm java-11-openjdk-11.0.12.0-3.62.1.x86_64.rpm java-11-openjdk-accessibility-11.0.12.0-3.62.1.x86_64.rpm java-11-openjdk-demo-11.0.12.0-3.62.1.x86_64.rpm java-11-openjdk-devel-11.0.12.0-3.62.1.x86_64.rpm java-11-openjdk-headless-11.0.12.0-3.62.1.x86_64.rpm java-11-openjdk-javadoc-11.0.12.0-3.62.1.noarch.rpm java-11-openjdk-jmods-11.0.12.0-3.62.1.x86_64.rpm java-11-openjdk-src-11.0.12.0-3.62.1.x86_64.rpm java-11-openjdk-11.0.12.0-3.62.1.s390x.rpm java-11-openjdk-accessibility-11.0.12.0-3.62.1.s390x.rpm java-11-openjdk-demo-11.0.12.0-3.62.1.s390x.rpm java-11-openjdk-devel-11.0.12.0-3.62.1.s390x.rpm java-11-openjdk-headless-11.0.12.0-3.62.1.s390x.rpm java-11-openjdk-jmods-11.0.12.0-3.62.1.s390x.rpm java-11-openjdk-src-11.0.12.0-3.62.1.s390x.rpm java-11-openjdk-11.0.12.0-3.62.1.ppc64le.rpm java-11-openjdk-accessibility-11.0.12.0-3.62.1.ppc64le.rpm java-11-openjdk-demo-11.0.12.0-3.62.1.ppc64le.rpm java-11-openjdk-devel-11.0.12.0-3.62.1.ppc64le.rpm java-11-openjdk-headless-11.0.12.0-3.62.1.ppc64le.rpm java-11-openjdk-jmods-11.0.12.0-3.62.1.ppc64le.rpm java-11-openjdk-src-11.0.12.0-3.62.1.ppc64le.rpm java-11-openjdk-11.0.12.0-3.62.1.aarch64.rpm java-11-openjdk-accessibility-11.0.12.0-3.62.1.aarch64.rpm java-11-openjdk-demo-11.0.12.0-3.62.1.aarch64.rpm java-11-openjdk-devel-11.0.12.0-3.62.1.aarch64.rpm java-11-openjdk-headless-11.0.12.0-3.62.1.aarch64.rpm java-11-openjdk-jmods-11.0.12.0-3.62.1.aarch64.rpm java-11-openjdk-src-11.0.12.0-3.62.1.aarch64.rpm openSUSE-SLE-15.3-2021-3291 Security update for glibc moderate SUSE Updates openSUSE-SLE 15.3 This update for glibc fixes the following issues: - CVE-2021-33574: Fixed use __pthread_attr_copy in mq_notify (bsc#1186489). - CVE-2021-35942: Fixed wordexp handle overflow in positional parameter number (bsc#1187911). glibc-2.31-9.3.2.src.rpm glibc-2.31-9.3.2.x86_64.rpm glibc-32bit-2.31-9.3.2.x86_64.rpm glibc-devel-2.31-9.3.2.x86_64.rpm glibc-devel-32bit-2.31-9.3.2.x86_64.rpm glibc-devel-static-2.31-9.3.2.x86_64.rpm glibc-devel-static-32bit-2.31-9.3.2.x86_64.rpm glibc-extra-2.31-9.3.2.x86_64.rpm glibc-html-2.31-9.3.2.noarch.rpm glibc-i18ndata-2.31-9.3.2.noarch.rpm glibc-info-2.31-9.3.2.noarch.rpm glibc-lang-2.31-9.3.2.noarch.rpm glibc-locale-2.31-9.3.2.x86_64.rpm glibc-locale-base-2.31-9.3.2.x86_64.rpm glibc-locale-base-32bit-2.31-9.3.2.x86_64.rpm glibc-profile-2.31-9.3.2.x86_64.rpm glibc-profile-32bit-2.31-9.3.2.x86_64.rpm glibc-utils-2.31-9.3.2.x86_64.rpm glibc-utils-32bit-2.31-9.3.2.x86_64.rpm glibc-utils-src-2.31-9.3.2.src.rpm nscd-2.31-9.3.2.x86_64.rpm glibc-2.31-9.3.2.s390x.rpm glibc-devel-2.31-9.3.2.s390x.rpm glibc-devel-static-2.31-9.3.2.s390x.rpm glibc-extra-2.31-9.3.2.s390x.rpm glibc-locale-2.31-9.3.2.s390x.rpm glibc-locale-base-2.31-9.3.2.s390x.rpm glibc-profile-2.31-9.3.2.s390x.rpm glibc-utils-2.31-9.3.2.s390x.rpm nscd-2.31-9.3.2.s390x.rpm glibc-2.31-9.3.2.ppc64le.rpm glibc-devel-2.31-9.3.2.ppc64le.rpm glibc-devel-static-2.31-9.3.2.ppc64le.rpm glibc-extra-2.31-9.3.2.ppc64le.rpm glibc-locale-2.31-9.3.2.ppc64le.rpm glibc-locale-base-2.31-9.3.2.ppc64le.rpm glibc-profile-2.31-9.3.2.ppc64le.rpm glibc-utils-2.31-9.3.2.ppc64le.rpm nscd-2.31-9.3.2.ppc64le.rpm glibc-2.31-9.3.2.aarch64.rpm glibc-devel-2.31-9.3.2.aarch64.rpm glibc-devel-static-2.31-9.3.2.aarch64.rpm glibc-extra-2.31-9.3.2.aarch64.rpm glibc-locale-2.31-9.3.2.aarch64.rpm glibc-locale-base-2.31-9.3.2.aarch64.rpm glibc-profile-2.31-9.3.2.aarch64.rpm glibc-utils-2.31-9.3.2.aarch64.rpm nscd-2.31-9.3.2.aarch64.rpm openSUSE-SLE-15.3-2021-3317 Recommended update for postgresql10 moderate SUSE Updates openSUSE-SLE 15.3 This update for postgresql10 fixes the following issues: - Upgrade to version 10.18. (bsc#1190177) - A dump/restore is not required for those running 10.X. - if you are upgrading from a version older than 10.16 a reindexing of indexes after the upgrade may be advisable. - Allow PostgreSQL version 10 to build with ICU 69 and newer - Clarify error messages referring to 'non-negative' values - Fix incorrect log message when 'point-in-time' recovery stops at a 'ROLLBACK PREPARED' record - In 'contrib/postgres_fdw', avoid attempting catalog lookups after an error - Messages about data conversion errors will now mention the query's table and column aliases (if used) rather than the true underlying name of a foreign table or column. - Avoid problems when 'switching pg_receivewal' between compressed and non-compressed 'WAL' storage - Extend 'pg_upgrade' to detect and warn about extensions that should be upgraded. - Make 'pg_upgrade' carry forward the old installation's 'oldestXID' value. - This solves unwanted forced shutdowns happening soon after an upgrade in particular on installations using large values of 'autovacuum_freeze_max_age'. - Avoid 'invalid creation date in header' warnings observed when running 'pg_restore' on an archive file created in a different time zone. - In psql