Index index by Group index by Distribution index by Vendor index by creation date index by Name Mirrors Help Search

kernel-vanilla-base-4.12.14-150100.197.111.1 RPM for s390x

From OpenSuSE Leap 15.4 for s390x

Name: kernel-vanilla-base Distribution: SUSE Linux Enterprise 15
Version: 4.12.14 Vendor: SUSE LLC <https://www.suse.com/>
Release: 150100.197.111.1 Build date: Wed Apr 6 09:48:34 2022
Group: System/Kernel Build host: s390zl38
Size: 53206320 Source RPM: kernel-vanilla-4.12.14-150100.197.111.1.nosrc.rpm
Packager: https://www.suse.com/
Url: http://www.kernel.org/
Summary: The Standard Kernel - without any SUSE patches - base modules
The standard kernel - without any SUSE patches

This package contains only the base modules, required in all installs.


Source Timestamp: 2022-04-05 17:16:43 +0000
GIT Revision: 923d4a92a40fff197303fa568f81d72db02c40c0
GIT Branch: SLE15-SP1-LTSS

Provides

Requires

License

GPL-2.0-only

Changelog

* Tue Apr 05 2022 mkubecek@suse.cz
  - Update
    patches.suse/llc-fix-netdevice-reference-leaks-in-llc_ui_bind.patch
    references (add CVE-2022-28356 bsc#1197391).
  - commit 923d4a9
* Tue Apr 05 2022 mkubecek@suse.cz
  - netfilter: nf_tables: initialize registers in nft_do_chain()
    (CVE-2022-1016 bsc#1197227).
  - commit 4726ea9
* Tue Apr 05 2022 mkubecek@suse.cz
  - llc: fix netdevice reference leaks in llc_ui_bind() (git-fixes).
  - commit caaa7d4
* Mon Apr 04 2022 tiwai@suse.de
  - can: mcba_usb: mcba_usb_start_xmit(): fix double dev_kfree_skb
    in error path (CVE-2022-28389 bsc#1198033).
  - can: usb_8dev: usb_8dev_start_xmit(): fix double dev_kfree_skb()
    in error path (CVE-2022-28388 bsc#1198032).
  - can: ems_usb: ems_usb_start_xmit(): fix double dev_kfree_skb()
    in error path (CVE-2022-28390 bsc#1198031).
  - commit 2396928
* Mon Apr 04 2022 neilb@suse.de
  - xprtrdma: fix incorrect header size calculations (CVE-2022-0812
    bsc#1196639).
  - commit 19d5b1d
* Wed Mar 30 2022 tiwai@suse.de
  - ALSA: pcm: Fix potential AB/BA lock with buffer_mutex and
    mmap_lock (CVE-2022-1048 bsc#1197331).
  - Refresh
    patches.kabi/ALSA-kABI-workaround-for-snd_pcm_runtime-changes.patch.
  - commit 5ef2c78
* Wed Mar 30 2022 tiwai@suse.de
  - ALSA: pcm: Fix potential AB/BA lock with buffer_mutex and
    mmap_lock (CVE-2022-1048 bsc#1197331).
  - Refresh
    patches.kabi/ALSA-kABI-workaround-for-snd_pcm_runtime-changes.patch.
  - commit 62bc950
* Mon Mar 28 2022 jack@suse.cz
  - ext4: fix kernel infoleak via ext4_extent_header (bsc#1189562
    bsc#1196761 CVE-2022-0850).
  - commit 8570e10
* Mon Mar 28 2022 oneukum@suse.com
  - Update patches.suse/sr9700-sanity-check-for-packet-length.patch
    (bsc#1196836 CVE-2022-26966).
    fixed typo in References
  - commit e04f4f1
* Thu Mar 24 2022 denis.kirjanov@suse.com
  - esp: Fix possible buffer overflow in ESP transformation
    (bsc#1197131 CVE-2022-0886).
  - commit d9e58bc
* Thu Mar 24 2022 denis.kirjanov@suse.com
  - Refresh patches.suse/xfrm-fix-mtu-regression.patch.
  - commit 0ee241b
* Thu Mar 24 2022 vkarasulli@suse.de
  - quota: check block number when reading the block in quota  file
    (bsc#1197366 CVE-2021-45868).
  - commit b7d9616
* Thu Mar 24 2022 tiwai@suse.de
  - ALSA: kABI workaround for snd_pcm_runtime changes (CVE-2022-1048
    bsc#1197331).
  - Refresh patches.kabi/ALSA-pcm-oss-rw_ref-kabi-fix.patch.
  - commit f284bec
* Wed Mar 23 2022 lduncan@suse.com
  - Fixing a series_sort.py issue for a patch
    The patch: blk-mq-move-_blk_mq_update_nr_hw_queues-synchronize_rcu-call
    was placed at the end of the sorted section by series_insert.py at
    one time, but now series_sort.py is complaining. So move this patch
    to later in series.conf, outside of the sorted section, making
    series_sort.py happy.
  - commit a65cae5
* Tue Mar 22 2022 tiwai@suse.de
  - ALSA: kABI workaround for snd_pcm_runtime changes (CVE-2022-1048
    bsc#1197331).
  - commit 86d43c7
* Tue Mar 22 2022 tiwai@suse.de
  - ALSA: pcm: Fix races among concurrent prealloc proc writes
    (CVE-2022-1048 bsc#1197331).
  - ALSA: pcm: Fix races among concurrent prepare and
    hw_params/hw_free calls (CVE-2022-1048 bsc#1197331).
  - ALSA: pcm: Fix races among concurrent read/write and buffer
    changes (CVE-2022-1048 bsc#1197331).
  - ALSA: pcm: Fix races among concurrent hw_params and hw_free
    calls (CVE-2022-1048 bsc#1197331).
  - commit e5bbf41
* Tue Mar 22 2022 tiwai@suse.de
  - ALSA: pcm: Fix races among concurrent prealloc proc writes
    (CVE-2022-1048 bsc#1197331).
  - ALSA: pcm: Fix races among concurrent prepare and
    hw_params/hw_free calls (CVE-2022-1048 bsc#1197331).
  - ALSA: pcm: Fix races among concurrent read/write and buffer
    changes (CVE-2022-1048 bsc#1197331).
  - ALSA: pcm: Fix races among concurrent hw_params and hw_free
    calls (CVE-2022-1048 bsc#1197331).
  - commit 0f72275
* Mon Mar 21 2022 msuchanek@suse.de
  - macros.kernel-source: Fix conditional expansion.
    Fixes: bb95fef3cf19 ("rpm: Use bash for %() expansion (jsc#SLE-18234).")
  - commit 7e857f7
* Sat Mar 19 2022 msuchanek@suse.de
  - rpm: Use bash for %() expansion (jsc#SLE-18234).
    Since 15.4 alternatives for /bin/sh are provided by packages
    <something>-sh. While the interpreter for the build script can be
    selected the interpreter for %() cannot.
    The kernel spec files use bashisms in %().
    While this could technically be fixed there is more serious underlying
    problem: neither bash nor any of the alternatives are 100% POSIX
    compliant nor bug-free.
    It is not my intent to maintain bug compatibility with any number of
    shells for shell scripts embedded in the kernel spec file. The spec file
    syntax is not documented so embedding the shell script in it causes some
    unspecified transformation to be applied to it. That means that
    ultimately any changes must be tested by building the kernel, n times if
    n shells are supported.
    To reduce maintenance effort require that bash is used for kernel build
    always.
  - commit bb95fef
* Thu Mar 17 2022 oneukum@suse.com
  - net: usb: ax88179_178a: Fix out-of-bounds accesses in RX fixup
    (bsc#1196018).
  - commit 95d7e2c
* Thu Mar 17 2022 oneukum@suse.com
  - net: usb: ax88179_178a: fix packet alignment padding
    (bsc#1196018).
  - commit 065384f
* Thu Mar 17 2022 oneukum@suse.com
  - ax88179_178a: Merge memcpy + le32_to_cpus to get_unaligned_le32
    (bsc#1196018).
  - commit f59903f
* Wed Mar 16 2022 oneukum@suse.com
  - Update patches.suse/sr9700-sanity-check-for-packet-length.patch
    (bac#1196836 CVE-2022-26966).
    added CVE number
  - commit 7e940d6
* Wed Mar 16 2022 msuchanek@suse.de
  - rpm: Run external scriptlets on uninstall only when available
    (bsc#1196514 bsc#1196114 bsc#1196942).
    When dependency cycles are encountered package dependencies may not be
    fulfilled during zypper transaction at the time scriptlets are run.
    This is a problem for kernel scriptlets provided by suse-module-tools
    when migrating to a SLE release that provides these scriptlets only as
    part of LTSS. The suse-module-tools that provides kernel scriptlets may
    be removed early causing migration to fail.
  - commit ab8dd2d
* Wed Mar 16 2022 msuchanek@suse.de
  - Delete patches.suse/net-tipc-validate-domain-record-count-on-input.patch.
    Change included in patches.suse/tipc-improve-size-validations-for-received-domain-re.patch
  - commit 064907e
* Wed Mar 16 2022 msuchanek@suse.de
  - rpm: SC2006: Use $(...) notation instead of legacy backticked `...`.
  - commit f0d0e90
* Tue Mar 15 2022 dmueller@suse.com
  - rpm/kernel-source.spec.in: call fdupes per subpackage
    It is a waste of time to do a global fdupes when we have
    subpackages.
  - commit 1da8439
* Fri Mar 11 2022 tbogendoerfer@suse.de
  - net: sched: use Qdisc rcu API instead of relying on rtnl lock
    (bsc#1196973 CVE-2021-39713).
  - net: sched: add helper function to take reference to Qdisc
    (bsc#1196973 CVE-2021-39713).
  - net: sched: extend Qdisc with rcu (bsc#1196973 CVE-2021-39713).
  - net: sched: rename qdisc_destroy() to qdisc_put() (bsc#1196973
    CVE-2021-39713).
  - net: core: netlink: add helper refcount dec and lock function
    (bsc#1196973 CVE-2021-39713).
  - commit a22ecb0
* Thu Mar 10 2022 jgross@suse.com
  - xen/netfront: react properly to failing
    gnttab_end_foreign_access_ref() (bsc#1196488, XSA-396,
    CVE-2022-23042).
  - commit 2b38f30
* Thu Mar 10 2022 jgross@suse.com
  - xen/gnttab: fix gnttab_end_foreign_access() without page
    specified (bsc#1196488, XSA-396, CVE-2022-23041).
  - commit 7149843
* Thu Mar 10 2022 jgross@suse.com
  - xen/9p: use alloc/free_pages_exact() (bsc#1196488, XSA-396,
    CVE-2022-23041).
  - commit a920e1c
* Thu Mar 10 2022 jgross@suse.com
  - xen/usb: don't use gnttab_end_foreign_access() in
    xenhcd_gnttab_done() (bsc#1196488, XSA-396).
  - commit e8ca175
* Thu Mar 10 2022 jgross@suse.com
  - xen/gntalloc: don't use gnttab_query_foreign_access()
    (bsc#1196488, XSA-396, CVE-2022-23039).
  - commit 02e08de
* Thu Mar 10 2022 jgross@suse.com
  - xen/scsifront: don't use gnttab_query_foreign_access() for
    mapped status (bsc#1196488, XSA-396, CVE-2022-23038).
  - commit 78fd62a
* Thu Mar 10 2022 jgross@suse.com
  - xen/netfront: don't use gnttab_query_foreign_access() for
    mapped status (bsc#1196488, XSA-396, CVE-2022-23037).
  - commit 335a138
* Thu Mar 10 2022 jgross@suse.com
  - xen/blkfront: don't use gnttab_query_foreign_access() for
    mapped status (bsc#1196488, XSA-396, CVE-2022-23036).
  - commit 69cc608
* Thu Mar 10 2022 jgross@suse.com
  - xen/grant-table: add gnttab_try_end_foreign_access()
    (bsc#1196488, XSA-396, CVE-2022-23036, CVE-2022-23038).
  - commit d8d4a06
* Thu Mar 10 2022 jgross@suse.com
  - xen/xenbus: don't let xenbus_grant_ring() remove grants in
    error case (bsc#1196488, XSA-396, CVE-2022-23040).
  - commit 9eb0e70
* Thu Mar 10 2022 mkoutny@suse.com
  - genirq: Use rcu in kstat_irqs_usr() (bsc#1193738).
  - commit 520b1bb
* Thu Mar 10 2022 dmueller@suse.com
  - rpm/arch-symbols,guards,*driver: Replace Novell with SUSE.
  - commit 174a64f
* Thu Mar 10 2022 jgross@suse.com
  - usb: host: xen-hcd: add missing unlock in error path
    (git-fixes).
  - commit af60176
* Thu Mar 10 2022 jgross@suse.com
  - Refresh
    patches.suse/0002-usb-Introduce-Xen-pvUSB-frontend-xen-hcd.patch.
  - commit ee8e3fd
* Thu Mar 10 2022 jgross@suse.com
  - Refresh
    patches.suse/0001-usb-Add-Xen-pvUSB-protocol-description.patch.
  - commit 29bb7f5
* Thu Mar 10 2022 dmueller@suse.com
  - rpm/kernel-docs.spec.in: use %%license for license declarations
    Limited to SLE15+ to avoid compatibility nightmares.
  - commit 73d560e
* Wed Mar 09 2022 dmueller@suse.com
  - rpm/*.spec.in: Use https:// urls
  - commit 77b5f8e
* Tue Mar 08 2022 msuchanek@suse.de
  - kabi/severities: Ignore NPU DMA functions (bsc#1196433 ltc#196449).
    These cannot be supported anymore after the following changes.
    These were removed upstream in 5.3 because they were never used.
  - commit f1f926b
* Tue Mar 08 2022 msuchanek@suse.de
  - kABI: Add back some NPU related structure members (bsc#1196433 ltc#196449).
  - commit cc295da
* Tue Mar 08 2022 msuchanek@suse.de
  - Move kABI patches to kABI section.
  - commit 9b9f67a
* Tue Mar 08 2022 msuchanek@suse.de
  - powerpc/powernv: remove unused NPU DMA code (bsc#1196433 ltc#196449).
  - commit ba1f3b7
* Mon Mar 07 2022 oneukum@suse.com
  - sr9700: sanity check for packet length (bsc#1196836).
  - commit 7ac3395
* Mon Mar 07 2022 tiwai@suse.de
  - nfc: st21nfca: Fix potential buffer overflows in EVT_TRANSACTION
    (CVE-2022-26490 bsc#1196830).
  - commit 47ae8c5
* Fri Mar 04 2022 tiwai@suse.de
  - Update patch reference for iov security fix (CVE-2022-0847 bsc#1196584)
  - commit 43f0d0b
* Thu Mar 03 2022 tbogendoerfer@suse.de
  - net/mlx5e: Fix page DMA map/unmap attributes (bsc#1196468).
  - commit 936ea82
* Wed Mar 02 2022 msuchanek@suse.de
  - kernel-binary.spec: Also exclude the kernel signing key from devel package.
    There is a check in OBS that fails when it is included. Also the key is
    not reproducible.
    Fixes: bb988d4625a3 ("kernel-binary: Do not include sourcedir in certificate path.")
  - commit 68fa069
* Wed Mar 02 2022 tbogendoerfer@suse.de
  - gve: Recording rx queue before sending to napi (jsc#SLE-23652).
  - gve: fix the wrong AdminQ buffer queue index check
    (jsc#SLE-23652).
  - gve: Fix GFP flags when allocing pages (jsc#SLE-23652).
  - gve: Add consumed counts to ethtool stats (jsc#SLE-23652).
  - gve: Implement suspend/resume/shutdown (jsc#SLE-23652).
  - gve: Add optional metadata descriptor type GVE_TXD_MTD
    (jsc#SLE-23652).
  - gve: remove memory barrier around seqno (jsc#SLE-23652).
  - gve: Update gve_free_queue_page_list signature (jsc#SLE-23652).
  - gve: Move the irq db indexes out of the ntfy block struct
    (jsc#SLE-23652).
  - gve: Correct order of processing device options (jsc#SLE-23652).
  - gve: fix for null pointer dereference (jsc#SLE-23652).
  - gve: fix unmatched u64_stats_update_end() (jsc#SLE-23652).
  - gve: Add a jumbo-frame device option (jsc#SLE-23652).
  - gve: Implement packet continuation for RX (jsc#SLE-23652).
  - gve: Add RX context (jsc#SLE-23652).
  - gve: Track RX buffer allocation failures (jsc#SLE-23652).
  - gve: Allow pageflips on larger pages (jsc#SLE-23652).