and other client programs, avoid overrunning the ends of strings when dealing with invalidly-encoded data. - Don't abort the process for an out-of-memory failure in libpq's printing functions - Fix uninitialized-variable bug that could cause 'PL/pgSQL' to act as though an 'INTO' clause specified 'STRICT', even though it didn't. - Fix latent crash in sorting code - Fix possible race condition when releasing BackgroundWorkerSlots - Solve a build issue fix build with 'llvm12' on s390x. (bsc#1185952) - Re-enable 'icu' for 'PostgreSQL 10'. (bsc#1179945) - Relax the dependency of 'postgresqlXX-server-devel' on 'llvm' and 'clang'. (bsc#1187751) postgresql10-10.18-8.38.1.src.rpm postgresql10-10.18-8.38.1.x86_64.rpm postgresql10-contrib-10.18-8.38.1.x86_64.rpm postgresql10-docs-10.18-8.38.1.noarch.rpm postgresql10-plperl-10.18-8.38.1.x86_64.rpm postgresql10-plpython-10.18-8.38.1.x86_64.rpm postgresql10-pltcl-10.18-8.38.1.x86_64.rpm postgresql10-server-10.18-8.38.1.x86_64.rpm postgresql10-test-10.18-8.38.1.x86_64.rpm postgresql10-10.18-8.38.1.s390x.rpm postgresql10-contrib-10.18-8.38.1.s390x.rpm postgresql10-plperl-10.18-8.38.1.s390x.rpm postgresql10-plpython-10.18-8.38.1.s390x.rpm postgresql10-pltcl-10.18-8.38.1.s390x.rpm postgresql10-server-10.18-8.38.1.s390x.rpm postgresql10-test-10.18-8.38.1.s390x.rpm postgresql10-10.18-8.38.1.ppc64le.rpm postgresql10-contrib-10.18-8.38.1.ppc64le.rpm postgresql10-plperl-10.18-8.38.1.ppc64le.rpm postgresql10-plpython-10.18-8.38.1.ppc64le.rpm postgresql10-pltcl-10.18-8.38.1.ppc64le.rpm postgresql10-server-10.18-8.38.1.ppc64le.rpm postgresql10-test-10.18-8.38.1.ppc64le.rpm postgresql10-10.18-8.38.1.aarch64.rpm postgresql10-contrib-10.18-8.38.1.aarch64.rpm postgresql10-plperl-10.18-8.38.1.aarch64.rpm postgresql10-plpython-10.18-8.38.1.aarch64.rpm postgresql10-pltcl-10.18-8.38.1.aarch64.rpm postgresql10-server-10.18-8.38.1.aarch64.rpm postgresql10-test-10.18-8.38.1.aarch64.rpm openSUSE-SLE-15.3-2021-3314 Recommended update for xerces-c moderate SUSE Updates openSUSE-SLE 15.3 This update for xerces-c fixes the following issues: - release libxerces-c-3_1 for SLE-15.3 (bsc#1190105) libxerces-c-3_1-3.1.4-10.5.1.x86_64.rpm libxerces-c-3_1-32bit-3.1.4-10.5.1.x86_64.rpm xerces-c-3.1.4-10.5.1.src.rpm libxerces-c-3_1-3.1.4-10.5.1.s390x.rpm libxerces-c-3_1-3.1.4-10.5.1.ppc64le.rpm libxerces-c-3_1-3.1.4-10.5.1.aarch64.rpm openSUSE-SLE-15.3-2021-3241 Recommended update for multipath-tools important SUSE Updates openSUSE-SLE 15.3 This update for multipath-tools provides the following fixes: - Update to version 0.8.5+82+suse.746b76e: * libmultipath: avoid buffer size warning with systemd 240+. (bsc#1189176) - Add a versioned dependency of multipath-tools on libmpath0. (bsc#1190622) kpartx-0.8.5+82+suse.746b76e-2.7.1.x86_64.rpm libdmmp-devel-0.8.5+82+suse.746b76e-2.7.1.x86_64.rpm libdmmp0_2_0-0.8.5+82+suse.746b76e-2.7.1.x86_64.rpm libmpath0-0.8.5+82+suse.746b76e-2.7.1.x86_64.rpm multipath-tools-0.8.5+82+suse.746b76e-2.7.1.src.rpm multipath-tools-0.8.5+82+suse.746b76e-2.7.1.x86_64.rpm multipath-tools-devel-0.8.5+82+suse.746b76e-2.7.1.x86_64.rpm kpartx-0.8.5+82+suse.746b76e-2.7.1.s390x.rpm libdmmp-devel-0.8.5+82+suse.746b76e-2.7.1.s390x.rpm libdmmp0_2_0-0.8.5+82+suse.746b76e-2.7.1.s390x.rpm libmpath0-0.8.5+82+suse.746b76e-2.7.1.s390x.rpm multipath-tools-0.8.5+82+suse.746b76e-2.7.1.s390x.rpm multipath-tools-devel-0.8.5+82+suse.746b76e-2.7.1.s390x.rpm kpartx-0.8.5+82+suse.746b76e-2.7.1.ppc64le.rpm libdmmp-devel-0.8.5+82+suse.746b76e-2.7.1.ppc64le.rpm libdmmp0_2_0-0.8.5+82+suse.746b76e-2.7.1.ppc64le.rpm libmpath0-0.8.5+82+suse.746b76e-2.7.1.ppc64le.rpm multipath-tools-0.8.5+82+suse.746b76e-2.7.1.ppc64le.rpm multipath-tools-devel-0.8.5+82+suse.746b76e-2.7.1.ppc64le.rpm kpartx-0.8.5+82+suse.746b76e-2.7.1.aarch64.rpm libdmmp-devel-0.8.5+82+suse.746b76e-2.7.1.aarch64.rpm libdmmp0_2_0-0.8.5+82+suse.746b76e-2.7.1.aarch64.rpm libmpath0-0.8.5+82+suse.746b76e-2.7.1.aarch64.rpm multipath-tools-0.8.5+82+suse.746b76e-2.7.1.aarch64.rpm multipath-tools-devel-0.8.5+82+suse.746b76e-2.7.1.aarch64.rpm openSUSE-SLE-15.3-2021-3245 Recommended update for docker important SUSE Updates openSUSE-SLE 15.3 This update for docker fixes the following issues: - Return ENOSYS for clone3 in the seccomp profile to avoid breaking containers using glibc 2.34. - Add shell requires for the *-completion subpackages. Updating docker will restart the docker service, which may stop some of your docker containers. Do you want to proceed with the update? docker-20.10.6_ce-153.1.src.rpm docker-20.10.6_ce-153.1.x86_64.rpm docker-bash-completion-20.10.6_ce-153.1.noarch.rpm docker-fish-completion-20.10.6_ce-153.1.noarch.rpm docker-kubic-20.10.6_ce-6.52.1.src.rpm docker-kubic-20.10.6_ce-6.52.1.x86_64.rpm docker-kubic-bash-completion-20.10.6_ce-6.52.1.noarch.rpm docker-kubic-fish-completion-20.10.6_ce-6.52.1.noarch.rpm