  - gve: Add netif_set_xps_queue call (jsc#SLE-23652).
  - gve: Do lazy cleanup in TX path (jsc#SLE-23652).
  - gve: Add rx buffer pagecnt bias (jsc#SLE-23652).
  - gve: Switch to use napi_complete_done (jsc#SLE-23652).
  - gve: Use kvcalloc() instead of kvzalloc() (jsc#SLE-23652).
  - gve: DQO: avoid unused variable warnings (jsc#SLE-23652).
  - gve: report 64bit tx_bytes counter from
    gve_handle_report_stats() (jsc#SLE-23652).
  - gve: fix gve_get_stats() (jsc#SLE-23652).
  - gve: Properly handle errors in gve_assign_qpl (jsc#SLE-23652).
  - gve: Avoid freeing NULL pointer (jsc#SLE-23652).
  - gve: Correct available tx qpl check (jsc#SLE-23652).
  - gve: fix the wrong AdminQ buffer overflow check (jsc#SLE-23652).
  - gve: DQO: Remove incorrect prefetch (jsc#SLE-23652).
  - gve: Simplify code and axe the use of a deprecated API
    (jsc#SLE-23652).
  - gve: Propagate error codes to caller (jsc#SLE-23652).
  - gve: Fix an error handling path in 'gve_probe()'
    (jsc#SLE-23652).
  - gve: Fix swapped vars when fetching max queues (jsc#SLE-23652).
  - gve: DQO: Fix off by one in gve_rx_dqo() (jsc#SLE-23652).
  - gve: Fix warnings reported for DQO patchset (jsc#SLE-23652).
  - gve: DQO: Add RX path (jsc#SLE-23652).
  - gve: DQO: Add TX path (jsc#SLE-23652).
  - gve: DQO: Configure interrupts on device up (jsc#SLE-23652).
  - gve: DQO: Add ring allocation and initialization
    (jsc#SLE-23652).
  - gve: DQO: Add core netdev features (jsc#SLE-23652).
  - gve: Update adminq commands to support DQO queues
    (jsc#SLE-23652).
  - gve: Add DQO fields for core data structures (jsc#SLE-23652).
  - gve: Add dqo descriptors (jsc#SLE-23652).
  - gve: Add support for DQO RX PTYPE map (jsc#SLE-23652).
  - gve: adminq: DQO specific device descriptor logic
    (jsc#SLE-23652).
  - gve: Introduce per netdev `enum gve_queue_format`
    (jsc#SLE-23652).
  - gve: Introduce a new model for device options (jsc#SLE-23652).
  - gve: Make gve_rx_slot_page_info.page_offset an absolute offset
    (jsc#SLE-23652).
  - gve: gve_rx_copy: Move padding to an argument (jsc#SLE-23652).
  - gve: Move some static functions to a common file
    (jsc#SLE-23652).
  - gve: Correct SKB queue index validation (jsc#SLE-23652).
  - gve: Upgrade memory barrier in poll routine (jsc#SLE-23652).
  - gve: Add NULL pointer checks when freeing irqs (jsc#SLE-23652).
  - gve: Update mgmt_msix_idx if num_ntfy changes (jsc#SLE-23652).
  - gve: Check TX QPL was actually assigned (jsc#SLE-23652).
  - net: gve: remove duplicated allowed (jsc#SLE-23652).
  - net: gve: convert strlcpy to strscpy (jsc#SLE-23652).
  - gve: Add support for raw addressing in the tx path
    (jsc#SLE-23652).
  - gve: Rx Buffer Recycling (jsc#SLE-23652).
  - gve: Add support for raw addressing to the rx path
    (jsc#SLE-23652).
  - gve: Add support for raw addressing device option
    (jsc#SLE-23652).
  - gve: Replace zero-length array with flexible-array member
    (jsc#SLE-23652).
  - gve: Enable Link Speed Reporting in the driver (jsc#SLE-23652).
  - gve: Use link status register to report link status
    (jsc#SLE-23652).
  - gve: Batch AQ commands for creating and destroying queues
    (jsc#SLE-23652).
  - gve: NIC stats for report-stats and for ethtool (jsc#SLE-23652).
  - gve: Add Gvnic stats AQ command and ethtool show/set-priv-flags
    (jsc#SLE-23652).
  - gve: Use dev_info/err instead of netif_info/err (jsc#SLE-23652).
  - gve: Add stats for gve (jsc#SLE-23652).
  - gve: Get and set Rx copybreak via ethtool (jsc#SLE-23652).
  - net: Google gve: Remove dma_wmb() before ringing doorbell
    (jsc#SLE-23652).
  - gve: Fix the queue page list allocated pages count
    (jsc#SLE-23652).
  - gve: fix dma sync bug where not all pages synced
    (jsc#SLE-23652).
  - commit 11aa9c5
* Wed Mar 02 2022 msuchanek@suse.de
  - rpm/check-for-config-changes: Ignore PAHOLE_VERSION.
  - commit 88ba5ec
* Tue Mar 01 2022 bp@suse.de
  - x86/speculation: Use generic retpoline by default on AMD
    (bsc#1191580 CVE-2022-0001 CVE-2022-0002).
  - commit 7feede3
* Tue Mar 01 2022 bp@suse.de
  - x86/speculation: Include unprivileged eBPF status in Spectre v2
    mitigation reporting (bsc#1191580 CVE-2022-0001 CVE-2022-0002).
  - Refresh
    patches.suse/x86-speculation-add-special-register-buffer-data-sampling-srbds-mitigation.patch.
  - commit 37b834c
* Tue Mar 01 2022 bp@suse.de
  - Documentation/hw-vuln: Update spectre doc (bsc#1191580
    CVE-2022-0001 CVE-2022-0002).
  - Refresh
    patches.suse/0001-x86-speculation-Add-basic-IBRS-support-infrastructur.patch.
  - commit ae4f20a
* Tue Mar 01 2022 bp@suse.de
  - x86/speculation: Add eIBRS + Retpoline options (bsc#1191580
    CVE-2022-0001 CVE-2022-0002).
  - Refresh
    patches.suse/0001-x86-speculation-Add-basic-IBRS-support-infrastructur.patch.
  - Refresh patches.suse/IBRS-forbid-shooting-in-foot.patch.
  - commit d60f0e7
* Tue Mar 01 2022 bp@suse.de
  - x86/speculation: Rename RETPOLINE_AMD to RETPOLINE_LFENCE
    (bsc#1191580 CVE-2022-0001 CVE-2022-0002).
  - Refresh
    patches.suse/0001-x86-speculation-Add-basic-IBRS-support-infrastructur.patch.
  - commit f84ba7f
* Tue Mar 01 2022 bp@suse.de
  - Refresh
    patches.suse/0001-x86-speculation-Add-basic-IBRS-support-infrastructur.patch.
  - Delete patches.suse/do-not-default-to-ibrs-on-skl.patch.
    Remove a statement which cancels itself out with the following patch
    which removes it anyway.
  - commit 0b79d59
* Tue Mar 01 2022 tiwai@suse.de
  - lib/iov_iter: initialize "flags" in new pipe_buffer
    (bsc#1196584).
  - commit 589ad87
* Tue Mar 01 2022 bp@suse.de
  - x86,bugs: Unconditionally allow spectre_v2=retpoline,amd
    (bsc#1191580 CVE-2022-0001 CVE-2022-0002).
  - commit 0bae9af
* Tue Mar 01 2022 bp@suse.de
  - x86/speculation: Merge one test in
    spectre_v2_user_select_mitigation() (bsc#1191580 CVE-2022-0001
    CVE-2022-0002).
  - commit 7500cb0
* Mon Feb 28 2022 bp@suse.de
  - cpu/SMT: create and export cpu_smt_possible() (bsc#1191580
    CVE-2022-0001 CVE-2022-0002).
  - commit 4ca375f
* Thu Feb 24 2022 nstange@suse.de
  - crypto: af_alg - get_page upon reassignment to TX SGL
    (bsc#1195840).
  - commit f9977fb
* Thu Feb 24 2022 msuchanek@suse.de
  - powerpc/mm: Remove dcache flush from memory remove (bsc#1196433
    ltc#196449).
  - powerpc: Don't flush caches when adding memory (bsc#1196433
    ltc#196449).
  - commit 23c9b78
* Wed Feb 23 2022 jack@suse.cz
  - udf: Restore i_lenAlloc when inode expansion fails (bsc#1196079
    CVE-2022-0617).
  - commit 2533a5b
* Wed Feb 23 2022 jack@suse.cz
  - udf: Fix NULL ptr deref when converting from inline format
    (bsc#1196079 CVE-2022-0617).
  - commit 87d491f
* Fri Feb 18 2022 tiwai@suse.de
  - Update patch reference for vfs fix (CVE-2022-0644 bsc#1196155)
  - commit 4656612
* Tue Feb 15 2022 tiwai@suse.de
  - f2fs: fix to do sanity check on inode type during garbage
    collection (CVE-2021-44879 bsc#1195987).
  - commit e8b60dc
* Tue Feb 15 2022 petr.pavlu@suse.com
  - Update
    patches.suse/0001-PCI-hv-Use-expected-affinity-when-unmasking-IRQ.patch
    (bsc#1185973, bsc#1195536).
  - commit 7617851
* Tue Feb 15 2022 denis.kirjanov@suse.com
  - tipc: improve size validations for received domain records
    (bsc#1195254, CVE-2022-0435).
  - commit daaae48
* Tue Feb 15 2022 tiwai@suse.de
  - yam: fix a memory leak in yam_siocdevprivate() (CVE-2022-24959
    bsc#1195897).
  - commit 2b51111
* Mon Feb 14 2022 vkarasulli@suse.de
  - Update patches.suse/0001-mmc-moxart_remove-Fix-UAF.patch
    (bsc#1194516 CVE-2022-0487).
  - commit b3ff0d9
* Fri Feb 11 2022 msuchanek@suse.de
  - kernel-binary: Do not include sourcedir in certificate path.
    The certs macro runs before build directory is set up so it creates the
    aggregate of supplied certificates in the source directory.
    Using this file directly as the certificate in kernel config works but
    embeds the source directory path in the kernel config.
    To avoid this symlink the certificate to the build directory and use
    relative path to refer to it.
    Also fabricate a certificate in the same location in build directory
    when none is provided.
  - commit bb988d4
* Fri Feb 11 2022 msuchanek@suse.de
  - constraints: Also adjust disk requirement for x86 and s390.
  - commit 9719db0
* Fri Feb 11 2022 msuchanek@suse.de
  - constraints: Increase disk space for aarch64
  - commit 09c2882
* Tue Feb 08 2022 mkoutny@suse.com
  - cgroup-v1: Require capabilities to set release_agent
    (bsc#1195543 CVE-2022-0492).
  - commit 25a96a7
* Mon Feb 07 2022 vkarasulli@suse.de
  - NFSv4: Handle case where the lookup of a directory fails
    (bsc#1195612 CVE-2022-24448).
  - commit fe40712
* Mon Jan 31 2022 ludwig.nussel@suse.de
  - kernel-obs-build: include 9p (boo#1195353)
    To be able to share files between host and the qemu vm of the build
    script, the 9p and 9p_virtio kernel modules need to be included in
    the initrd of kernel-obs-build.
  - commit 0cfe67a
* Mon Jan 31 2022 tiwai@suse.de
  - Update patch reference for BT fix (CVE-2021-3564 bsc#1186207)
  - commit ea7857c
* Mon Jan 31 2022 tiwai@suse.de
  - Bluetooth: fix the erroneous flush_work() order (git-fixes).
  - commit 9b1f0b0
* Mon Jan 31 2022 denis.kirjanov@suse.com
  - net: tipc: validate domain record count on input (bsc#1195254).
  - commit eaeeffc
* Fri Jan 28 2022 jbohac@suse.cz
  - phonet: refcount leak in pep_sock_accep (bsc#1193867,
    CVE-2021-45095).
  - commit 413134f
* Fri Jan 28 2022 jbohac@suse.cz
  - xfrm: fix MTU regression (bsc#1185377, bsc#1194048).
  - Delete
    patches.suse/xfrm-xfrm_state_mtu-should-return-at-least-1280-for-.patch.
    which caused a regression (bsc#1194048).
  - Replace with an alternative fix for bsc#1185377
  - commit 3800186
* Thu Jan 27 2022 denis.kirjanov@suse.com
  - Update
    patches.suse/IPv6-reply-ICMP-error-if-the-first-fragment-don-t-in.patch
    (bsc#1191241 bsc#1195166).
  - Update
    patches.suse/net-ipv6-discard-next-hop-mtu-less-than-minimum-link.patch
    (bsc#1191241 bsc#1195166).
  - commit 1d741e6
* Thu Jan 27 2022 tonyj@suse.de
  - bpf: Verifer, adjust_scalar_min_max_vals to always call
    update_reg_bounds() (bsc#1194227).
  - commit c098fc7
* Thu Jan 27 2022 oneukum@suse.com
  - scsi: ufs: Correct the LUN used in eh_device_reset_handler()
    callback (bsc#1193864 CVE-2021-39657).
  - commit 39c5f8e
* Wed Jan 26 2022 oneukum@suse.com
  - usb: gadget: configfs: Fix use-after-free issue with udc_name
    (bsc#1193861 CVE-2021-39648).
  - commit 9ec119b
* Wed Jan 26 2022 ohering@suse.de
  - net: mana: Add RX fencing (bsc#1193506).
  - commit 4af8516
* Wed Jan 26 2022 ohering@suse.de
  - net: mana: Add XDP support (bsc#1193506).
  - commit c395dbf
* Wed Jan 26 2022 ohering@suse.de
  - net: mana: Fix spelling mistake "calledd" -> "called"
    (bsc#1193506).
  - commit 781000a
* Wed Jan 26 2022 ohering@suse.de
  - net: mana: Support hibernation and kexec (bsc#1193506).
  - commit c664fb6
* Wed Jan 26 2022 ohering@suse.de
  - net: mana: Improve the HWC error handling (bsc#1193506).
  - commit be607da
* Wed Jan 26 2022 ohering@suse.de
  - net: mana: Fix the netdev_err()'s vPort argument in
    mana_init_port() (bsc#1193506).
  - commit 4301039
* Wed Jan 26 2022 ohering@suse.de
  - net: mana: Allow setting the number of queues while the NIC
    is down (bsc#1193506).
  - commit ed46d20
* Wed Jan 26 2022 ohering@suse.de
  - net: mana: Use kcalloc() instead of kzalloc() (bsc#1193506).
  - commit 2e3aed9
* Wed Jan 26 2022 ohering@suse.de
  - hv_netvsc: Set needed_headroom according to VF (bsc#1193506).
  - commit e6c57eb
* Wed Jan 26 2022 ohering@suse.de
  - net, xdp: Introduce xdp_prepare_buff utility routine
    (bsc#1193506).
  - net, xdp: Introduce xdp_init_buff utility routine (bsc#1193506).
  - commit 69356ad
* Tue Jan 25 2022 jack@suse.cz
  - fget: clarify and improve __fget_files() implementation
    (bsc#1193727).
  - commit 3ce5a50
* Tue Jan 25 2022 bp@suse.de
  - tee: handle lookup of shm with reference count 0 (bsc#1193767
    CVE-2021-44733).
  - commit 10b0db6
* Mon Jan 24 2022 msuchanek@suse.de
  - kernel-binary.spec.in: Move 20-kernel-default-extra.conf to the correctr
    directory (bsc#1195051).
  - commit c80b5de
* Fri Jan 21 2022 tiwai@suse.de
  - drm/i915: Flush TLBs before releasing backing store
    (CVE-2022-0330 bsc#1194880).
  - commit bd11976
* Fri Jan 21 2022 bp@suse.de
  - kabi/severities: Add a kabi exception for drivers/tee/tee
    According to the partner modules database, the structs of this driver
    are not used by anything external so make a kABI exception for them.
    Do that on purpose so that any external module using this fails to load
    instead of causing a potential memory corruption due to a kabi
    workaround which would use the same offset but for a different thing:
    - struct dma_buf *dmabuf;
    +	refcount_t refcount;
    See upstream commit
    dfd0743f1d9e ("tee: handle lookup of shm with reference count 0")
  - commit ac7feb6
* Fri Jan 21 2022 tbogendoerfer@suse.de
  - sctp: account stream padding length for reconf chunk
    (bsc#1194985 CVE-2022-0322).
  - commit f5ee3ee
* Thu Jan 20 2022 rgoldwyn@suse.com
  - vfs: check fd has read access in kernel_read_file_from_fd() (bsc#1194888).
  - commit b248150
* Thu Jan 20 2022 msuchanek@suse.de
  - kernel-binary.spec: Do not use the default certificate path (bsc#1194943).
    Using the the default path is broken since Linux 5.17
  - commit 68b36f0
* Wed Jan 19 2022 vkarasulli@suse.de
  - moxart: fix potential use-after-free on remove path
    (bsc#1194516).
  - commit 5a3dfcb
* Wed Jan 19 2022 vkarasulli@suse.de
  - memstick: rtsx_usb_ms: fix UAF (bsc#1194516).
  - commit 9692e25
* Wed Jan 19 2022 mbenes@suse.cz
  - livepatch: Avoid CPU hogging with cond_resched (bsc#1071995).
  - commit 90dede7
* Wed Jan 12 2022 mkoutny@suse.com
  - cgroup: Use open-time credentials for process migraton perm
    checks (bsc#1194302 CVE-2021-4197).
  - commit b76ad03
* Tue Jan 11 2022 tiwai@suse.de
  - NFC: add NCI_UNREG flag to eliminate the race (CVE-2021-4202
    bsc#1194529).
  - NFC: reorder the logic in nfc_{un,}register_device
    (CVE-2021-4202 bsc#1194529).
  - NFC: reorganize the functions in nci_request (CVE-2021-4202
    bsc#1194529).
  - commit 68b4b42
* Mon Jan 10 2022 jslaby@suse.cz
  - Update patches.suse/tcp-fix-a-race-in-inet_diag_dump_icsk.patch
    (networking-stable-19_01_04 bsc#1186222).
    Fix bsc#1186222 by using proper atomic helper.
  - commit bd29e90
* Wed Jan 05 2022 jack@suse.cz
  - fget: check that the fd still exists after getting a ref to it
    (bsc#1193727 CVE-2021-4083).
  - commit 5441599
* Tue Jan 04 2022 bp@suse.de
  - kprobes: Limit max data_size of the kretprobe instances
    (bsc#1193669).
  - commit 3600b27
* Tue Jan 04 2022 rgoldwyn@suse.com
  - btrfs: unlock newly allocated extent buffer after error (bsc#1194001, CVE-2021-4149).
  - commit 0a8af05
* Tue Jan 04 2022 tbogendoerfer@suse.de
  - netdevsim: Zero-initialize memory for new map's value in
    function nsim_bpf_map_alloc (bsc#1193927 CVE-2021-4135).
  - commit 27d280b
* Mon Jan 03 2022 denis.kirjanov@suse.com
  - inet: use bigger hash table for IP ID generation (CVE-2021-45486
    bsc#1194087).
  - commit 0387442
* Thu Dec 30 2021 dmueller@suse.com
  - fix rpm build warning
    tumbleweed rpm is adding these warnings to the log:
    It's not recommended to have unversioned Obsoletes: Obsoletes:      microcode_ctl
  - commit 3ba8941
* Thu Dec 30 2021 mbenes@suse.cz
  - recordmcount.pl: fix typo in s390 mcount regex (bsc#1192267).
  - commit b8b1ef9
* Thu Dec 30 2021 mbenes@suse.cz
  - recordmcount.pl: look for jgnop instruction as well as bcrl
    on s390 (bsc#1192267).
  - Delete patches.suse/ftrace-recordmcount-binutils.patch.
  - commit 9b6815f
* Tue Dec 28 2021 denis.kirjanov@suse.com
  - Update config files.
  - commit f87a32f
* Tue Dec 28 2021 denis.kirjanov@suse.com
  - af_unix: fix garbage collect vs MSG_PEEK (CVE-2021-0920
    bsc#1193731).
  - commit 167f0fb
* Tue Dec 28 2021 denis.kirjanov@suse.com
  - net: split out functions related to registering inflight socket
    files (CVE-2021-0920 bsc#1193731).
  - commit 8ec3ad8
* Wed Dec 22 2021 dmueller@suse.com
  - build initrd without systemd
    This reduces the size of the initrd by over 25%, which
    improves startup time of the virtual machine by 0.5-0.6s on
    very fast machines, more on slower ones.
  - commit ef4c569
* Mon Dec 20 2021 jgross@suse.com
  - xen/netback: don't queue unlimited number of packages
    (CVE-2021-28715 XSA-392 bsc#1193442).
  - commit a67e40b
* Mon Dec 20 2021 jgross@suse.com
  - xen/netback: fix rx queue stall detection (CVE-2021-28714
    XSA-392 bsc#1193442).
  - commit aa10f67
* Mon Dec 20 2021 jgross@suse.com
  - xen/console: harden hvc_xen against event channel storms
    (CVE-2021-28713 XSA-391 bsc#1193440).
  - commit f9f6563
* Mon Dec 20 2021 jgross@suse.com
  - xen/netfront: harden netfront against event channel storms
    (CVE-2021-28712 XSA-391 bsc#1193440).
  - commit 785c1f2
* Mon Dec 20 2021 jgross@suse.com
  - xen/blkfront: harden blkfront against event channel storms
    (CVE-2021-28711 XSA-391 bsc#1193440).
  - commit adb747c
* Mon Dec 20 2021 jgross@suse.com
  - tty: hvc: replace BUG_ON() with negative return value
    (git-fixes).
  - commit 24773f9
* Mon Dec 20 2021 jgross@suse.com
  - xen/netfront: don't trust the backend response data blindly
    (git-fixes).
  - commit 61f473d
* Mon Dec 20 2021 jgross@suse.com
  - xen/netfront: disentangle tx_skb_freelist (git-fixes).
  - commit a27eb85
* Mon Dec 20 2021 jgross@suse.com
  - xen/netfront: don't read data from request on the ring page
    (git-fixes).
  - commit d843191
* Mon Dec 20 2021 jgross@suse.com
  - xen/netfront: read response from backend only once (git-fixes).
  - commit 10c97f1
* Mon Dec 20 2021 jgross@suse.com
  - xen/blkfront: don't trust the backend response data blindly
    (git-fixes).
  - commit 8238939
* Mon Dec 20 2021 jgross@suse.com
  - xen/blkfront: don't take local copy of a request from the ring
    page (git-fixes).
  - commit 0c42763
* Mon Dec 20 2021 jgross@suse.com
  - xen/blkfront: read response from backend only once (git-fixes).
  - commit 7b30def
* Mon Dec 20 2021 jgross@suse.com
  - xen: sync include/xen/interface/io/ring.h with Xen's newest
    version (git-fixes).
  - commit 0df7133
* Fri Dec 17 2021 dmueller@suse.com
  - kernel-obs-build: remove duplicated/unused parameters
    lbs=0 - this parameters is just giving "unused parameter" and it looks
    like I can not find any version that implemented this.
    rd.driver.pre=binfmt_misc is not needed when setup_obs is used, it
    alread loads the kernel module.
    quiet and panic=1 will now be also always added by OBS, so we don't have
    to set it here anymore.
  - commit 972c692
* Fri Dec 17 2021 mbenes@suse.cz
  - ring-buffer: Protect ring_buffer_reset() from reentrancy
    (CVE-2020-27825 bsc#1179960).
  - commit 432ad3d
* Thu Dec 16 2021 shung-hsi.yu@suse.com
  - Update
    patches.suse/bpf-fix-truncated-jump-targets-on-heavy-expansions.patch
    (bsc#1109837 bsc#1193575 CVE-2018-25020).
  - commit 0de083e
* Thu Dec 16 2021 shung-hsi.yu@suse.com
  - bpf: fix truncated jump targets on heavy expansions (bsc#1193575
    CVE-2018-25020).
  - commit bf19161
* Tue Dec 14 2021 dmueller@suse.com
  - Revert "- rpm/*build: use buildroot macro instead of env variable"
    buildroot macro is not being expanded inside a shell script. go
    back to the environment variable usage. This reverts parts of
    commit e2f60269b9330d7225b2547e057ef0859ccec155.
  - commit fe85f96
* Tue Dec 14 2021 dmueller@suse.com
  - kernel-obs-build: include the preferred kernel parameters
    Currently the Open Build Service hardcodes the kernel boot parameters
    globally. Recently functionality was added to control the parameters
    by the kernel-obs-build package, so make use of that. parameters here
    will overwrite what is used by OBS otherwise.
  - commit a631240
* Mon Dec 13 2021 denis.kirjanov@suse.com
  - kABI compatibility for struct l2tp_tunnel (bsc#1192032
    CVE-2021-0935).
  - commit 237dc6f
* Mon Dec 13 2021 denis.kirjanov@suse.com
  - l2tp: fix races with ipv4-mapped ipv6 addresses (bsc#1192032
    CVE-2021-0935).
  - commit 3f8483b
* Mon Dec 13 2021 dmueller@suse.com
  - kernel-obs-build: inform build service about virtio-serial
    Inform the build worker code that this kernel supports virtio-serial,
    which improves performance and relability of logging.
  - commit 301a3a7
* Mon Dec 13 2021 dmueller@suse.com
  - rpm/*.spec.in: use buildroot macro instead of env variable
    The RPM_BUILD_ROOT variable is considered deprecated over
    a buildroot macro. future proof the spec files.
  - commit e2f6026
* Fri Dec 10 2021 msuchanek@suse.de
  - kernel-binary.spec: Fix kernel-default-base scriptlets after packaging
    merge.
  - commit 275c61a
* Wed Dec 08 2021 tiwai@suse.de
  - nouveau: Suppress sysfs bind (CVE-2020-27820 bsc#1179599).
  - commit c2489c9
* Tue Dec 07 2021 osalvador@suse.de
  - hugetlbfs: flush TLBs correctly after huge_pmd_unshare
    (bsc#1192946 (CVE-2021-4002)).
  - commit c355959
* Mon Dec 06 2021 tbogendoerfer@suse.de
  - atlantic: Fix OOB read and write in hw_atl_utils_fw_rpc_wait
    (bsc#1192845 CVE-2021-43975).
  - commit c3c1eae
* Thu Dec 02 2021 jslaby@suse.cz
  - rpm/kernel-binary.spec.in: don't strip vmlinux again (bsc#1193306)
    After usrmerge, vmlinux file is not named vmlinux-<version>, but simply
    vmlinux. And this is not reflected in STRIP_KEEP_SYMTAB we set.
    So fix this by removing the dash...
  - commit 83af88d
* Wed Dec 01 2021 tbogendoerfer@suse.de
  - ixgbe: fix large MTU request from VF (bsc#1192877
    CVE-2021-33098).
  - commit 56240b9
* Wed Dec 01 2021 tiwai@suse.de
  - Move upstreamed BT patch into sorted section
  - commit a0f930a
* Wed Dec 01 2021 tiwai@suse.de
  - mwifiex: Fix skb_over_panic in mwifiex_usb_recv()
    (CVE-2021-43976 bsc#1192847).
  - commit c14a908
* Mon Nov 29 2021 mbrugger@suse.com
  - brcmfmac: add CLM download support (bsc#1167162 CVE-2019-15126).
  - commit 7737eec
* Fri Nov 26 2021 msuchanek@suse.de
  - constraints: Build aarch64 on recent ARMv8.1 builders.
    Request asimdrdm feature which is available only on recent ARMv8.1 CPUs.
    This should prevent scheduling the kernel on an older slower builder.
  - commit 60fc53f
* Fri Nov 26 2021 mbenes@suse.cz
  - objtool: Support Clang non-section symbols in ORC generation
    (bsc#1169514).
  - commit 5ab2439
* Fri Nov 26 2021 mbenes@suse.cz
  - elfcore: fix building with clang (bsc#1169514).
  - commit b91821c
* Fri Nov 26 2021 mbenes@suse.cz
  - x86/xen: Mark cpu_bringup_and_idle() as dead_end_function
    (bsc#1169514).
  - commit cf74b00
* Tue Nov 23 2021 msuchanek@suse.de
  - kernel-source.spec: install-kernel-tools also required on 15.4
  - commit 6cefb55
* Mon Nov 22 2021 msuchanek@suse.de
  - Revert "header.py: Reject Patch-mainline: No"
    Allow Patch-mainline: No on historical branch.
  - commit 93a453e
* Mon Nov 22 2021 mkubecek@suse.cz
  - config: disable unprivileged BPF by default (jsc#SLE-22913)
    Backport of mainline commit 8a03e56b253e ("bpf: Disallow unprivileged bpf
    by default") only changes kconfig default, used e.g. for "make oldconfig"
    when the config option is missing, but does not update our kernel configs
    used for build. Update also these to make sure unprivileged BPF is really
    disabled by default.
  - commit 5f769a4
* Fri Nov 19 2021 jbohac@suse.cz
  - infiniband: fix spectre issue in ib_uverbs_write (bsc#1192802).
  - commit 8a8ebed
* Fri Nov 19 2021 jbohac@suse.cz
  - Refresh patches.suse/hisax-fix-spectre-issues.patch.
  - commit 8ad1382
* Thu Nov 18 2021 shung-hsi.yu@suse.com
  - bpf: Remove MTU check in __bpf_skb_max_len (bsc#1192045
    CVE-2021-0941).
  - commit 9de0315
* Thu Nov 18 2021 jbohac@suse.cz
  - osst: fix spectre issue in osst_verify_frame (bsc#1192802).
  - mpt3sas: fix spectre issues (bsc#1192802).
  - infiniband: fix spectre issue in ib_uverbs_write (bsc#1192802).
  - hysdn: fix spectre issue in hycapi_send_message (bsc#1192802).
  - hisax: fix spectre issues (bsc#1192802).
  - gigaset: fix spectre issue in do_data_b3_req (bsc#1192802).
  - iwlwifi: fix spectre issue in iwl_dbgfs_update_pm (bsc#1192802).
  - drm: fix spectre issue in vmw_execbuf_ioctl (bsc#1192802).
  - media: wl128x: get rid of a potential spectre issue
    (bsc#1192802).
  - net: sock_diag: Fix spectre v1 gadget in __sock_diag_cmd()
    (bsc#1192802).
  - sysvipc/sem: mitigate semnum index against spectre v1
    (bsc#1192802).
  - media: dvb_ca_en50221: prevent using slot_info for Spectre
    attacs (bsc#1192802).
  - media: dvb_ca_en50221: sanity check slot number from userspace
    (bsc#1192802).
  - commit f2e7f94
* Wed Nov 17 2021 shung-hsi.yu@suse.com
  - bpf: Disallow unprivileged bpf by default (jsc#SLE-22913).
  - bpf: Add kconfig knob for disabling unpriv bpf
    by default (jsc#SLE-22913)
  - Update config files: Add
    CONFIG_BPF_UNPRIV_DEFAULT_OFF is not set
  - commit 065d420
* Wed Nov 17 2021 tiwai@suse.de
  - dm ioctl: fix out of bounds array access when no devices
    (CVE-2021-31916 bsc#1192781).
  - commit 0ab7d09
* Tue Nov 16 2021 jbohac@suse.cz
  - ipv4: make exception cache less predictible (bsc#1191790,
    CVE-2021-20322).
  - ipv4: use siphash instead of Jenkins in fnhe_hashfun()
    (bsc#1191790, CVE-2021-20322).
  - commit 74af5bd
* Tue Nov 16 2021 msuchanek@suse.de
  - kernel-*-subpackage: Add dependency on kernel scriptlets (bsc#1192740).
  - commit a133bf4
* Fri Nov 12 2021 msuchanek@suse.de
  - config.sh: Merge fixup.
  - commit 6ed8fb4
* Thu Nov 11 2021 msuchanek@suse.de
  - Fix problem with missing installkernel on Tumbleweed.
  - commit 2ed6686
* Thu Nov 11 2021 msuchanek@suse.de
  - Revert "config.sh: Build cve/linux-4.12 against SLE15-SP1."
    This reverts commit ec3bd8c5b541a336b6608cd92493d50ba56230dc.
    See https://github.com/openSUSE/suse-module-tools/pull/44
  - commit bede44a
* Wed Nov 10 2021 acho@suse.com
  - Bluetooth: cmtp: fix file refcount when cmtp_attach_device fails
    (bsc#1191961 CVE-2021-34981).
  - commit 0392318
* Wed Nov 10 2021 aabdallah@suse.de
  - Fix backport error - dir_cookie is a pointer to a u64, not a u64
    Refresh
    patches.suse/0001-NFS-Do-uncached-readdir-when-we-re-seeking-a-cookie-.patch
  - commit 012f3db
* Wed Nov 10 2021 msuchanek@suse.de
  - config.sh: Build cve/linux-4.12 against SLE15-SP1.
    SLE15 is no longer updated and we will need recent update to
    suse-module-tools to continue building the kernel.