docker-kubic-kubeadm-criconfig-20.10.6_ce-6.52.1.x86_64.rpm docker-kubic-zsh-completion-20.10.6_ce-6.52.1.noarch.rpm docker-zsh-completion-20.10.6_ce-153.1.noarch.rpm docker-20.10.6_ce-153.1.s390x.rpm docker-kubic-20.10.6_ce-6.52.1.s390x.rpm docker-kubic-kubeadm-criconfig-20.10.6_ce-6.52.1.s390x.rpm docker-20.10.6_ce-153.1.ppc64le.rpm docker-kubic-20.10.6_ce-6.52.1.ppc64le.rpm docker-kubic-kubeadm-criconfig-20.10.6_ce-6.52.1.ppc64le.rpm docker-20.10.6_ce-153.1.aarch64.rpm docker-kubic-20.10.6_ce-6.52.1.aarch64.rpm docker-kubic-kubeadm-criconfig-20.10.6_ce-6.52.1.aarch64.rpm openSUSE-SLE-15.3-2021-3263 Feature update for SUSE Manager 4.1.11 Proxy moderate SUSE Updates openSUSE-SLE 15.3 This update provides the following packages to SUSE Manager 4.1.11 Proxy golang-github-prometheus-alertmanager: - golang-github-prometheus-alertmanager is added to SUSE Manager Proxy as L3 supported system-user-prometheus: - system-user-prometheus is added to SUSE Manager Proxy as L3 supported system-user-prometheus-1.0.0-6.1.noarch.rpm system-user-prometheus-1.0.0-6.1.src.rpm openSUSE-SLE-15.3-2021-3310 Recommended update for systemd moderate SUSE Updates openSUSE-SLE 15.3 This update for systemd fixes the following issues: - Switch I/O scheduler from 'mq-deadline' to 'bfq' for rotating disks(HD's) (jsc#SLE-21032, bsc#1134353). - Multipath: Rules weren't applied to dm devices (bsc#1188713). - Ignore obsolete "elevator" kernel parameter (bsc#1184994). - Remove kernel unsupported single-queue block I/O. - Make sure the versions of both udev and systemd packages are always the same (bsc#1189480). - Avoid error message when updating active udev on sockets restart (bsc#1188291). - Merge of v246.16, for a complete list of changes, visit: https://github.com/openSUSE/systemd/compare/8d8f5fc31eece95644b299b784bbfb8f836d0108...f5c33d9f82d3d782d28938df9ff09484360c540d - Drop 1007-tmpfiles-follow-SUSE-policies.patch: Since most of the tmpfiles config files shipped by upstream are ignored (see previous commit "Drop most of the tmpfiles that deal with generic paths"), this patch is no more relevant. Additional fixes: - core: make sure cgroup_oom_queue is flushed on manager exit. - cgroup: do 'catchup' for unit cgroup inotify watch files. - journalctl: never fail at flushing when the flushed flag is set (bsc#1188588). - manager: reexecute on SIGRTMIN+25, user instances only. - manager: fix HW watchdog when systemd starts before driver loaded (bsc#1189446). - pid1: watchdog modernizations. libsystemd0-246.16-7.14.1.x86_64.rpm libsystemd0-32bit-246.16-7.14.1.x86_64.rpm libudev-devel-246.16-7.14.1.x86_64.rpm libudev-devel-32bit-246.16-7.14.1.x86_64.rpm libudev1-246.16-7.14.1.x86_64.rpm libudev1-32bit-246.16-7.14.1.x86_64.rpm nss-myhostname-246.16-7.14.1.x86_64.rpm nss-myhostname-32bit-246.16-7.14.1.x86_64.rpm nss-mymachines-246.16-7.14.1.x86_64.rpm nss-mymachines-32bit-246.16-7.14.1.x86_64.rpm nss-resolve-246.16-7.14.1.x86_64.rpm nss-systemd-246.16-7.14.1.x86_64.rpm systemd-246.16-7.14.1.src.rpm systemd-246.16-7.14.1.x86_64.rpm systemd-32bit-246.16-7.14.1.x86_64.rpm systemd-container-246.16-7.14.1.x86_64.rpm systemd-coredump-246.16-7.14.1.x86_64.rpm systemd-devel-246.16-7.14.1.x86_64.rpm systemd-doc-246.16-7.14.1.x86_64.rpm systemd-journal-remote-246.16-7.14.1.x86_64.rpm systemd-lang-246.16-7.14.1.noarch.rpm systemd-logger-246.16-7.14.1.x86_64.rpm systemd-network-246.16-7.14.1.x86_64.rpm systemd-sysvinit-246.16-7.14.1.x86_64.rpm udev-246.16-7.14.1.x86_64.rpm libsystemd0-246.16-7.14.1.s390x.rpm libudev-devel-246.16-7.14.1.s390x.rpm libudev1-246.16-7.14.1.s390x.rpm nss-myhostname-246.16-7.14.1.s390x.rpm nss-mymachines-246.16-7.14.1.s390x.rpm nss-resolve-246.16-7.14.1.s390x.rpm nss-systemd-246.16-7.14.1.s390x.rpm systemd-246.16-7.14.1.s390x.rpm systemd-container-246.16-7.14.1.s390x.rpm systemd-coredump-246.16-7.14.1.s390x.rpm systemd-devel-246.16-7.14.1.s390x.rpm systemd-doc-246.16-7.14.1.s390x.rpm systemd-journal-remote-246.16-7.14.1.s390x.rpm systemd-logger-246.16-7.14.1.s390x.rpm systemd-network-246.16-7.14.1.s390x.rpm systemd-sysvinit-246.16-7.14.1.s390x.rpm udev-246.16-7.14.1.s390x.rpm libsystemd0-246.16-7.14.1.ppc64le.rpm libudev-devel-246.16-7.14.1.ppc64le.rpm libudev1-246.16-7.14.1.ppc64le.rpm nss-myhostname-246.16-7.14.1.ppc64le.rpm nss-mymachines-246.16-7.14.1.ppc64le.rpm nss-resolve-246.16-7.14.1.ppc64le.rpm nss-systemd-246.16-7.14.1.ppc64le.rpm systemd-246.16-7.14.1.ppc64le.rpm systemd-container-246.16-7.14.1.ppc64le.rpm systemd-coredump-246.16-7.14.1.ppc64le.rpm systemd-devel-246.16-7.14.1.ppc64le.rpm systemd-doc-246.16-7.14.1.ppc64le.rpm systemd-journal-remote-246.16-7.14.1.ppc64le.rpm systemd-logger-246.16-7.14.1.ppc64le.rpm systemd-network-246.16-7.14.1.ppc64le.rpm systemd-sysvinit-246.16-7.14.1.ppc64le.rpm udev-246.16-7.14.1.ppc64le.rpm libsystemd0-246.16-7.14.1.aarch64.rpm libudev-devel-246.16-7.14.1.aarch64.rpm libudev1-246.16-7.14.1.aarch64.rpm nss-myhostname-246.16-7.14.1.aarch64.rpm nss-mymachines-246.16-7.14.1.aarch64.rpm nss-resolve-246.16-7.14.1.aarch64.rpm nss-systemd-246.16-7.14.1.aarch64.rpm systemd-246.16-7.14.1.aarch64.rpm systemd-container-246.16-7.14.1.aarch64.rpm systemd-coredump-246.16-7.14.1.aarch64.rpm systemd-devel-246.16-7.14.1.aarch64.rpm systemd-doc-246.16-7.14.1.aarch64.rpm systemd-journal-remote-246.16-7.14.1.aarch64.rpm systemd-logger-246.16-7.14.1.aarch64.rpm systemd-network-246.16-7.14.1.aarch64.rpm systemd-sysvinit-246.16-7.14.1.aarch64.rpm udev-246.16-7.14.1.aarch64.rpm openSUSE-SLE-15.3-2021-3262 Feature update for SUSE Manager 4.1.11 Proxy moderate SUSE Updates openSUSE-SLE 15.3 This update provides the following packages to SUSE Manager 4.1.11 Proxy golang-github-prometheus-prometheus: - golang-github-prometheus-prometheus is added to SUSE Manager Proxy as L3 supported golang-github-prometheus-prometheus-2.27.1-3.12.1.src.rpm golang-github-prometheus-prometheus-2.27.1-3.12.1.x86_64.rpm golang-github-prometheus-prometheus-2.27.1-3.12.1.s390x.rpm golang-github-prometheus-prometheus-2.27.1-3.12.1.ppc64le.rpm golang-github-prometheus-prometheus-2.27.1-3.12.1.aarch64.rpm openSUSE-SLE-15.3-2021-3311 Recommended update for perl-Bootloader moderate SUSE Updates openSUSE-SLE 15.3 This update for perl-Bootloader fixes the following issues: - Report error if config file could not be updated (bsc#1188768). - Fix typo in update-bootloader. perl-Bootloader-0.936-3.3.1.src.rpm perl-Bootloader-0.936-3.3.1.x86_64.rpm perl-Bootloader-YAML-0.936-3.3.1.x86_64.rpm perl-Bootloader-0.936-3.3.1.s390x.rpm perl-Bootloader-YAML-0.936-3.3.1.s390x.rpm perl-Bootloader-0.936-3.3.1.ppc64le.rpm perl-Bootloader-YAML-0.936-3.3.1.ppc64le.rpm perl-Bootloader-0.936-3.3.1.aarch64.rpm perl-Bootloader-YAML-0.936-3.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-3306 Recommended update for numactl moderate SUSE Updates openSUSE-SLE 15.3 This update for numactl fixes the following issues: - Fix System call numbers on s390x. - Debug verify for --preferred option. - Description for the usage of numactl. - Varios memleacks on source files: sysfs.c, shm.c and numactl.c - Description for numa_node_size64 and definition for numa_node_size in manpage. - link with -latomic when needed. - Clear race conditions on numa_police_memory(). - numademo: Use first two nodes instead of node 0 and 1 - Enhance _service settings - Enable automake libnuma-devel-2.0.14.20.g4ee5e0c-10.1.x86_64.rpm libnuma1-2.0.14.20.g4ee5e0c-10.1.x86_64.rpm libnuma1-32bit-2.0.14.20.g4ee5e0c-10.1.x86_64.rpm numactl-2.0.14.20.g4ee5e0c-10.1.src.rpm numactl-2.0.14.20.g4ee5e0c-10.1.x86_64.rpm libnuma-devel-2.0.14.20.g4ee5e0c-10.1.s390x.rpm libnuma1-2.0.14.20.g4ee5e0c-10.1.s390x.rpm numactl-2.0.14.20.g4ee5e0c-10.1.s390x.rpm libnuma-devel-2.0.14.20.g4ee5e0c-10.1.ppc64le.rpm libnuma1-2.0.14.20.g4ee5e0c-10.1.ppc64le.rpm numactl-2.0.14.20.g4ee5e0c-10.1.ppc64le.rpm libnuma-devel-2.0.14.20.g4ee5e0c-10.1.aarch64.rpm libnuma1-2.0.14.20.g4ee5e0c-10.1.aarch64.rpm numactl-2.0.14.20.g4ee5e0c-10.1.aarch64.rpm openSUSE-SLE-15.3-2021-3220 Recommended update for kglobalaccel moderate SUSE Updates openSUSE-SLE 15.3 This update for kglobalaccel fixes the following issues: - Refuse app. to start with wrong uid (bsc#1178488). kglobalaccel-5.76.0-3.6.1.src.rpm kglobalaccel-devel-32bit-5.76.0-3.6.1.x86_64.rpm kglobalaccel-devel-5.76.0-3.6.1.x86_64.rpm kglobalaccel5-5.76.0-3.6.1.x86_64.rpm libKF5GlobalAccel5-32bit-5.76.0-3.6.1.x86_64.rpm libKF5GlobalAccel5-5.76.0-3.6.1.x86_64.rpm libKF5GlobalAccel5-lang-5.76.0-3.6.1.noarch.rpm libKF5GlobalAccelPrivate5-5.76.0-3.6.1.x86_64.rpm kglobalaccel-devel-5.76.0-3.6.1.s390x.rpm kglobalaccel5-5.76.0-3.6.1.s390x.rpm libKF5GlobalAccel5-5.76.0-3.6.1.s390x.rpm libKF5GlobalAccelPrivate5-5.76.0-3.6.1.s390x.rpm kglobalaccel-devel-5.76.0-3.6.1.ppc64le.rpm kglobalaccel5-5.76.0-3.6.1.ppc64le.rpm libKF5GlobalAccel5-5.76.0-3.6.1.ppc64le.rpm libKF5GlobalAccelPrivate5-5.76.0-3.6.1.ppc64le.rpm kglobalaccel-devel-5.76.0-3.6.1.aarch64.rpm kglobalaccel5-5.76.0-3.6.1.aarch64.rpm libKF5GlobalAccel5-5.76.0-3.6.1.aarch64.rpm libKF5GlobalAccelPrivate5-5.76.0-3.6.1.aarch64.rpm openSUSE-SLE-15.3-2021-3307 Recommended update for virt-what moderate SUSE Updates openSUSE-SLE 15.3 This update for virt-what fixes the following issues: - Nutanix Acropolis Hypervisor detection - podman detection - Add "which" to requires virt-what-1.21-3.3.1.src.rpm virt-what-1.21-3.3.1.x86_64.rpm virt-what-1.21-3.3.1.s390x.rpm virt-what-1.21-3.3.1.ppc64le.rpm virt-what-1.21-3.