  - commit ec3bd8c
* Tue Nov 09 2021 ohering@suse.de
  - cpufreq: intel_pstate: Add Icelake servers support in no-HWP
    mode (bsc#1185758,bsc#1192400).
  - commit 047c233
* Tue Nov 09 2021 ohering@suse.de
  - x86/CPU: Add more Icelake model numbers (bsc#1185758,bsc#1192400).
  - commit 1ad6337
* Mon Nov 08 2021 mbenes@suse.cz
  - ftrace: Fix scripts/recordmcount.pl due to new binutils
    (bsc#1192267).
  - commit adeb3ce
* Thu Nov 04 2021 oneukum@suse.com
  - usb: hso: fix error handling code of hso_create_net_device
    (bsc#1188601 CVE-2021-37159).
  - commit 3ae1a19
* Thu Nov 04 2021 oneukum@suse.com
  - blacklist.conf: blacklist pair of obsoleted patches
    (bsc#1188601 CVE-2021-37159)
  - commit 2c55ec1
* Mon Nov 01 2021 mkubecek@suse.cz
  - sctp: add vtag check in sctp_sf_ootb (CVE-2021-3772
    bsc#1190351).
  - sctp: add vtag check in sctp_sf_do_8_5_1_E_sa (CVE-2021-3772
    bsc#1190351).
  - sctp: add vtag check in sctp_sf_violation (CVE-2021-3772
    bsc#1190351).
  - sctp: fix the processing for COOKIE_ECHO chunk (CVE-2021-3772
    bsc#1190351).
  - sctp: fix the processing for INIT_ACK chunk (CVE-2021-3772
    bsc#1190351).
  - sctp: fix the processing for INIT chunk (CVE-2021-3772
    bsc#1190351).
  - sctp: use init_tag from inithdr for ABORT chunk (CVE-2021-3772
    bsc#1190351).
  - sctp: check asoc peer.asconf_capable before processing asconf
    (bsc#1190351).
  - commit 81f6dbd
* Fri Oct 29 2021 mkubecek@suse.cz
  - sctp: add param size validation for SCTP_PARAM_SET_PRIMARY
    (CVE-2021-3655 bsc#1188563).
  - sctp: validate chunk size in __rcv_asconf_lookup (CVE-2021-3655
    bsc#1188563).
  - sctp: add size validation when walking chunks (CVE-2021-3655
    bsc#1188563).
  - commit b0a2686
* Wed Oct 27 2021 mkubecek@suse.cz
  - cipso,calipso: resolve a number of problems with the DOI
    refcounts (CVE-2021-33033 bsc#1186109).
  - commit 017dde5
* Wed Oct 27 2021 tiwai@suse.de
  - nfc: nci: fix the UAF of rf_conn_info object (CVE-2021-3760
    bsc#1190067).
  - commit 6401849
* Wed Oct 27 2021 tiwai@suse.de
  - Update patch reference for a firewire fix (CVE-2021-42739 CVE-2021-3542 bsc#1184673)
  - commit 7614f38
* Tue Oct 26 2021 ailiop@suse.com
  - xfs: fix up non-directory creation in SGID directories
    (bsc#1190006 CVE-2018-13405).
  - commit 888b5ee
* Tue Oct 26 2021 ailiop@suse.com
  - xfs: remove the icdinode di_uid/di_gid members (bsc#1190006
    CVE-2018-13405).
  - commit d7d9af2
* Tue Oct 26 2021 ailiop@suse.com
  - xfs: ensure that the inode uid/gid match values match the
    icdinode ones (bsc#1190006 CVE-2018-13405).
  - commit f969983
* Tue Oct 26 2021 mkubecek@suse.cz
  - kabi: hide return value type change of sctp_af::from_addr_param
    (CVE-2021-3655 bsc#1188563).
  - sctp: fix return value check in __sctp_rcv_asconf_lookup
    (CVE-2021-3655 bsc#1188563).
  - sctp: validate from_addr_param return (CVE-2021-3655
    bsc#1188563).
  - sctp: fully initialize v4 addr in some functions (bsc#1188563).
  - commit 535a60e
* Tue Oct 26 2021 mkubecek@suse.cz
  - Update
    patches.suse/net_sched-cls_route-remove-the-right-filter-from-has.patch
    references (add CVE-2021-3715 bsc#1190349).
  - commit 2e6d83a
* Fri Oct 22 2021 dkirjanov@suse.com
  - net: ipv6: Discard next-hop MTU less than minimum link MTU
    (bsc#1191241).
  - commit 3a21ecb
* Fri Oct 22 2021 dkirjanov@suse.com
  - ipv6/netfilter: Discard first fragment not including all headers
    (bsc#1191241 bsc#1195166).
  - commit 9602abb
* Fri Oct 22 2021 dkirjanov@suse.com
  - IPv6: reply ICMP error if the first fragment don't include
    all headers (bsc#1191241).
  - commit d34d458
* Fri Oct 22 2021 dkirjanov@suse.com
  - ICMPv6: Add ICMPv6 Parameter Problem, code 3 definition
    (bsc#1191241 bsc#1195166).
  - commit 0aed272
* Thu Oct 21 2021 lhenriques@suse.de
  - ceph: take snap_empty_lock atomically with snaprealm refcount change (bsc#1191888).
  - commit 1377d31
* Wed Oct 20 2021 tiwai@suse.de
  - media: firewire: firedtv-avc: fix a buffer overflow in
    avc_ca_pmt() (CVE-2021-3542 bsc#1184673).
  - commit d196d58
* Wed Oct 20 2021 ohering@suse.de
  - net: mana: Fix error handling in mana_create_rxq() (git-fixes,
    bsc#1191800).
  - commit 88ae105
* Tue Oct 19 2021 dmueller@suse.com
  - rpm/kernel-obs-build.spec.in: move to zstd for the initrd
    Newer distros have capability to decompress zstd, which
    provides a 2-5% better compression ratio at very similar
    cpu overhead. Plus this tests the zstd codepaths now as well.
  - commit 3d53a5b
* Tue Oct 19 2021 dmueller@suse.com
  - rpm/kernel-obs-build.spec.in: reduce initrd functionality
    For building in OBS, we always build inside a virtual machine
    that gets a new, freshly created scratch filesystem image. So
    we do not need to handle fscks because that ain't gonna happen,
    as well as not we do not need to handle microcode update in the
    initrd as these only can be run on the host system anyway. We
    can also strip and hardlink as an additional optimisation that
    should not significantly hurt.
  - commit c72c6fc
* Thu Oct 14 2021 dwagner@suse.de
  - scsi: lpfc: Fix FLOGI failure due to accessing a freed node
    (bsc#1191349).
  - commit 3f943d1
* Thu Oct 14 2021 dwagner@suse.de
  - scsi: lpfc: Fix memory overwrite during FC-GS I/O abort handling
    (bsc#1191349 bsc#1191457).
  - scsi: lpfc: Keep NDLP reference until after freeing the IOCB
    after ELS handling (bsc#1191349 bsc#1191457).
  - commit c13ac76
* Thu Oct 14 2021 aabdallah@suse.de
  - NFS: Do uncached readdir when we're seeking a cookie in an
    empty page cache (bsc#1191628).
  - commit 5b6b8b4
* Wed Oct 13 2021 msuchanek@suse.de
  - kernel-spec-macros: Since rpm 4.17 %verbose is unusable (bsc#1191229).
    The semantic changed in an incompatible way so invoking the macro now
    causes a build failure.
  - commit 3e55f55
* Wed Oct 13 2021 msuchanek@suse.de
  - powerpc/bpf: Emit stf barrier instruction sequences
    for BPF_NOSPEC (bsc#1188983 CVE-2021-34556 bsc#1188985
    CVE-2021-35477).
  - powerpc/security: Add a helper to query stf_barrier type
    (bsc#1188983 CVE-2021-34556 bsc#1188985 CVE-2021-35477).
  - powerpc/bpf: Validate branch ranges (bsc#1188983 CVE-2021-34556
    bsc#1188985 CVE-2021-35477).
  - powerpc/lib: Add helper to check if offset is within
    conditional branch range (bsc#1188983 CVE-2021-34556 bsc#1188985
    CVE-2021-35477).
  - commit d4beb54
* Tue Oct 12 2021 tiwai@suse.de
  - Move upstreamed bpf patch into sorted section
  - commit 848cbf8
* Tue Oct 12 2021 tiwai@suse.de
  - soc: aspeed: lpc-ctrl: Fix boundary check for mmap
    (CVE-2021-42252 bsc#1190479).
  - commit 5b9f8af
* Fri Oct 08 2021 ddiss@suse.de
  - target: core: Fix sense key for invalid XCOPY request
    (bsc#1186078).
  - scsi: target: avoid using lun_tg_pt_gp after unlock
    (bsc#1186078).
  - commit fe0b62b
* Thu Oct 07 2021 shung-hsi.yu@suse.com
  - bpf: Fix integer overflow in prealloc_elems_and_freelist()
    (bsc#1191317, CVE-2021-41864).
  - commit d0cde41
* Tue Oct 05 2021 ludwig.nussel@suse.de
  - rpm: use _rpmmacrodir (boo#1191384)
  - commit e350c14
* Tue Oct 05 2021 tiwai@suse.de
  - net: 6pack: fix slab-out-of-bounds in decode_data
    (CVE-2021-42008 bsc#1191315).
  - commit 7ea0770
* Mon Oct 04 2021 mkoutny@suse.com
  - ipc: remove memcg accounting for sops objects in do_semtimedop()
    (bsc#1190115 CVE-2021-3759).
  - Delete
    patches.suse/ipc-remove-memcg-accounting-for-sops-objects.patch.
    This commit is effectively patch refresh but filename changed too. This
    only adds metadata to the patch after it was accepted upstream.
  - commit d2aacd0
* Fri Oct 01 2021 tiwai@suse.de
  - kABI compatibility for ath_key_delete() changes (CVE-2020-3702
    bsc#1191193).
  - commit f8ebcef
* Fri Oct 01 2021 tiwai@suse.de
  - ath9k: Postpone key cache entry deletion for TXQ frames
    reference it (CVE-2020-3702 bsc#1191193).
  - ath: Modify ath_key_delete() to not need full key entry
    (CVE-2020-3702 bsc#1191193).
  - ath: Export ath_hw_keysetmac() (CVE-2020-3702 bsc#1191193).
  - ath9k: Clear key cache explicitly on disabling hardware
    (CVE-2020-3702 bsc#1191193).
  - ath: Use safer key clearing with key cache entries
    (CVE-2020-3702 bsc#1191193).
  - commit 9bf1f45
* Fri Oct 01 2021 tiwai@suse.de
  - kabi/severities: skip kABI check for ath9k-local symbols (CVE-2020-3702 bsc#1191193)
    ath9k modules have some exported symbols for the common helpers
    and the recent fixes broke kABI of those.  They are specific to
    ath9k's own usages, so safe to ignore.
  - commit b554871
* Tue Sep 28 2021 ohering@suse.de
  - net: mana: Prefer struct_size over open coded arithmetic (jsc#SLE-18779, bsc#1185726).
  - net: mana: Add WARN_ON_ONCE in case of CQE read overflow (jsc#SLE-18779, bsc#1185726).
  - net: mana: Add support for EQ sharing (jsc#SLE-18779, bsc#1185726).
  - net: mana: Move NAPI from EQ to CQ (jsc#SLE-18779, bsc#1185726).
  - net: mana: Fix a memory leak in an error handling path in (jsc#SLE-18779, bsc#1185726).
  - net: mana: Use struct_size() in kzalloc() (jsc#SLE-18779, bsc#1185726).
  - hv_netvsc: Make netvsc/VF binding check both MAC and serial number (jsc#SLE-18779, bsc#1185726).
  - net: mana: Use int to check the return value of mana_gd_poll_cq() (jsc#SLE-18779, bsc#1185726).
  - net: mana: fix PCI_HYPERV dependency (jsc#SLE-18779, bsc#1185726).
  - net: mana: remove redundant initialization of variable err (jsc#SLE-18779, bsc#1185726).
  - hv: mana: adjust mana_select_queue to old API (jsc#SLE-18779, bsc#1185726).
  - hv: mana: remove netdev_lockdep_set_classes usage (jsc#SLE-18779, bsc#1185726).
  - net: mana: Add a driver for Microsoft Azure Network Adapter (MANA) (jsc#SLE-18779, bsc#1185726).
  - commit a964401
* Tue Sep 28 2021 acho@suse.com
  - Bluetooth: check for zapped sk before connecting (CVE-2021-3752
    bsc#1190023).
  - commit 7504476
* Mon Sep 27 2021 msuchanek@suse.de
  - kernel-binary.spec: Do not sign kernel when no key provided
    (bsc#1187167).
  - commit 6c24533
* Thu Sep 23 2021 tbogendoerfer@suse.de
  - net: sched: sch_teql: fix null-pointer dereference
    (bsc#1190717).
  - commit 7ff24ce
* Wed Sep 22 2021 msuchanek@suse.de
  - kernel-binary.spec: suse-kernel-rpm-scriptlets required for uninstall as
    well.
    Fixes: e98096d5cf85 ("rpm: Abolish scritplet templating (bsc#1189841).")
  - commit e082fbf
* Tue Sep 21 2021 tonyj@suse.de
  - s390/bpf: Fix optimizing out zero-extensions (bsc#1190601).
  - s390/bpf: Fix 64-bit subtraction of the -0x80000000 constant
    (bsc#1190601).
  - s390/bpf: Fix branch shortening during codegen pass
    (bsc#1190601).
  - s390/bpf: Wrap JIT macro parameter usages in parentheses
    (bsc#1190601).
  - s390: bpf: implement jitting of BPF_ALU | BPF_ARSH | BPF_*
    (bsc#1190601).
  - commit 79e76b1
* Fri Sep 17 2021 msuchanek@suse.de
  - kernel-binary.spec: Check for no kernel signing certificates.
    Also remove unused variable.
  - commit bdc323e
* Fri Sep 17 2021 msuchanek@suse.de
  - Revert "rpm/kernel-binary.spec: Use only non-empty certificates."
    This reverts commit 30360abfb58aec2c9ee7b6a27edebe875c90029d.
  - commit 413e05b
* Fri Sep 17 2021 msuchanek@suse.de
  - rpm/kernel-binary.spec: Use only non-empty certificates.
  - commit 30360ab
* Thu Sep 16 2021 jack@suse.cz
  - ext4: fix race writing to an inline_data file while its xattrs
    are changing (bsc#1190159 CVE-2021-40490).
  - commit 3973759
* Thu Sep 16 2021 bp@suse.de
  - crypto: ccp - fix resource leaks in ccp_run_aes_gcm_cmd()
    (bsc#1189884 CVE-2021-3744 bsc#1190534 CVE-2021-3764).
  - commit 5fef1e1
* Mon Sep 13 2021 mkoutny@suse.com
  - ipc: remove memcg accounting for sops objects in do_semtimedop()
    (bsc#1190115).
  - commit 2e73db0
* Mon Sep 13 2021 osalvador@suse.de
  - mm/memory.c: do_fault: avoid usage of stale vm_area_struct
    (bsc#1136513).
  - commit c081da7
* Mon Sep 13 2021 martin.wilck@suse.com
  - fixup "rpm: support gz and zst compression methods" once more
    (bsc#1190428, bsc#1190358)
    Fixes: 3b8c4d9bcc24 ("rpm: support gz and zst compression methods")
    Fixes: 23510fce36ec ("fixup "rpm: support gz and zst compression methods"")
  - commit 165378a
* Sun Sep 12 2021 martin.wilck@suse.com
  - fixup "rpm: support gz and zst compression methods" once more
    Fixes: 3b8c4d9bcc24 ("rpm: support gz and zst compression methods")
    Fixes: 23510fce36ec ("fixup "rpm: support gz and zst compression methods"")
  - commit 34e68f4
* Sun Sep 12 2021 martin.wilck@suse.com
  - fixup "rpm: support gz and zst compression methods"
    Fixes: 3b8c4d9bcc24 ("rpm: support gz and zst compression methods")
  - commit 23510fc
* Sat Sep 11 2021 shung-hsi.yu@suse.com
  - bpf: Fix leakage due to insufficient speculative store bypass mitigation
    (bsc#1188983, bsc#1188985, CVE-2021-34556, CVE-2021-35477).
  - Refresh
    patches.kabi/bpf-prevent-memory-disambiguation-attack.patch.
  - Refresh
    patches.kabi/bpf-prevent-out-of-bounds-speculation-on-pointer-ari.patch.
  - commit 15cd454
* Fri Sep 10 2021 msuchanek@suse.de
  - kernel-cert-subpackage: Fix certificate location in scriptlets
    (bsc#1189841).