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-3293 Security update for ffmpeg moderate SUSE Updates openSUSE-SLE 15.3 This update for ffmpeg fixes the following issues: - CVE-2020-22042: Fixed a denial of service vulnerability led by a memory leak in the link_filter_inouts function in libavfilter/graphparser.c. (bsc#1186761) ffmpeg-3.4.2-11.14.1.src.rpm ffmpeg-3.4.2-11.14.1.x86_64.rpm ffmpeg-private-devel-3.4.2-11.14.1.x86_64.rpm libavcodec-devel-3.4.2-11.14.1.x86_64.rpm libavcodec57-3.4.2-11.14.1.x86_64.rpm libavcodec57-32bit-3.4.2-11.14.1.x86_64.rpm libavdevice-devel-3.4.2-11.14.1.x86_64.rpm libavdevice57-3.4.2-11.14.1.x86_64.rpm libavdevice57-32bit-3.4.2-11.14.1.x86_64.rpm libavfilter-devel-3.4.2-11.14.1.x86_64.rpm libavfilter6-3.4.2-11.14.1.x86_64.rpm libavfilter6-32bit-3.4.2-11.14.1.x86_64.rpm libavformat-devel-3.4.2-11.14.1.x86_64.rpm libavformat57-3.4.2-11.14.1.x86_64.rpm libavformat57-32bit-3.4.2-11.14.1.x86_64.rpm libavresample-devel-3.4.2-11.14.1.x86_64.rpm libavresample3-3.4.2-11.14.1.x86_64.rpm libavresample3-32bit-3.4.2-11.14.1.x86_64.rpm libavutil-devel-3.4.2-11.14.1.x86_64.rpm libavutil55-3.4.2-11.14.1.x86_64.rpm libavutil55-32bit-3.4.2-11.14.1.x86_64.rpm libpostproc-devel-3.4.2-11.14.1.x86_64.rpm libpostproc54-3.4.2-11.14.1.x86_64.rpm libpostproc54-32bit-3.4.2-11.14.1.x86_64.rpm libswresample-devel-3.4.2-11.14.1.x86_64.rpm libswresample2-3.4.2-11.14.1.x86_64.rpm libswresample2-32bit-3.4.2-11.14.1.x86_64.rpm libswscale-devel-3.4.2-11.14.1.x86_64.rpm libswscale4-3.4.2-11.14.1.x86_64.rpm libswscale4-32bit-3.4.2-11.14.1.x86_64.rpm ffmpeg-3.4.2-11.14.1.s390x.rpm ffmpeg-private-devel-3.4.2-11.14.1.s390x.rpm libavcodec-devel-3.4.2-11.14.1.s390x.rpm libavcodec57-3.4.2-11.14.1.s390x.rpm libavdevice-devel-3.4.2-11.14.1.s390x.rpm libavdevice57-3.4.2-11.14.1.s390x.rpm libavfilter-devel-3.4.2-11.14.1.s390x.rpm libavfilter6-3.4.2-11.14.1.s390x.rpm libavformat-devel-3.4.2-11.14.1.s390x.rpm libavformat57-3.4.2-11.14.1.s390x.rpm libavresample-devel-3.4.2-11.14.1.s390x.rpm libavresample3-3.4.2-11.14.1.s390x.rpm libavutil-devel-3.4.2-11.14.1.s390x.rpm libavutil55-3.4.2-11.14.1.s390x.rpm libpostproc-devel-3.4.2-11.14.1.s390x.rpm libpostproc54-3.4.2-11.14.1.s390x.rpm libswresample-devel-3.4.2-11.14.1.s390x.rpm libswresample2-3.4.2-11.14.1.s390x.rpm libswscale-devel-3.4.2-11.14.1.s390x.rpm libswscale4-3.4.2-11.14.1.s390x.rpm ffmpeg-3.4.2-11.14.1.ppc64le.rpm ffmpeg-private-devel-3.4.2-11.14.1.ppc64le.rpm libavcodec-devel-3.4.2-11.14.1.ppc64le.rpm libavcodec57-3.4.2-11.14.1.ppc64le.rpm libavdevice-devel-3.4.2-11.14.1.ppc64le.rpm libavdevice57-3.4.2-11.14.1.ppc64le.rpm libavfilter-devel-3.4.2-11.14.1.ppc64le.rpm libavfilter6-3.4.2-11.14.1.ppc64le.rpm libavformat-devel-3.4.2-11.14.1.ppc64le.rpm libavformat57-3.4.2-11.14.1.ppc64le.rpm libavresample-devel-3.4.2-11.14.1.ppc64le.rpm libavresample3-3.4.2-11.14.1.ppc64le.rpm libavutil-devel-3.4.2-11.14.1.ppc64le.rpm libavutil55-3.4.2-11.14.1.ppc64le.rpm libpostproc-devel-3.4.2-11.14.1.ppc64le.rpm libpostproc54-3.4.2-11.14.1.ppc64le.rpm libswresample-devel-3.4.2-11.14.1.ppc64le.rpm libswresample2-3.4.2-11.14.1.ppc64le.rpm libswscale-devel-3.4.2-11.14.1.ppc64le.rpm libswscale4-3.4.2-11.14.1.ppc64le.rpm ffmpeg-3.4.2-11.14.1.aarch64.rpm ffmpeg-private-devel-3.4.2-11.14.1.aarch64.rpm libavcodec-devel-3.4.2-11.14.1.aarch64.rpm libavcodec57-3.4.2-11.14.1.aarch64.rpm libavdevice-devel-3.4.2-11.14.1.aarch64.rpm libavdevice57-3.4.2-11.14.1.aarch64.rpm libavfilter-devel-3.4.2-11.14.1.aarch64.rpm libavfilter6-3.4.2-11.14.1.aarch64.rpm libavformat-devel-3.4.2-11.14.1.aarch64.rpm libavformat57-3.4.2-11.14.1.aarch64.rpm libavresample-devel-3.4.2-11.14.1.aarch64.rpm libavresample3-3.4.2-11.14.1.aarch64.rpm libavutil-devel-3.4.2-11.14.1.aarch64.rpm libavutil55-3.4.2-11.14.1.aarch64.rpm libpostproc-devel-3.4.2-11.14.1.aarch64.rpm libpostproc54-3.4.2-11.14.1.aarch64.rpm libswresample-devel-3.4.2-11.14.1.aarch64.rpm libswresample2-3.4.2-11.14.1.aarch64.rpm libswscale-devel-3.4.2-11.14.1.aarch64.rpm libswscale4-3.4.2-11.14.1.aarch64.rpm openSUSE-SLE-15.3-2021-3274 Recommended update for ca-certificates-mozilla important SUSE Updates openSUSE-SLE 15.3 This update for ca-certificates-mozilla fixes the following issues: - remove one of the Letsencrypt CAs DST_Root_CA_X3.pem, as it expires September 30th 2021 and openssl certificate chain handling does not handle this correctly in openssl 1.0.2 and older. (bsc#1190858) ca-certificates-mozilla-2.44-18.1.noarch.rpm ca-certificates-mozilla-2.44-18.1.src.rpm openSUSE-SLE-15.3-2021-3315 Recommended update for go1.17 moderate SUSE Updates openSUSE-SLE 15.3 This update for go1.17 fixes the following issues: This is the initial go 1.17 shipment. go1.17.1 (released 2021-09-09) includes a security fix to the archive/zip package, as well as bug fixes to the compiler, linker, the go command, and to the crypto/rand, embed, go/types, html/template, and net/http packages. (bsc#1190649) CVE-2021-39293: Fixed an overflow in preallocation check that can cause OOM panic in archive/zip (bsc#1190589) go1.17 (released 2021-08-16) is a major release of Go. go1.17.x minor releases will be provided through August 2022. See https://github.com/golang/go/wiki/Go-Release-Cycle Most changes are in the implementation of the toolchain, runtime, and libraries. As always, the release maintains the Go 1 promise of compatibility. We expect almost all Go programs to continue to compile and run as before. (bsc#1190649) * See release notes https://golang.org/doc/go1.17. Excerpts relevant to OBS environment and for SUSE/openSUSE follow: * The compiler now implements a new way of passing function arguments and results using registers instead of the stack. Benchmarks for a representative set of Go packages and programs show performance improvements of about 5%, and a typical reduction in binary size of about 2%. This is currently enabled for Linux, macOS, and Windows on the 64-bit x86 architecture (the linux/amd64, darwin/amd64, and windows/amd64 ports). This change does not affect the functionality of any safe Go code and is designed to have no impact on most assembly code. * When the linker uses external linking mode, which is the default when linking a program that uses cgo, and the linker is invoked with a -I option, the option will now be passed to the external linker as a -Wl,--dynamic-linker option. * The runtime/cgo package now provides a new facility that allows to turn any Go values to a safe representation that can be used to pass values between C and Go safely. See runtime/cgo.Handle for more information. * ARM64 Go programs now maintain stack frame pointers on the 64-bit ARM architecture on all operating systems. Previously, stack frame pointers were only enabled on Linux, macOS, and iOS. * Pruned module graphs in go 1.17 modules: If a module specifies go 1.17 or higher, the module graph includes only the immediate dependencies of other go 1.17 modules, not their full transitive dependencies. To convert the go.mod file for an existing module to Go 1.17 without changing the selected versions of its dependencies, run: go mod tidy -go=1.17 By default, go mod tidy verifies that the selected versions of dependencies relevant to the main module are the same versions that would be used by the prior Go release (Go 1.16 for a module that specifies go 1.17), and preserves the go.sum entries needed by that release even for dependencies that are not normally needed by other commands. The -compat flag allows that version to be overridden to support older (or only newer) versions, up to the version specified by the go directive in the go.mod file. To tidy a go 1.17 module for Go 1.17 only, without saving checksums for (or checking for consistency with) Go 1.16: go mod tidy -compat=1.17 Note that even if the main module is tidied with -compat=1.17, users who require the module from a go 1.16 or earlier module will still be able to use it, provided that the packages use only compatible language and library features. The go mod graph subcommand also supports the -go flag, which causes it to report the graph as seen by the indicated Go version, showing dependencies that may otherwise be pruned out. * Module deprecation comments: Module authors may deprecate a module by adding a // Deprecated: comment to go.mod, then tagging a new version. go get now prints a warning if a module needed to build packages named on the command line is deprecated. go list -m -u prints deprecations for all dependencies (use -f or -json to show the full message). The go command considers different major versions to be distinct modules, so this mechanism may be used, for example, to provide users with migration instructions for a new major version. * go get -insecure flag is deprecated and has been removed. To permit the use of insecure schemes when fetching dependencies, please use the GOINSECURE environment variable. The -insecure flag also bypassed module sum validation, use GOPRIVATE or GONOSUMDB if you need that functionality. See go help environment for details. * go get prints a deprecation warning when installing commands outside the main module (without the -d flag). go install cmd@version should be used instead to install a command at a specific version, using a suffix like @latest or @v1.2.3. In Go 1.18, the -d flag will always be enabled, and go get will only be used to change dependencies in go.mod. * go.mod files missing go directives: If the main module's go.mod file does not contain a go directive and the go command cannot update the go.mod file, the go command now assumes go 1.11 instead of the current release. (go mod init has added go directives automatically since Go 1.12.) If a module dependency lacks an explicit go.mod file, or its go.mod file does not contain a go directive, the go command now assumes go 1.16 for that dependency instead of the current release. (Dependencies developed in GOPATH mode may lack a go.mod file, and the vendor/modules.txt has to date never recorded the go versions indicated by dependencies' go.mod files.) * vendor