    Fixes: d9a1357edd73 ("rpm: Define $certs as rpm macro (bsc#1189841).")
  - commit 8684de8
* Fri Sep 10 2021 msuchanek@suse.de
  - kernel-binary.spec.in Stop templating the scriptlets for subpackages
    (bsc#1190358).
    The script part for base package case is completely separate from the
    part for subpackages. Remove the part for subpackages from the base
    package script and use the KMP scripts for subpackages instead.
  - commit 5d1f677
* Fri Sep 10 2021 msuchanek@suse.de
  - kernel-binary.spec: Do not fail silently when KMP is empty
    (bsc#1190358).
    Copy the code from kernel-module-subpackage that deals with empty KMPs.
  - commit d7d2e6e
* Wed Sep 08 2021 lduncan@suse.com
  - scsi: sg: add sg_remove_request in sg_write (bsc#1171420
    CVE-2020-12770).
  - commit c1e2c47
* Wed Sep 08 2021 tiwai@suse.de
  - Bluetooth: schedule SCO timeouts with delayed_work
    (CVE-2021-3640 bsc#1188172).
  - Refresh patches.kabi/bt_accept_enqueue-kabi-workaround.patch.
  - Refresh patches.suse/Bluetooth-switch-to-lock_sock-in-SCO.patch.
  - commit adfd842
* Wed Sep 08 2021 jslaby@suse.cz
  - rpm/kernel-source.spec.in: do some more for vanilla_only
    Make sure:
    * sources are NOT executable
    * env is not used as interpreter
    * timestamps are correct
    We do all this for normal kernel builds, but not for vanilla_only
    kernels (linux-next and vanilla).
  - commit b41e4fd
* Wed Sep 08 2021 mkoutny@suse.com
  - Revert "memcg: enable accounting for file lock caches (bsc#1190115)."
    This reverts commit 912b4421a3e9bb9f0ef1aadc64a436666259bd4d.
    It's effectively upstream commit
    3754707bcc3e190e5dadc978d172b61e809cb3bd applied to kernel-source (to
    avoid proliferation of patches). Make a note in blacklist.conf too.
  - commit 84da196
* Tue Sep 07 2021 mkubecek@suse.cz
  - vhost: scsi: add weight support (CVE-2019-3900 bsc#1133374).
  - vhost: vsock: add weight support (CVE-2019-3900 bsc#1133374).
  - vhost_net: fix possible infinite loop (CVE-2019-3900 bsc#1133374).
  - refresh patches.kabi/kabi-mask-changes-to-vhost_dev_init-and-struct-vhost.patch
  - kabi: mask changes to vhost_dev_init() and struct vhost_dev
    (CVE-2019-3900 bsc#1133374).
  - vhost: introduce vhost_exceeds_weight() (CVE-2019-3900
    bsc#1133374).
  - vhost_net: introduce vhost_exceeds_weight() (CVE-2019-3900
    bsc#1133374).
  - refresh patches.suse/vhost-log-dirty-page-correctly.patch
  - vhost_net: use packet weight for rx handler, too (CVE-2019-3900
    bsc#1133374).
  - refresh patches.suse/vhost-log-dirty-page-correctly.patch
  - vhost-net: set packet weight of tx polling to 2 * vq size
    (CVE-2019-3900 bsc#1133374).
  - commit fac5272
* Mon Sep 06 2021 mkubecek@suse.cz
  - sctp: implement memory accounting on rx path (CVE-2019-3874
    bsc#1129898).
  - sctp: implement memory accounting on tx path (CVE-2019-3874
    bsc#1129898).
  - commit d1cd2ad
* Mon Sep 06 2021 mkubecek@suse.cz
  - Update
    patches.suse/l2tp-pass-tunnel-pointer-to-session_create.patch
    references (add CVE-2018-9517 bsc#1108488).
  - commit 902e6bb
* Mon Sep 06 2021 mkoutny@suse.com
  - memcg: enable accounting of ipc resources (bsc#1190115
    CVE-2021-3759).
  - memcg: enable accounting for file lock caches (bsc#1190115).
  - commit e2a14e4
* Mon Sep 06 2021 msuchanek@suse.de
  - rpm: Fold kernel-devel and kernel-source scriptlets into spec files
    (bsc#1189841).
    These are unchanged since 2011 when they were introduced. No need to
    track them separately.
  - commit 692d38b
* Mon Sep 06 2021 msuchanek@suse.de
  - rpm: Abolish image suffix (bsc#1189841).
    This is used only with vanilla kernel which is not supported in any way.
    The only effect is has is that the image and initrd symlinks are created
    with this suffix.
    These symlinks are not used except on s390 where the unsuffixed symlinks
    are used by zipl.
    There is no reason why a vanilla kernel could not be used with zipl as
    well as it's quite unexpected to not be able to boot when only a vanilla
    kernel is installed.
    Finally we now have a backup zipl kernel so if the vanilla kernel is
    indeed unsuitable the backup kernel can be used.
  - commit e2f37db
* Mon Sep 06 2021 msuchanek@suse.de
  - kernel-binary.spec: Define $image as rpm macro (bsc#1189841).
  - commit e602b0f
* Mon Sep 06 2021 msuchanek@suse.de
  - rpm: Define $certs as rpm macro (bsc#1189841).
    Also pass around only the shortened hash rather than full filename.
    As has been discussed in bsc#1124431 comment 51
    https://bugzilla.suse.com/show_bug.cgi?id=1124431#c51 the placement of
    the certificates is an API which cannot be changed unless we can ensure
    that no two kernels that use different certificate location can be built
    with the same certificate.
  - commit d9a1357
* Thu Sep 02 2021 tiwai@suse.de
  - virtio_console: Assure used length from device is limited
    (CVE-2021-38160 bsc#1190117).
  - commit 495fc27
* Thu Sep 02 2021 dwagner@suse.de
  - scsi: libfc: Fix array index out of bound exception
    (bsc#1188616).
  - commit e62158e
* Wed Sep 01 2021 tiwai@suse.de
  - Bluetooth: sco: Fix lock_sock() blockage by memcpy_from_msg()
    (CVE-2021-3640 bsc#1188172).
  - commit d78ba89
* Wed Sep 01 2021 tiwai@suse.de
  - Move upstreamed BT fixes into sorted section
  - commit 52a00c3
* Wed Sep 01 2021 jslaby@suse.cz
  - vt_kdsetmode: extend console locking (bsc#1190025
    CVE-2021-3753).
  - commit 9420ba7
* Tue Aug 31 2021 msuchanek@suse.de
  - rpm: Abolish scritplet templating (bsc#1189841).
    Outsource kernel-binary and KMP scriptlets to suse-module-tools.
    This allows fixing bugs in the scriptlets as well as defining initrd
    regeneration policy independent of the kernel packages.
  - commit e98096d
* Tue Aug 31 2021 msuchanek@suse.de
  - rpm/kernel-binary.spec.in: Use kmod-zstd provide.
    This makes it possible to use kmod with ZSTD support on non-Tumbleweed.
  - commit 357f09a
* Mon Aug 30 2021 ludwig.nussel@suse.de
  - rpm/kernel-binary.spec.in: avoid conflicting suse-release
    suse-release has arbitrary values in staging, we can't use it for
    dependencies. The filesystem one has to be enough (boo#1184804).
  - commit 56f2cba
* Fri Aug 27 2021 ludwig.nussel@suse.de
  - rpm: fix kmp install path
  - commit 22ec560
* Thu Aug 26 2021 ddiss@suse.de
  - ovl: prevent private clone if bind mount is not allowed
    (bsc#1189706, CVE-2021-3732).
  - ovl: fix dentry leak in ovl_get_redirect (bsc#1189846).
  - ovl: initialize error in ovl_copy_xattr (bsc#1189846).
  - ovl: relax WARN_ON() on rename to self (bsc#1189846).
  - ovl: filter of trusted xattr results in audit (bsc#1189846).
  - ovl: check whiteout in ovl_create_over_whiteout() (bsc#1189846).
  - commit 1f3eb84
* Thu Aug 26 2021 ludwig.nussel@suse.de
  - post.sh: detect /usr mountpoint too
  - commit c7b3d74
* Mon Aug 23 2021 martin.wilck@suse.com
  - kernel-binary.spec.in: make sure zstd is supported by kmod if used
  - commit f36412b
* Mon Aug 23 2021 martin.wilck@suse.com
  - kernel-binary.spec.in: add zstd to BuildRequires if used
  - commit aa61dba
* Fri Aug 20 2021 martin.wilck@suse.com
  - rpm: support gz and zst compression methods
    Extend commit 18fcdff43a00 ("rpm: support compressed modules") for
    compression methods other than xz.
  - commit 3b8c4d9
* Thu Aug 19 2021 petr.pavlu@suse.com
  - PCI: hv: Use expected affinity when unmasking IRQ (bsc#1185973).
  - commit 7c750ac
* Tue Aug 17 2021 shung-hsi.yu@suse.com
  - bpf: Introduce BPF nospec instruction for mitigating Spectre v4
    (bsc#1188983, bsc#1188985, CVE-2021-34556, CVE-2021-35477).
  - commit 84b20f7
* Mon Aug 16 2021 msuchanek@suse.de
  - kernel-binary.spec: Require dwarves for kernel-binary-devel when BTF is
    enabled (jsc#SLE-17288).
    About the pahole version: v1.18 should be bare mnimum, v1.22 should be
    fully functional, for now we ship git snapshot with fixes on top of
    v1.21.
  - commit 8ba3382
* Mon Aug 16 2021 jroedel@suse.de
  - KVM: nSVM: avoid picking up unsupported bits from L2 in int_ctl
    (bsc#1189399, CVE-2021-3653).
  - KVM: nSVM: always intercept VMLOAD/VMSAVE when nested
    (bsc#1189400, CVE-2021-3656).
  - KVM: X86: MMU: Use the correct inherited permissions to get
    shadow page (CVE-2021-38198 bsc#1189262).
  - commit 9c35f8d
* Mon Aug 16 2021 tiwai@suse.de
  - Bluetooth: switch to lock_sock in SCO (CVE-2021-3640
    bsc#1188172).
  - Bluetooth: avoid circular locks in sco_sock_connect
    (CVE-2021-3640 bsc#1188172).
  - commit 73d3a49
* Mon Aug 16 2021 tiwai@suse.de
  - Bluetooth: defer cleanup of resources in hci_unregister_dev()
    (CVE-2021-3640 bsc#1188172).
  - commit c8012e0
* Wed Aug 11 2021 msuchanek@suse.de
  - README: Modernize build instructions.
  - commit 8cc5c28
* Wed Aug 11 2021 jslaby@suse.cz
  - rpm/kernel-obs-build.spec.in: make builds reproducible (bsc#1189305)
  - commit 7f9ade7
* Tue Aug 10 2021 tiwai@suse.de
  - usb: max-3421: Prevent corruption of freed memory
    (CVE-2021-38204 bsc#1189291).
  - commit cfb9fc6
* Mon Aug 09 2021 ludwig.nussel@suse.de
  - Fix filesystem requirement and suse-release requires
    Reduce filesystem conflict to anything less than 16 to allow pulling the
    change into the next major stable version.
    Don't require suse-release as that's not technically required. Conflict
    with a too old one instead.
  - commit 913f755
* Thu Aug 05 2021 jslaby@suse.cz
  - rpm/kernel-source.rpmlintrc: ignore new include/config files
    In 5.13, since 0e0345b77ac4, config files have no longer .h suffix.
    Adapt the zero-length check.
    Based on Martin Liska's change.
  - commit b6f021b
* Wed Aug 04 2021 pmladek@suse.com
  - tracing: Fix bug in rb_per_cpu_empty() that might cause deadloop
    (CVE-2021-3679 bsc#1189057).
  - commit dfd73b3
* Thu Jul 29 2021 msuchanek@suse.de
  - powerpc/pesries: Get STF barrier requirement from
    H_GET_CPU_CHARACTERISTICS (CVE-2018-3639 bsc#1087082 git-fixes bsc#1188885 ltc#193722).
  - powerpc/security: Add a security feature for STF barrier
    (CVE-2018-3639 bsc#1087082 git-fixes bsc#1188885 ltc#193722).
  - powerpc/pseries: Get entry and uaccess flush required bits
    from H_GET_CPU_CHARACTERISTICS (CVE-2020-4788 bsc#1177666 git-fixes bsc#1188885 ltc#193722).
  - powerpc/64s: rename pnv|pseries_setup_rfi_flush to
    _setup_security_mitigations (CVE-2018-3639, bsc#1087082, bsc#1188885 ltc#193722).
  - commit bd9e95f
* Thu Jul 29 2021 aabdallah@suse.de
  - Update patch-mainline and git-commit tags
    Refresh:
    - patches.suse/0001-netfilter-conntrack-add-new-sysctl-to-disable-RST-ch.patch
    - patches.suse/0001-netfilter-conntrack-improve-RST-handling-when-tuple-.patch
  - commit b202481
* Thu Jul 29 2021 tiwai@suse.de
  - net: mac802154: Fix general protection fault (CVE-2021-3659
    bsc#1188876).
  - commit c0396b9
* Wed Jul 28 2021 jbohac@suse.cz
  - xfrm: xfrm_state_mtu should return at least 1280 for ipv6
    (bsc#1185377).
  - commit 6f8f910
* Wed Jul 28 2021 mkubecek@suse.cz
  - Update
    patches.suse/l2tp-ensure-sessions-are-freed-after-their-PPPOL2TP-.patch
    references (add CVE-2020-0429 bsc#1176724).
  - Update
    patches.suse/l2tp-fix-race-between-l2tp_session_delete-and-l2tp_t.patch
    references (add CVE-2020-0429 bsc#1176724).
  - commit b29ebd9
* Wed Jul 28 2021 mkubecek@suse.cz
  - use 3.0 SPDX identifier in rpm License tags
    As requested by Maintenance, change rpm License tags from "GPL-2.0"
    (SPDX 2.0) to "GPL-2.0-only" (SPDX 3.0) so that their scripts do not have
    to adjust the tags with each maintenance update submission.
  - commit f888e0b
* Wed Jul 28 2021 msuchanek@suse.de
  - KVM: PPC: Book3S: Fix H_RTAS rets buffer overflow (bsc#1188838
    CVE-2021-37576).
  - commit 50c1fab
* Thu Jul 22 2021 jziviani@suse.de
  - KVM: do not allow mapping valid but non-reference-counted pages
    (bsc#1186482, CVE-2021-22543).
  - KVM: Use kvm_pfn_t for local PFN variable in
    hva_to_pfn_remapped() (bsc#1186482, CVE-2021-22543).
  - KVM: do not assume PTE is writable after follow_pfn
    (bsc#1186482, CVE-2021-22543).
  - kvm: Map PFN-type memory regions as writable (if possible)
    (bsc#1186482, CVE-2021-22543).
  - commit 9c4f9b4
* Wed Jul 21 2021 tiwai@suse.de
  - Update seq_file fix to the upstreamed one and moved into sorted section (bsc#1188062, CVE-2021-33909).
  - commit 175d85f
* Wed Jul 21 2021 tbogendoerfer@suse.de
  - gve: Add basic driver framework for Compute Engine Virtual NIC
    (jsc#SLE-23652).
  - gve: Add ethtool support (jsc#SLE-23652).
  - gve: Add workqueue and reset support (jsc#SLE-23652).
  - gve: Copy and paste bug in gve_get_stats() (jsc#SLE-23652).
  - gve: Fix case where desc_cnt and data_cnt can get out of sync
    (jsc#SLE-23652).
  - gve: Fix error return code in gve_alloc_qpls() (jsc#SLE-23652).
  - gve: Fix u64_stats_sync to initialize start (jsc#SLE-23652).
  - gve: Fixes DMA synchronization (jsc#SLE-23652).
  - gve: Remove the exporting of gve_probe (jsc#SLE-23652).
  - gve: fix -ENOMEM null check on a page allocation
    (jsc#SLE-23652).
  - gve: fix unused variable/label warnings (jsc#SLE-23652).
  - gve: replace kfree with kvfree (jsc#SLE-23652).
    Replaced single commit gve driver add commit with all its upstream commits.
    This is done in a single commit to keep bisectability.
  - commit 461f4aa
* Fri Jul 16 2021 msuchanek@suse.de
  - rpm/kernel-binary.spec.in: Do not install usrmerged kernel on Leap
    (boo#1184804).
  - commit 5b51131
* Thu Jul 15 2021 mkubecek@suse.cz
  - netfilter: x_tables: fix compat match/target pad out-of-bound
    write (CVE-2021-22555 bsc#1188116).
  - commit 62f1359
* Tue Jul 13 2021 mkubecek@suse.cz
  - kabi: preserve struct header_ops after bsc#1176081 fix
    (bsc#1176081).
  - af_packet: fix the tx skb protocol in raw sockets with ETH_P_ALL
    (bsc#1176081).
  - net/mlx5e: Trust kernel regarding transport offset
    (bsc#1176081).
  - net/mlx5e: Remove the wrong assumption about transport offset
    (bsc#1176081).
  - net/packet: Remove redundant skb->protocol set (bsc#1176081).
  - net/packet: Ask driver for protocol if not provided by user
    (bsc#1176081).
  - net/ethernet: Add parse_protocol header_ops support
    (bsc#1176081).
  - net: Introduce parse_protocol header_ops callback (bsc#1176081).
  - net: Don't set transport offset to invalid value (bsc#1176081).
    Refresh patches.suse/net-stricter-validation-of-untrusted-gso-packets.patch
  - commit 64b2283
* Fri Jul 09 2021 msuchanek@suse.de
  - rpm/kernel-binary.spec.in: Remove zdebug define used only once.
  - commit 85a9fc2
* Thu Jul 08 2021 msuchanek@suse.de
  - kernel-binary.spec: Exctract s390 decompression code (jsc#SLE-17042).
  - commit 7f97df2
* Thu Jul 08 2021 rgoldwyn@suse.com
  - seq_file: Disallow extremely large seq buffer allocations (bsc#1188062, CVE-2021-33909).
  - commit c848c42
* Thu Jul 08 2021 msuchanek@suse.de
  - kernel-binary.spec: Fix up usrmerge for non-modular kernels.
  - commit d718cd9
* Wed Jul 07 2021 tiwai@suse.de
  - can: bcm: delay release of struct bcm_op after synchronize_rcu()
    (CVE-2021-3609 bsc#1187215).
  - commit 36fe7da
* Thu Jul 01 2021 msuchanek@suse.de
  - kernel-binary.spec: Remove obsolete and wrong comment
    mkmakefile is repleced by echo on newer kernel
  - commit d9209e7
* Mon Jun 28 2021 neilb@suse.de
  - SUNRPC: More fixes for backlog congestion (bsc#1185428).
  - SUNRPC in case of backlog, hand free slots directly to waiting
    task (bsc#1185428).
  - commit ae05351
* Thu Jun 24 2021 glin@suse.com
  - bpf: Fix leakage under speculation on mispredicted branches
    (bsc#1187554,CVE-2021-33624).
  - commit daa92a2
* Tue Jun 22 2021 tiwai@suse.de
  - af_key: pfkey_dump needs parameter validation (CVE-2021-0605
    bsc#1187601).
  - commit 685407a
* Tue Jun 22 2021 jlee@suse.com
  - resource: Fix find_next_iomem_res() iteration issue
    (bsc#1181193).
  - Refresh
    patches.suse/resource-fix-locking-in-find_next_iomem_res.patch.
  - commit 021a265
* Tue Jun 22 2021 tiwai@suse.de
  - HID: make arrays usage and value to be the same (CVE-2021-0512
    bsc#1187595).
  - commit 3d7a48c
* Tue Jun 22 2021 tiwai@suse.de
  - Update patch reference for a BT fix (CVE-2020-26558)
  - commit ee30101
* Tue Jun 22 2021 glin@suse.com
  - bpf: Fix leakage under speculation on mispredicted branches
    (bsc#1187554,CVE-2021-33624).
  - commit df48014
* Sat Jun 19 2021 tiwai@suse.de
  - can: bcm: fix infoleak in struct bcm_msg_head (CVE-2021-34693
    bsc#1187452).
  - commit 8f80d3a
* Thu Jun 17 2021 jbohac@suse.cz
  - x86/debug: Extend the lower bound of crash kernel low
    reservations (bsc#1153720).
  - commit 1477041
* Thu Jun 17 2021 ludwig.nussel@suse.de
  - UsrMerge the kernel (boo#1184804)
  - Move files in /boot to modules dir
    The file names in /boot are included as %ghost links. The %post script
    creates symlinks for the kernel, sysctl.conf and System.map in
    /boot for compatibility. Some tools require adjustments before we
    can drop those links. If boot is a separate partition, a copy is
    used instead of a link.
    The logic for /boot/vmlinuz and /boot/initrd doesn't change with
    this patch.
  - Use /usr/lib/modules as module dir when usermerge is active in the
    target distro.
  - commit 6f5ed04
* Wed Jun 16 2021 msuchanek@suse.de
  - kernel-binary.spec.in: Regenerate makefile when not using mkmakefile.
  - commit 6b30fe5
* Tue Jun 15 2021 jlee@suse.com
  - x86/crash: Add e820 reserved ranges to kdump kernel's e820 table
    (bsc#1181193).
  - x86/mm: Rework ioremap resource mapping determination
    (bsc#1181193).
  - x86/e820, ioport: Add a new I/O resource descriptor
    IORES_DESC_RESERVED (bsc#1181193).
  - commit 40951e1
* Mon Jun 14 2021 tiwai@suse.de
  - rpm/kernel-binary.spec.in: Fix handling of +arch marker (bsc#1186672)
    The previous commit made a module wrongly into Module.optional.
    Although it didn't influence on the end result, better to fix it.
    Also, add a comment to explain the markers briefly.
  - commit 8f79742
* Fri Jun 11 2021 tiwai@suse.de
  - Add arch-dependent support markers in supported.conf (bsc#1186672)
    We may need to put some modules as supported only on specific archs.
    This extends the supported.conf syntax to allow to put +arch additionally
    after the unsupported marker, then it'll be conditionally supported on
    that arch.
  - commit 8cbdb41
* Fri Jun 11 2021 bwiedemann@suse.de
  - Create Symbols.list and ipa-clones.list determistically
    without this patch, filesystem readdir order would influence
    order of entries in these files.
    This patch was done while working on reproducible builds for SLE.
  - commit a898b6d
* Fri Jun 11 2021 nmoreychaisemartin@suse.com
  - RDMA/ucma: Rework ucma_migrate_id() to avoid races with destroy (bsc#1187050, CVE-2020-36385)
  - commit ee0f2cc
* Fri Jun 11 2021 acho@suse.com
  - Bluetooth: SMP: Fail if remote and local public keys are
    identical (bsc#1186463 CVE-2021-0129).
  - commit effcfea
* Thu Jun 10 2021 martin.wilck@suse.com
  - scsi: scsi_dh_alua: Retry RTPG on a different path after failure
    (bsc#1174978 bsc#1185701).
  - commit c68883a
* Thu Jun 10 2021 martin.wilck@suse.com
  - kernel-binary.spec.in: Add Supplements: for -extra package on Leap
    kernel-$flavor-extra should supplement kernel-$flavor on Leap, like
    it does on SLED, and like the kernel-$flavor-optional package does.
  - commit c60d87f
* Tue Jun 08 2021 tiwai@suse.de
  - Bluetooth: Fix slab-out-of-bounds read in
    hci_extended_inquiry_result_evt() (CVE-2020-36386 bsc#1187038).
  - commit e0be120
* Mon Jun 07 2021 tiwai@suse.de
  - cfg80211: mitigate A-MSDU aggregation attacks (CVE-2020-24588
    bsc#1185861).
  - commit 821e5ae
* Fri Jun 04 2021 glin@suse.com
  - Refresh patches.suse/bpf-prevent-out-of-bounds-speculation-on-pointer-ari.patch.
    Adjust the diff for fixup_bpf_calls() to apply to the correct code block
  - commit dd58306
* Thu Jun 03 2021 msuchanek@suse.de
  - kernel-binary.spec.in: build-id check requires elfutils.
  - commit 01569b3
* Wed Jun 02 2021 msuchanek@suse.de
  - kernel-binary.spec: Only use mkmakefile when it exists
    Linux 5.13 no longer has a mkmakefile script
  - commit b453c7b
* Tue Jun 01 2021 glin@suse.com
  - bpf: No need to simulate speculative domain for immediates
    (bsc#1186484,CVE-2021-33200).
  - bpf: Fix leakage of uninitialized bpf stack under speculation (bsc#1186484,CVE-2021-33200).
    Refresh patches.suse/bpf-Wrap-aux-data-inside-bpf_sanitize_info-container.patch
  - bpf: Fix masking negation logic upon negative dst register
    (bsc#1186484,CVE-2021-33200).
  - commit b1c6278
* Fri May 28 2021 aabdallah@suse.de
  - netfilter: conntrack: add new sysctl to disable RST check
    (bsc#1183947 bsc#1185950).
  - commit 34df908
* Fri May 28 2021 aabdallah@suse.de
  - netfilter: conntrack: improve RST handling when tuple is re-used
    (bsc#1183947 bsc#1185950).
  - commit f464560
* Fri May 28 2021 aabdallah@suse.de
  - netfilter: conntrack: tcp: only close if RST matches exact
    sequence (bsc#1183947 bsc#1185950).
  - commit 95f7e6e
* Fri May 28 2021 aabdallah@suse.de
  - netfilter: conntrack: avoid misleading 'invalid' in log message
    (bsc#1183947 bsc#1185950).
  - commit 1c49817
* Fri May 28 2021 glin@suse.com
  - bpf: Fix mask direction swap upon off reg sign change
    (bsc#1186484,CVE-2021-33200).
  - bpf: Wrap aux data inside bpf_sanitize_info container
    (bsc#1186484,CVE-2021-33200).
  - commit 3ce8728
* Thu May 27 2021 msuchanek@suse.de
  - Refresh ibmvfc patch metadata, move to sorted section.
  - commit effe5ef
* Fri May 21 2021 msuchanek@suse.de
  - Refresh ibmvfc patches to upstream version.
  - commit f0f2d59
* Tue May 18 2021 msuchanek@suse.de
  - powerpc/64s: Fix crashes when toggling entry flush barrier
    (CVE-2020-4788 bsc#1177666 git-fixes).
  - commit 3917f8f
* Tue May 18 2021 msuchanek@suse.de
  - powerpc/64s: Fix crashes when toggling stf barrier (CVE-2018-3639 bsc#1087082 git-fixes).
  - commit 2a6a70d
* Mon May 17 2021 tiwai@suse.de
  - kABI workaround for hci_chan amp field addition (CVE-2021-33034
    bsc#1186111).
  - commit 53b1091
* Mon May 17 2021 tiwai@suse.de
  - Bluetooth: verify AMP hci_chan before amp_destroy
    (CVE-2021-33034 bsc#1186111).
  - commit daddd4e
* Mon May 17 2021 ohering@suse.de
  - video: hyperv_fb: Add ratelimit on error message (bsc#1185725).
  - Drivers: hv: vmbus: Increase wait time for VMbus unload
    (bsc#1185725).
  - Drivers: hv: vmbus: Initialize unload_event statically
    (bsc#1185725).
  - commit 3a35d96
* Fri May 14 2021 tiwai@suse.de
  - Correct CVE number for a mac80211 fix (CVE-2020-26139 bsc#1186062)
  - commit 9e5446b
* Fri May 14 2021 tiwai@suse.de
  - net/nfc: fix use-after-free llcp_sock_bind/connect
    (CVE-2021-23134 bsc#1186060).
  - commit 577df82
* Wed May 12 2021 tiwai@suse.de
  - kABI workaround for cfg80211 changes (CVE-2020-24586
    bsc#1185859).
  - ath10k: Validate first subframe of A-MSDU before processing
    the list (CVE-2020-26141 bsc#1185863 bsc#1185987).
  - ath10k: Fix TKIP Michael MIC verification for PCIe
    (CVE-2020-26141 bsc#1185863 bsc#1185987).
  - ath10k: drop fragments with multicast DA for PCIe
    (CVE-2020-26145 bsc#1185860).
  - mac80211: extend protection against mixed key and fragment
    cache attacks (CVE-2020-24586 bsc#1185859).
  - mac80211: do not accept/forward invalid EAPOL frames
    (CVE-2020-24587 CVE-2020-24586 bsc#1185863 bsc#1185862
    bsc#1185859).
  - mac80211: prevent attacks on TKIP/WEP as well (CVE-2020-24586
    bsc#1185859).
  - mac80211: check defrag PN against current frame (CVE-2020-24587
    CVE-2020-24586 bsc#1185863 bsc#1185862 bsc#1185859).
  - mac80211: add fragment cache to sta_info (CVE-2020-24587
    CVE-2020-24586 bsc#1185863 bsc#1185859).
  - mac80211: drop A-MSDUs on old ciphers (CVE-2020-24587
    CVE-2020-24586 bsc#1185863 bsc#1185862 bsc#1185859).
  - mac80211: properly handle A-MSDUs that start with an RFC 1042
    header (CVE-2020-24587 CVE-2020-24586 bsc#1185863 bsc#1185862
    bsc#1185859).
  - mac80211: prevent mixed key and fragment cache attacks
    (CVE-2020-24587 CVE-2020-24586 bsc#1185863 bsc#1185862
    bsc#1185859).
  - mac80211: assure all fragments are encrypted (CVE-2020-26147
    bsc#1185863 bsc#1185859).
  - commit f9c088d
* Wed May 12 2021 msuchanek@suse.de
  - ibmvfc: Reinit target retries (bsc#1185938 ltc#192043).
  - ibmvfc: Avoid move login if fast fail is enabled (bsc#1185938
    ltc#192043).
  - ibmvfc: Handle move login failure (bsc#1185938 ltc#192043).
  - commit c4c07db
* Wed May 12 2021 glin@suse.com
  - scripts/git_sort/git_sort.py: add bpf git repo
  - commit 65979e3
* Tue May 11 2021 ddiss@suse.de
  - proc: Avoid mixing integer types in mem_rw() (CVE-2021-3491
    bsc#1185642).
  - commit fb84449
* Tue May 11 2021 mkubecek@suse.cz
  - blacklist: add commit b166a20b0738
    Mainline commit b166a20b0738 ("net/sctp: fix race condition in
    sctp_destroy_sock") was found buggy so that it was reverted by commit
    01bfe5e8e428 ("Revert "net/sctp: fix race condition in sctp_destroy_sock"")
    and replaced by a new fix, commit 34e5b0118685 ("sctp: delay auto_asconf
    init until binding the first addr").
  - commit 23ad848
* Tue May 11 2021 mkubecek@suse.cz
  - sctp: delay auto_asconf init until binding the first addr
    (CVE-2021-23133 bsc#1184675).
  - commit c06b5aa
* Tue May 11 2021 tiwai@suse.de
  - bluetooth: eliminate the potential race condition when removing
    the HCI controller (CVE-2021-32399 bsc#1185898).
  - commit 4b51cab
* Mon May 10 2021 firo.yang@suse.com
  - dm: fix redundant IO accounting for bios that need splitting
    (bsc#1183738).
  - commit 57165ff
* Thu May 06 2021 msuchanek@suse.de
  - kernel-docs.spec.in: Build using an utf-8 locale.
    Sphinx cannot handle UTF-8 input in non-UTF-8 locale.
  - commit 0db6da1
* Wed May 05 2021 ematsumiya@suse.de
  - md/raid1: properly indicate failure when ending a failed write
    request (bsc#1185680).
  - commit eb7a0e7
* Wed May 05 2021 mkubecek@suse.cz
  - rpm: drop /usr/bin/env in interpreter specification
    OBS checks don't like /usr/bin/env in script interpreter lines but upstream
    developers tend to use it. A proper solution would be fixing the depedency
    extraction and drop the OBS check error but that's unlikely to happen so
    that we have to work around the problem on our side and rewrite the
    interpreter lines in scripts before collecting files for packages instead.
  - commit 45c5c1a
* Tue May 04 2021 dwagner@suse.de
  - scripts/git_sort/git_sort.py: Update nvme repositories
  - commit e849c44
* Mon May 03 2021 mkubecek@suse.cz
  - Update
    patches.suse/net-fix-race-condition-in-__inet_lookup_established.patch
    (bsc#1151794 bsc#1180624).
  - handle also the opposite type of race condition
  - commit 783d87d
* Mon May 03 2021 jroedel@suse.de
  - KVM: Add proper lockdep assertion in I/O bus unregister
    (CVE-2020-36312 bsc#1184509).
  - KVM: Stop looking for coalesced MMIO zones if the bus is
    destroyed (CVE-2020-36312 bsc#1184509).
  - KVM: Destroy I/O bus devices on unregister failure _after_
    sync'ing SRCU (CVE-2020-36312 bsc#1184509).