contents: If the main module specifies go 1.17 or higher, go mod vendor now annotates vendor/modules.txt with the go version indicated by each vendored module in its own go.mod file. The annotated version is used when building the module's packages from vendored source code. If the main module specifies go 1.17 or higher, go mod vendor now omits go.mod and go.sum files for vendored dependencies, which can otherwise interfere with the ability of the go command to identify the correct module root when invoked within the vendor tree. * Password prompts: The go command by default now suppresses SSH password prompts and Git Credential Manager prompts when fetching Git repositories using SSH, as it already did previously for other Git password prompts. Users authenticating to private Git repos with password-protected SSH may configure an ssh-agent to enable the go command to use password-protected SSH keys. * go mod download: When go mod download is invoked without arguments, it will no longer save sums for downloaded module content to go.sum. It may still make changes to go.mod and go.sum needed to load the build list. This is the same as the behavior in Go 1.15. To save sums for all modules, use: go mod download all * The go command now understands //go:build lines and prefers them over // +build lines. The new syntax uses boolean expressions, just like Go, and should be less error-prone. As of this release, the new syntax is fully supported, and all Go files should be updated to have both forms with the same meaning. To aid in migration, gofmt now automatically synchronizes the two forms. For more details on the syntax and migration plan, see https://golang.org/design/draft-gobuild. * go run now accepts arguments with version suffixes (for example, go run example.com/cmd@v1.0.0). This causes go run to build and run packages in module-aware mode, ignoring the go.mod file in the current directory or any parent directory, if there is one. This is useful for running executables without installing them or without changing dependencies of the current module. * The format of stack traces from the runtime (printed when an uncaught panic occurs, or when runtime.Stack is called) is improved. * TLS strict ALPN: When Config.NextProtos is set, servers now enforce that there is an overlap between the configured protocols and the ALPN protocols advertised by the client, if any. If there is no mutually supported protocol, the connection is closed with the no_application_protocol alert, as required by RFC 7301. This helps mitigate the ALPACA cross-protocol attack. As an exception, when the value "h2" is included in the server's Config.NextProtos, HTTP/1.1 clients will be allowed to connect as if they didn't support ALPN. See issue go#46310 for more information. * crypto/ed25519: The crypto/ed25519 package has been rewritten, and all operations are now approximately twice as fast on amd64 and arm64. The observable behavior has not otherwise changed. * crypto/elliptic: CurveParams methods now automatically invoke faster and safer dedicated implementations for known curves (P-224, P-256, and P-521) when available. Note that this is a best-effort approach and applications should avoid using the generic, not constant-time CurveParams methods and instead use dedicated Curve implementations such as P256. The P521 curve implementation has been rewritten using code generated by the fiat-crypto project, which is based on a formally-verified model of the arithmetic operations. It is now constant-time and three times faster on amd64 and arm64. The observable behavior has not otherwise changed. * crypto/tls: The new Conn.HandshakeContext method allows the user to control cancellation of an in-progress TLS handshake. The provided context is accessible from various callbacks through the new ClientHelloInfo.Context and CertificateRequestInfo.Context methods. Canceling the context after the handshake has finished has no effect. Cipher suite ordering is now handled entirely by the crypto/tls package. Currently, cipher suites are sorted based on their security, performance, and hardware support taking into account both the local and peer's hardware. The order of the Config.CipherSuites field is now ignored, as well as the Config.PreferServerCipherSuites field. Note that Config.CipherSuites still allows applications to choose what TLS 1.0–1.2 cipher suites to enable. The 3DES cipher suites have been moved to InsecureCipherSuites due to fundamental block size-related weakness. They are still enabled by default but only as a last resort, thanks to the cipher suite ordering change above. Beginning in the next release, Go 1.18, the Config.MinVersion for crypto/tls clients will default to TLS 1.2, disabling TLS 1.0 and TLS 1.1 by default. Applications will be able to override the change by explicitly setting Config.MinVersion. This