  - commit bc1f707
* Fri Apr 30 2021 schwab@suse.de
  - rpm/constraints.in: bump disk space to 45GB on riscv64
  - commit f8b883f
* Wed Apr 28 2021 jslaby@suse.cz
  - rpm/constraints.in: remove aarch64 disk size exception
    obs://Kernel:stable/kernel-default/ARM/aarch64 currrently fails:
    installing package kernel-default-livepatch-devel-5.12.0-3.1.g6208a83.aarch64 needs 3MB more space on the / filesystem
    The stats say:
    Maximal used disk space: 31799 Mbyte
    By default, we require 35G. For aarch64 we had an exception to lower
    this limit to 30G there. Drop this exception as it is obviously no
    longer valid.
  - commit ee00b50
* Mon Apr 26 2021 bp@suse.de
  - netfilter: x_tables: Use correct memory barriers (bsc#1184208
    CVE-2021-29650).
  - commit 719c6a8
* Fri Apr 23 2021 martin.wilck@suse.com
  - rpm/macros.kernel-source: fix KMP failure in %install (bsc#1185244)
  - commit 52805ed
* Thu Apr 22 2021 ematsumiya@suse.de
  - kabi: nvme: fix fast_io_fail_tmo (bsc#1181161).
  - commit 8f8dc4a
* Thu Apr 22 2021 ematsumiya@suse.de
  - nvme-fabrics: reject I/O to offline device (bsc#1181161).
  - commit 9f5a8f9
* Thu Apr 22 2021 ematsumiya@suse.de
  - nvme-rdma: fix possible hang when failing to set io queues
    (bsc#1181161).
  - commit f48dbc6
* Thu Apr 22 2021 ematsumiya@suse.de
  - nvme-tcp: fix possible hang when failing to set io queues
    (bsc#1181161).
  - commit b19606e
* Thu Apr 22 2021 ematsumiya@suse.de
  - nvme-tcp: avoid request double completion for concurrent
    nvme_tcp_timeout (bsc#1181161).
  - commit a2912f9
* Thu Apr 22 2021 ematsumiya@suse.de
  - nvme-rdma: avoid request double completion for concurrent
    nvme_rdma_timeout (bsc#1181161).
  - commit 44d9e40
* Thu Apr 22 2021 ematsumiya@suse.de
  - nvme-tcp: avoid repeated request completion (bsc#1181161).
  - commit 43a6479
* Thu Apr 22 2021 ematsumiya@suse.de
  - nvme-rdma: avoid repeated request completion (bsc#1181161).
  - commit 364febe
* Thu Apr 22 2021 ematsumiya@suse.de
  - nvme-tcp: avoid race between time out and tear down
    (bsc#1181161).
  - commit 7c77c21
* Thu Apr 22 2021 ematsumiya@suse.de
  - nvme-rdma: avoid race between time out and tear down
    (bsc#1181161).
  - commit 2b90938
* Thu Apr 22 2021 ematsumiya@suse.de
  - nvme: introduce nvme_sync_io_queues (bsc#1181161).
  - commit 513d68a
* Thu Apr 22 2021 ematsumiya@suse.de
  - nvme-fabrics: allow to queue requests for live queues
    (bsc#1181161).
  - commit 6e870fd
* Thu Apr 22 2021 ematsumiya@suse.de
  - nvme-rdma: fix timeout handler (bsc#1181161).
  - commit e05f968
* Thu Apr 22 2021 ematsumiya@suse.de
  - nvme-rdma: serialize controller teardown sequences
    (bsc#1181161).
  - commit 871c29c
* Thu Apr 22 2021 ematsumiya@suse.de
  - nvme-tcp: fix timeout handler (bsc#1181161).
  - commit 904ed9c
* Thu Apr 22 2021 ematsumiya@suse.de
  - nvme-tcp: serialize controller teardown sequences (bsc#1181161).
  - commit 2634c7c
* Thu Apr 22 2021 ematsumiya@suse.de
  - nvme-fabrics: don't check state NVME_CTRL_NEW for request
    acceptance (bsc#1181161).
  - commit 2a84cd5
* Thu Apr 22 2021 ematsumiya@suse.de
  - nvme-rdma: fix controller reset hang during traffic
    (bsc#1181161).
  - commit 18206ad
* Thu Apr 22 2021 ematsumiya@suse.de
  - nvme-tcp: fix controller reset hang during traffic
    (bsc#1181161).
  - commit 4fdf590
* Thu Apr 22 2021 ematsumiya@suse.de
  - nvme: unlink head after removing last namespace (bsc#1181161).
  - commit 30b587a
* Thu Apr 22 2021 ematsumiya@suse.de
  - nvme: prevent warning triggered by nvme_stop_keep_alive
    (bsc#1181161).
  - commit 847d812
* Thu Apr 22 2021 ematsumiya@suse.de
  - nvme: introduce "Command Aborted By host" status code
    (bsc#1181161).
  - commit c6ffd2d
* Thu Apr 22 2021 ematsumiya@suse.de
  - nvme: include admin_q sync with nvme_sync_queues (bsc#1181161).
  - commit 62c9354
* Thu Apr 22 2021 ematsumiya@suse.de
  - kabi: Fix nvmet error log definitions (bsc#1181161).
  - commit fd8ba73
* Thu Apr 22 2021 ematsumiya@suse.de
  - kabi: Fix breakage in NVMe driver (bsc#1181161).
    Fix to the changes introduced by patch
    patches.suse/nvme-make-fabrics-command-run-on-a-separate-request-.patch
  - commit b9af701
* Thu Apr 22 2021 ematsumiya@suse.de
  - nvme: make fabrics command run on a separate request queue
    (bsc#1181161).
  - Refresh
    patches.suse/nvme-fc-set-max_segments-to-lldd-max-value.patch.
    Context adjustment in refreshed patch.
  - commit 33615b9
* Thu Apr 22 2021 ematsumiya@suse.de
  - nvme: introduce nvme_is_fabrics to check fabrics cmd
    (bsc#1181161).
  - commit 8a22637
* Thu Apr 22 2021 ematsumiya@suse.de
  - nvme-pci: Sync queues on reset (bsc#1181161).
  - commit 4acae24
* Thu Apr 22 2021 ematsumiya@suse.de
  - nvmet: add error log support for fabrics-cmd (bsc#1181161).
  - commit d8c2f0d
* Thu Apr 22 2021 ematsumiya@suse.de
  - nvmet: add error-log definitions (bsc#1181161).
  - commit 8327be0
* Thu Apr 22 2021 ematsumiya@suse.de
  - nvme: add error log page slot definition (bsc#1181161).
  - commit 56e4bcb
* Thu Apr 22 2021 ematsumiya@suse.de
  - nvme: Restart request timers in resetting state (bsc#1181161).
  - commit e8075c3
* Thu Apr 22 2021 msuchanek@suse.de
  - rpm/kernel-obs-build.spec.in: Include essiv with dm-crypt (boo#1183063).
    Previously essiv was part of dm-crypt but now it is separate.
    Include the module in kernel-obs-build when available.
    Fixes: 7cf5b9e26d87 ("rpm/kernel-obs-build.spec.in: add dm-crypt for building with cryptsetup")
  - commit fe15b78
* Thu Apr 22 2021 tiwai@suse.de
  - Revert "rpm/kernel-binary.spec.in: Fix dependency of kernel-*-devel package (bsc#1184514)"
    This turned out to be a bad idea: the kernel-$flavor-devel package
    must be usable without kernel-$flavor, e.g. at the build of a KMP.
    And this change brought superfluous installation of kernel-preempt
    when a system had kernel-syms (bsc#1185113).
  - commit d771304
* Wed Apr 21 2021 jslaby@suse.cz
  - rpm/check-for-config-changes: add AS_HAS_* to ignores
    arch/arm64/Kconfig defines a lot of these. So far our current compilers
    seem to support them all. But it can quickly change with SLE later.
  - commit a4d8194
* Tue Apr 20 2021 glin@suse.com
  - bpf: Tighten speculative pointer arithmetic mask (bsc#1184942
    CVE-2021-29155).
  - bpf: Move sanitize_val_alu out of op switch (bsc#1184942
    CVE-2021-29155).
  - bpf: Refactor and streamline bounds check into helper
    (bsc#1184942 CVE-2021-29155).
  - bpf: Improve verifier error messages for users (bsc#1184942
    CVE-2021-29155).
  - bpf: Rework ptr_limit into alu_limit and add common error path
    (bsc#1184942 CVE-2021-29155).
  - bpf: Ensure off_reg has no mixed signed bounds for all types
    (bsc#1184942 CVE-2021-29155).
  - bpf: Move off_reg into sanitize_ptr_alu (bsc#1184942
    CVE-2021-29155).
  - commit c3fe286
* Fri Apr 16 2021 msuchanek@suse.de
  - blacklist.conf: Add b6b79dd53082 powerpc/64s: Fix allnoconfig build
    since uaccess flush
  - commit e9d5937
* Fri Apr 16 2021 msuchanek@suse.de
  - Refresh ppc L1D flush patch metadata.
  - commit 9db13af
* Wed Apr 14 2021 jslaby@suse.cz
  - rpm/check-for-config-changes: remove stale comment
    It is stale since 8ab393bf905a committed in 2005 :).
  - commit c9f9f5a
* Tue Apr 13 2021 tiwai@suse.de
  - rpm/mkspec: Use tilde instead of dot for version string with rc (bsc#1184650)
  - commit f37613f
* Tue Apr 13 2021 glin@suse.com
  - Update bsc#1184170 fixes to fix a mistakenly modified BPF instruction
  - Refresh
    patches.suse/bpf-Fix-32-bit-src-register-truncation-on-div-mod.patch.
  - Refresh
    patches.suse/bpf-Fix-truncation-handling-for-mod32-dst-reg-wrt-ze.patch
  - commit e62aa97
* Mon Apr 12 2021 jroedel@suse.de
  - KVM: SVM: avoid infinite loop on NPF from bad address (CVE-2020-36310 bsc#1184512).
  - commit a90e23c
* Mon Apr 12 2021 tiwai@suse.de
  - rpm/kernel-binary.spec.in: Fix dependency of kernel-*-devel package (bsc#1184514)
    The devel package requires the kernel binary package itself for building
    modules externally.
  - commit 794be7b
* Mon Apr 12 2021 jroedel@suse.de
  - KVM: fix memory leak in kvm_io_bus_unregister_dev() (CVE-2020-36312 bsc#1184509).
  - commit 8663791
* Mon Apr 12 2021 jgross@suse.com
  - xen/events: fix setting irq affinity (bsc#1184583 XSA-332
    CVE-2020-27673).
  - commit de73046
* Mon Apr 12 2021 glin@suse.com
  - bpf, x86: Validate computation of branch displacements for
    x86-64 (bsc#1184391 CVE-2021-29154).
  - commit 1d1eb4d
* Sat Apr 10 2021 tiwai@suse.de
  - nfc: Avoid endless loops caused by repeated llcp_sock_connect()
    (CVE-2020-25673 bsc#1178181).
  - nfc: fix memory leak in llcp_sock_connect() (CVE-2020-25672
    bsc#1178181).
  - nfc: fix refcount leak in llcp_sock_connect() (CVE-2020-25671
    bsc#1178181).
  - nfc: fix refcount leak in llcp_sock_bind() (CVE-2020-25670
    bsc#1178181).
  - commit 71faffc
* Fri Apr 09 2021 msuchanek@suse.de
  - Add obsolete_rebuilds_subpackage (boo#1172073 bsc#1191731).
  - commit f037781
* Fri Apr 09 2021 bp@suse.de
  - KVM: SVM: Periodically schedule when unregistering regions on
    destroy (bsc#1184511 CVE-2020-36311).
  - commit e140650
* Fri Apr 09 2021 msuchanek@suse.de
  - rpm/check-for-config-changes: Also ignore AS_VERSION added in 5.12.
  - commit bd64cb2
* Fri Apr 09 2021 msuchanek@suse.de
  - post.sh: Return an error when module update fails (bsc#1047233 bsc#1184388).
  - commit 18f65df
* Fri Apr 09 2021 glin@suse.com
  - Update bsc#1184170 fixes to do 32bit jump correctly
  - Refresh
    patches.suse/bpf-Fix-32-bit-src-register-truncation-on-div-mod.patch.
  - Refresh
    patches.suse/bpf-Fix-truncation-handling-for-mod32-dst-reg-wrt-ze.patch.
  - commit c609295
* Thu Apr 08 2021 ematsumiya@suse.de
  - ibmvnic: Clear failover_pending if unable to schedule
    (bsc#1181960 ltc#190997).
  - commit adfe469
* Wed Apr 07 2021 lhenriques@suse.de
  - fuse: fix live lock in fuse_iget() (bsc#1184211 CVE-2021-28950).
  - fuse: fix bad inode (bsc#1184211 CVE-2020-36322).
  - commit 920863f
* Wed Apr 07 2021 oneukum@suse.com
  - media: v4l: ioctl: Fix memory leak in video_usercopy
    (bsc#1184120 CVE-2021-30002).
  - commit f75d1ab
* Wed Apr 07 2021 oneukum@suse.com
  - media: v4l: ioctl: Fix memory leak in video_usercopy
    (bsc#1184120 CVE-2021-30002).
  - commit 08b20fe
* Tue Apr 06 2021 tiwai@suse.de
  - firewire: nosy: Fix a use-after-free bug in nosy_ioctl()
    (CVE-2021-3483 bsc#1184393).
  - commit 9292696
* Tue Apr 06 2021 tiwai@suse.de
  - Update patch reference of tty fix (CVE-2021-20219 bsc#1184397)
  - commit b4b1b38
* Sat Apr 03 2021 jkosina@suse.cz
  - net: sched: disable TCQ_F_NOLOCK for pfifo_fast (bsc#1183405)
  - commit 72e236c
* Thu Apr 01 2021 fdmanana@suse.com
  - btrfs: fix race when cloning extent buffer during rewind of
    an old root (bsc#1184193 CVE-2021-28964).
  - commit 8039ed4
* Thu Apr 01 2021 glin@suse.com
  - bpf: Fix truncation handling for mod32 dst reg wrt zero
    (bsc#1184170 CVE-2021-3444).
  - bpf: Fix 32 bit src register truncation on div/mod
    (bsc#1184170).
  - commit 0962666
* Thu Apr 01 2021 glin@suse.com
  - bpf: fix subprog verifier bypass by div/mod by 0 exception (bsc#1184170).
  - Refresh
    patches.suse/bpf-move-tmp-variable-into-ax-register-in-interprete.patch.
  - commit 4d5a2c3
* Thu Apr 01 2021 tonyj@suse.de
  - perf/x86/intel: Fix a crash caused by zero PEBS status
    (CVE-2021-28971 bsc#1184196).
  - commit 40c1d32
* Wed Mar 31 2021 jgross@suse.com
  - xen-blkback: don't leak persistent grants from xen_blkbk_map()
    (bsc#1183646, CVE-2021-28688, XSA-371).
  - commit 55909b8
* Wed Mar 31 2021 tiwai@suse.de
  - usbip: fix stub_dev usbip_sockfd_store() races leading to gpf
    (CVE-2021-29265 bsc#1184167).
  - commit 6095add
* Wed Mar 31 2021 tiwai@suse.de
  - gianfar: fix jumbo packets+napi+rx overrun crash (CVE-2021-29264
    bsc#1184168).
  - commit 9dcbb37
* Wed Mar 31 2021 tiwai@suse.de
  - PCI: rpadlpar: Fix potential drc_name corruption in store
    functions (CVE-2021-28972 bsc#1184198).
  - commit 6348e09
* Wed Mar 31 2021 tiwai@suse.de
  - net: qrtr: fix a kernel-infoleak in qrtr_recvmsg()
    (CVE-2021-29647 bsc#1184192).
  - commit 3ab36f2
* Tue Mar 30 2021 glin@suse.com
  - bpf: Add sanity check for upper ptr_limit (bsc#1183686
    bsc#1183775).
  - bpf: Simplify alu_limit masking for pointer arithmetic
    (bsc#1183686 bsc#1183775).
  - bpf: Fix off-by-one for area size in creating mask to left
    (bsc#1183775 CVE-2020-27171).
  - bpf: Prohibit alu ops for pointer types not defining ptr_limit
    (bsc#1183686 CVE-2020-27170).
  - commit dbf16ca
* Thu Mar 18 2021 dwagner@suse.de
  - nvme: return an error if nvme_set_queue_count() fails
    (bsc#1180197).
  - commit 62966a2
* Thu Mar 18 2021 tiwai@suse.de
  - Fix a typo in r8188eu fix patch that caused a build error (CVE-2021-28660 bsc#1183593)
  - commit b574698
* Thu Mar 18 2021 tiwai@suse.de
  - Update patch reference for x25 fix (CVE-2020-35519 bsc#1183696)
  - commit c241986
* Wed Mar 17 2021 tiwai@suse.de
  - staging: rtl8188eu: prevent ->ssid overflow in rtw_wx_set_scan()
    (CVE-2021-28660 bsc#1183593).