will not affect crypto/tls servers. * crypto/x509: CreateCertificate now returns an error if the provided private key doesn't match the parent's public key, if any. The resulting certificate would have failed to verify. * crypto/x509: The temporary GODEBUG=x509ignoreCN=0 flag has been removed. * crypto/x509: ParseCertificate has been rewritten, and now consumes ~70% fewer resources. The observable behavior has not otherwise changed, except for error messages. * crypto/x509: Beginning in the next release, Go 1.18, crypto/x509 will reject certificates signed with the SHA-1 hash function. This doesn't apply to self-signed root certificates. Practical attacks against SHA-1 have been demonstrated in 2017 and publicly trusted Certificate Authorities have not issued SHA-1 certificates since 2015. * go/build: The new Context.ToolTags field holds the build tags appropriate to the current Go toolchain configuration. * net/http package now uses the new (*tls.Conn).HandshakeContext with the Request context when performing TLS handshakes in the client or server. * syscall: On Unix-like systems, the process group of a child process is now set with signals blocked. This avoids sending a SIGTTOU to the child when the parent is in a background process group. * time: The new Time.IsDST method can be used to check whether the time is in Daylight Savings Time in its configured location. * time: The new Time.UnixMilli and Time.UnixMicro methods return the number of milliseconds and microseconds elapsed since January 1, 1970 UTC respectively. * time: The new UnixMilli and UnixMicro functions return the local Time corresponding to the given Unix time. - Add bash scripts used by go tool commands to provide a more complete cross-compiling go toolchain install. go1.17-1.17.1-1.3.1.i586.rpm go1.17-1.17.1-1.3.1.src.rpm go1.17-doc-1.17.1-1.3.1.i586.rpm go1.17-1.17.1-1.3.1.x86_64.rpm go1.17-doc-1.17.1-1.3.1.x86_64.rpm go1.17-race-1.17.1-1.3.1.x86_64.rpm go1.17-1.17.1-1.3.1.s390x.rpm go1.17-doc-1.17.1-1.3.1.s390x.rpm go1.17-1.17.1-1.3.1.ppc64le.rpm go1.17-doc-1.17.1-1.3.1.ppc64le.rpm go1.17-1.17.1-1.3.1.aarch64.rpm go1.17-doc-1.17.1-1.3.1.aarch64.rpm go1.17-race-1.17.1-1.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-3292 Security update for go1.16 important SUSE Updates openSUSE-SLE 15.3 This update for go1.16 fixes the following issues: - Update to go 1.16.8 - CVE-2021-39293: Fixed a buffer overflow issue in preallocation check that can cause OOM panic. (bas#) go1.16-1.16.8-1.26.1.src.rpm go1.16-1.16.8-1.26.1.x86_64.rpm go1.16-doc-1.16.8-1.26.1.x86_64.rpm go1.16-race-1.16.8-1.26.1.x86_64.rpm go1.16-1.16.8-1.26.1.s390x.rpm go1.16-doc-1.16.8-1.26.1.s390x.rpm go1.16-1.16.8-1.26.1.ppc64le.rpm go1.16-doc-1.16.8-1.26.1.ppc64le.rpm go1.16-1.16.8-1.26.1.aarch64.rpm go1.16-doc-1.16.8-1.26.1.aarch64.rpm go1.16-race-1.16.8-1.26.1.aarch64.rpm openSUSE-SLE-15.3-2021-3304 Recommended update for kdump moderate SUSE Updates openSUSE-SLE 15.3 This update for kdump fixes the following issues: - Do not iterate past end of string (bsc#1186037). - Fix incorrect exit code checking after "local" with assignment (bsc#1184616). - Avoid an endless loop when resolving a hostname fails with EAI_AGAIN (bsc#1183070). - Install /etc/resolv.conf using its resolved path (bsc#1183070). - Make sure that initrd.target.wants directory exists (bsc#1172670). kdump-0.9.0-18.3.1.src.rpm kdump-0.9.0-18.3.1.x86_64.rpm kdump-0.9.0-18.3.1.s390x.rpm kdump-0.9.0-18.3.1.ppc64le.rpm kdump-0.9.0-18.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-2764 Security update for libsndfile critical SUSE Updates openSUSE-SLE 15.3 This update for libsndfile fixes the following issues: - CVE-2018-13139: Fixed a stack-based buffer overflow in psf_memset in common.c in libsndfile 1.0.28allows remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact. (bsc#1100167) - CVE-2018-19432: Fixed a NULL pointer dereference in the function sf_write_int in sndfile.c, which will lead to a denial of service. (bsc#1116993) - CVE-2021-3246: Fixed a heap buffer overflow vulnerability in msadpcm_decode_block. (bsc#1188540) - CVE-2018-19758: Fixed a heap-based buffer over-read at wav.c in wav_write_header in libsndfile 1.0.28 that will cause a denial of service. (bsc#1117954) libsndfile-1.0.28-5.12.1.src.rpm libsndfile-devel-1.0.28-5.12.1.x86_64.rpm libsndfile-progs-1.0.28-5.12.1.src.rpm libsndfile-progs-1.0.28-5.12.1.x86_64.rpm libsndfile1-1.0.28-5.12.1.x86_64.rpm libsndfile1-32bit-1.0.28-5.12.1.x86_64.rpm libsndfile-devel-1.0.28-5.12.1.s390x.rpm libsndfile-progs-1.0.28-5.12.1.s390x.rpm libsndfile1-1.0.28-5.12.1.s390x.rpm libsndfile-devel-1.0.28-5.12.1.ppc64le.rpm libsndfile-progs-1.0.28-5.12.1.ppc64le.rpm libsndfile1-1.0.28-5.12.1.ppc64le.rpm libsndfile-devel-1.0.28-5.12.1.aarch64.rpm libsndfile-progs-1.0.28-5.12.1.aarch64.rpm libsndfile1-1.0.28-5.12.1.aarch64.rpm