  - commit 5b4b262
* Wed Mar 17 2021 jack@suse.cz
  - Update tags
    patches.suse/ext4-check-journal-inode-extents-more-carefully.patch
    (bsc#1173485 bsc#1183509 CVE-2021-3428).
  - commit f1fc1ff
* Mon Mar 15 2021 lduncan@suse.com
  - blk-mq: move _blk_mq_update_nr_hw_queues synchronize_rcu call
    (CVE-2020-0433 bsc#1176720).
  - blk-mq: Allow blocking queue tag iter callbacks (CVE-2020-0433
    bsc#1176720 bsc#1167316).
  - commit 7fb1c08
* Mon Mar 15 2021 jgross@suse.com
  - Update
    patches.suse/Xen-gnttab-handle-p2m-update-errors-on-a-per-slot-ba.patch
    (bsc#1183022 XSA-367 CVE-2021-28038): added CVE number
  - Update
    patches.suse/xen-netback-respect-gnttab_map_refs-s-return-value.patch
    (bsc#1183022 XSA-367 CVE-2021-28038): added CVE number
  - commit cfcdec5
* Mon Mar 15 2021 jgross@suse.com
  - xen/events: avoid handling the same event on two cpus at the
    same time (bsc#1183638 XSA-332 CVE-2020-27673).
  - commit 89c8a49
* Mon Mar 15 2021 jgross@suse.com
  - xen/events: don't unmask an event channel when an eoi is pending
    (bsc#1183638 XSA-332 CVE-2020-27673).
  - commit e4088d0
* Mon Mar 15 2021 jgross@suse.com
  - xen/events: reset affinity of 2-level event when tearing it down
    (bsc#1183638 XSA-332 CVE-2020-27673).
  - commit 6e06fe9
* Fri Mar 12 2021 rgoldwyn@suse.com
  - jfs: Fix array index bounds check in dbAdjTree  (bsc#1179454 CVE-2020-27815).
  - commit 981c2ff
* Fri Mar 12 2021 msuchanek@suse.de
  - Refresh patches.suse/ibmvnic-fix-a-race-between-open-and-reset.patch.
  - commit 14b37a2
* Wed Mar 10 2021 jslaby@suse.cz
  - rpm/check-for-config-changes: comment on the list
    To explain what it actually is.
  - commit e94bacf
* Wed Mar 10 2021 jslaby@suse.cz
  - rpm/check-for-config-changes: define ignores more strictly
    * search for whole words, so make wildcards explicit
    * use ' for quoting
    * prepend CONFIG_ dynamically, so it need not be in the list
  - commit f61e954
* Wed Mar 10 2021 jslaby@suse.cz
  - rpm/check-for-config-changes: sort the ignores
    They are growing so to make them searchable by humans.
  - commit 67c6b55
* Wed Mar 10 2021 jslaby@suse.cz
  - rpm/check-for-config-changes: add -mrecord-mcount ignore
    Added by 3b15cdc15956 (tracing: move function tracer options to Kconfig)
    upstream.
  - commit 018b013
* Tue Mar 09 2021 tiwai@suse.de
  - Correct bugzilla reference (CVE-2021-27365 CVE-2021-27363 CVE-2021-27364 bsc#1182716 bsc#1182717 bsc#1182715)
  - commit c6090b9
* Mon Mar 08 2021 lduncan@suse.com
  - scsi: iscsi: Verify lengths on passthrough PDUs (CVE-2021-27365
    bsc#182715).
  - scsi: iscsi: Ensure sysfs attributes are limited to PAGE_SIZE
    (CVE-2021-27365 bsc#182715).
  - scsi: iscsi: Restrict sessions and handles to admin capabilities
    (CVE-2021-27363 CVE-2021-27364 bsc#182716 bsc#182717).
  - scsi: iscsi: Verify lengths on passthrough PDUs (CVE-2021-27365
    bsc#182715).
  - scsi: iscsi: Ensure sysfs attributes are limited to PAGE_SIZE
    (CVE-2021-27365 bsc#182715).
  - scsi: iscsi: Restrict sessions and handles to admin capabilities
    (CVE-2021-27363 CVE-2021-27364 bsc#182716 bsc#182717).
  - commit 6898b4f
* Sun Mar 07 2021 lduncan@suse.com
  - bfq: Fix kABI for update internal depth state when queue depth
    changes (bsc#1172455).
  - bfq: update internal depth state when queue depth changes
    (bsc#1172455).
  - commit a6276eb
* Fri Mar 05 2021 msuchanek@suse.de
  - ibmvnic: always store valid MAC address (bsc#1182011 ltc#191844).
  - commit 746c605
* Fri Mar 05 2021 jslaby@suse.cz
  - rpm/check-for-config-changes: declare sed args as an array
    So that we can reuse it in both seds.
    This also introduces IGNORED_CONFIGS_RE array which can be easily
    extended.
  - commit a1976d2
* Fri Mar 05 2021 jgross@suse.com
  - xen-netback: respect gnttab_map_refs()'s return value
    (bsc#1183022 XSA-367).
  - commit 6e61f26
* Fri Mar 05 2021 jgross@suse.com
  - Xen/gnttab: handle p2m update errors on a per-slot basis
    (bsc#1183022 XSA-367).
  - commit 1ab6d01
* Thu Mar 04 2021 jslaby@suse.cz
  - rpm/check-for-config-changes: ignore more configs
    Specifially, these:
    * CONFIG_CC_HAS_*
    * CONFIG_CC_HAVE_*
    * CONFIG_CC_CAN_*
    * CONFIG_HAVE_[A-Z]*_COMPILER
    * CONFIG_TOOLS_SUPPORT_*
    are compiler specific too. This will allow us to use super configs
    using kernel's dummy-tools.
  - commit d12dcbd
* Thu Mar 04 2021 jwiesner@suse.com
  - ibmvnic: store valid MAC address (bsc#1182011).
  - commit 54870aa
* Mon Mar 01 2021 nsaenzjulienne@suse.de
  - usb: dwc2: Make "trimming xfer length" a debug message
    (bsc#1180262).
  - usb: dwc2: Abort transaction after errors with unknown reason
    (bsc#1180262).
  - usb: dwc2: Do not update data length if it is 0 on inbound
    transfers (bsc#1180262).
  - commit 8a278e5
* Mon Mar 01 2021 ohering@suse.de
  - Drivers: hv: vmbus: Avoid use-after-free in vmbus_onoffer_rescind() (git-fixes).
  - commit 1e4ac7f
* Fri Feb 26 2021 vbabka@suse.cz
  - mm, THP, swap: make reuse_swap_page() works for THP swapped out
    (partial) (CVE-2020-29368, bsc#1179660.).
  - commit 556db3f
* Fri Feb 26 2021 vbabka@suse.cz
  - mm: thp: fix MADV_REMOVE deadlock on shmem THP (CVE-2020-29368,
    bsc#1179660.).
  - commit 4eb863b
* Fri Feb 26 2021 vbabka@suse.cz
  - mm: thp: make the THP mapcount atomic against
    __split_huge_pmd_locked() (CVE-2020-29368, bsc#1179660.).
  - commit 2881aaa
* Fri Feb 26 2021 dwagner@suse.de
  - nvme-multipath: Early exit if no path is available
    (bsc#1180964).
  - commit 0789e5e
* Thu Feb 25 2021 msuchanek@suse.de
  - ibmvnic: fix a race between open and reset (bsc#1176855
    ltc#187293).
  - commit b44b587
* Thu Feb 25 2021 tbogendoerfer@suse.de
  - vmxnet3: Remove buf_info from device accessible structures
    (bsc#1181671).
  - commit de8dc4f
* Wed Feb 24 2021 nborisov@suse.com
  - btrfs: Unlock extents in btrfs_zero_range in case of errors (bsc#1182047).
  - commit 4522878
* Wed Feb 24 2021 nborisov@suse.com
  - btrfs: Simplify code flow in btrfs_delayed_inode_reserve_metadata (bsc#1182047).
  - commit b1bf992
* Wed Feb 24 2021 nborisov@suse.com
  - btrfs: Remove btrfs_inode from btrfs_delayed_inode_reserve_metadata (bsc#1182047).
  - commit b9625d8
* Wed Feb 24 2021 nborisov@suse.com
  - btrfs: Cleanup try_flush_qgroup (bsc#1182047).
  - commit a3f071f
* Wed Feb 24 2021 nborisov@suse.com
  - btrfs: Don't flush from btrfs_delayed_inode_reserve_metadata (bsc#1182047).
  - commit 1c8c274
* Wed Feb 24 2021 nborisov@suse.com
  - btrfs: Free correct amount of space in btrfs_delayed_inode_reserve_metadata (bsc#1182047).
  - commit 5da7303
* Wed Feb 24 2021 msuchanek@suse.de
  - macros.kernel-source: Use spec_install_pre for certificate installation (boo#1182672).
    Since rpm 4.16 files installed during build phase are lost.
  - commit d0b887e
* Tue Feb 23 2021 ddiss@suse.de
  - scsi: target: fix unmap_zeroes_data boolean initialisation
    (bsc#1163617).
  - commit 3fa1a11
* Mon Feb 22 2021 colyli@suse.de
  - libnvdimm/dimm: Avoid race between probe and
    available_slots_show() (bsc#1170442).
  - Use the above upstream patch to replace the following in-house patch,
    patches.suse/nvdimm-Avoid-race-between-probe-and-reading-device-a.patch.
  - commit 8e49f2a
* Mon Feb 22 2021 msuchanek@suse.de
  - rpm/kernel-subpackage-build: Workaround broken bot
    (https://github.com/openSUSE/openSUSE-release-tools/issues/2439)
  - commit b74d860
* Mon Feb 22 2021 jgross@suse.com
  - xen-blkback: fix error handling in xen_blkbk_map() (XSA-365
    CVE-2021-26930 bsc#1181843).
  - commit 0ed98dc
* Mon Feb 22 2021 jgross@suse.com
  - xen-scsiback: don't "handle" error by BUG() (XSA-362
    CVE-2021-26931 bsc#1181753).
  - commit b067c04
* Mon Feb 22 2021 jgross@suse.com
  - xen-netback: don't "handle" error by BUG() (XSA-362
    CVE-2021-26931 bsc#1181753).
  - commit 4c9cf8b
* Mon Feb 22 2021 jgross@suse.com
  - xen-blkback: don't "handle" error by BUG() (XSA-362
    CVE-2021-26931 bsc#1181753).
  - commit 603464d
* Mon Feb 22 2021 jgross@suse.com
  - xen/arm: don't ignore return errors from set_phys_to_machine
    (XSA-361 CVE-2021-26932 bsc#1181747).
  - commit 9ff68db
* Mon Feb 22 2021 jgross@suse.com
  - Xen/gntdev: correct error checking in gntdev_map_grant_pages()
    (XSA-361 CVE-2021-26932 bsc#1181747).
  - commit 7fd73db
* Mon Feb 22 2021 jgross@suse.com
  - Xen/gntdev: correct dev_bus_addr handling in
    gntdev_map_grant_pages() (XSA-361 CVE-2021-26932 bsc#1181747).
  - commit 131ffb6
* Mon Feb 22 2021 jgross@suse.com
  - Xen/x86: also check kernel mapping in set_foreign_p2m_mapping()
    (XSA-361 CVE-2021-26932 bsc#1181747).
  - commit 4b44d15
* Mon Feb 22 2021 jgross@suse.com
  - Xen/x86: don't bail early from clear_foreign_p2m_mapping()
    (XSA-361 CVE-2021-26932 bsc#1181747).
  - commit 92a5a6c
* Mon Feb 22 2021 jgross@suse.com
  - xen/netback: fix spurious event detection for common event case
    (bsc#1182175).
  - commit 1f35f61
* Tue Feb 16 2021 tbogendoerfer@suse.de
  - net/mlx4_en: Handle TX error CQE (bsc#1181854).
  - commit 0ba2395
* Mon Feb 15 2021 msuchanek@suse.de
  - kernel-binary.spec: Add back initrd and image symlink ghosts to
    filelist (bsc#1182140).
    Fixes: 76a9256314c3 ("rpm/kernel-{source,binary}.spec: do not include ghost symlinks (boo#1179082).")
  - commit 606c9d1
* Mon Feb 15 2021 tiwai@suse.de
  - rpm/post.sh: Avoid purge-kernel for the first installed kernel (bsc#1180058)
  - commit c29e77d
* Fri Feb 12 2021 alnovak@suse.cz
  - SLE15-SP1 went to LTSS, hand over to L3
  - commit 547a203
* Thu Feb 11 2021 nborisov@suse.com
  - Btrfs: fix data bytes_may_use underflow with fallocate due to failed  quota reserve (bsc#1182130)
  - commit 98c1690
* Thu Feb 11 2021 jgross@suse.com
  - xen/netback: avoid race in xenvif_rx_ring_slots_available()
    (bsc#1065600).
  - commit 8f2c4d9
* Mon Feb 08 2021 mbenes@suse.cz
  - objtool: Don't fail on missing symbol table (bsc#1192379).
  - commit e7ec5af
* Fri Feb 05 2021 dwagner@suse.de
  - dm: avoid filesystem lookup in dm_get_dev_t() (bsc#1178049).
  - commit 9a1258d
* Fri Feb 05 2021 ddiss@suse.de
  - kernfs: deal with kernfs_fill_super() failures (bsc#1181809).
  - commit 2955da8
* Wed Feb 03 2021 tiwai@suse.de
  - rpm/kernel-binary.spec.in: Correct Supplements in optional subpkg (jsc#SLE-11796)
    The product string was changed from openSUSE to Leap.
  - commit 3cb7943
* Wed Feb 03 2021 tiwai@suse.de
  - Fix the inconsistent kfree() call at rawmidi (CVE-2020-27786 bsc#1179601
    Refresh patches.suse/ALSA-rawmidi-Fix-racy-buffer-resize-under-concurrent.patch
  - commit b3ad1de
* Mon Feb 01 2021 denis.kirjanov@suse.com
  - blacklist.conf: update blacklist
  - commit 2dbfda5
* Mon Feb 01 2021 denis.kirjanov@suse.com
  - net: bcmgenet: fix mask check in bcmgenet_validate_flow()
    (git-fixes).
  - commit 9f11f7d
* Mon Feb 01 2021 denis.kirjanov@suse.com
  - net: bcmgenet: use __be16 for htons(ETH_P_IP) (git-fixes).
  - commit a5c7f8a
* Mon Feb 01 2021 denis.kirjanov@suse.com
  - bonding: wait for sysfs kobject destruction before freeing
    struct slave (git-fixes).
  - commit ebefb0a
* Mon Feb 01 2021 denis.kirjanov@suse.com
  - net: bcmgenet: re-remove bcmgenet_hfb_add_filter (git-fixes).
  - commit 46fda79
* Mon Feb 01 2021 denis.kirjanov@suse.com
  - net: bcmgenet: add support for ethtool rxnfc flows (git-fixes).
  - commit 26fc3e4
* Mon Feb 01 2021 denis.kirjanov@suse.com
  - net: bcmgenet: code movement (git-fixes).
  - commit 9299a9b
* Mon Feb 01 2021 ematsumiya@suse.de
  - scsi: qla2xxx: Fix description for parameter
    ql2xenforce_iocb_limit (bsc#1179142).
  - commit 547d89c
* Mon Feb 01 2021 denis.kirjanov@suse.com
  - net: lpc-enet: fix error return code in lpc_mii_init()
    (git-fixes).
  - commit 6d2577b
* Mon Feb 01 2021 denis.kirjanov@suse.com
  - Revert "net: bcmgenet: remove unused function in bcmgenet.c"
    (git-fixes).
  - commit 29b8135
* Mon Feb 01 2021 denis.kirjanov@suse.com
  - net: bcmgenet: Fix WoL with password after deep sleep
    (git-fixes).
  - commit 434ba32
* Mon Feb 01 2021 denis.kirjanov@suse.com
  - net: bcmgenet: set Rx mode before starting netif (git-fixes).
  - commit a274812
* Mon Feb 01 2021 denis.kirjanov@suse.com
  - net: bcmgenet: Use correct I/O accessors (git-fixes).
  - commit 4b04da3
* Mon Feb 01 2021 denis.kirjanov@suse.com
  - bonding: Fix reference count leak in bond_sysfs_slave_add
    (git-fixes).
  - commit 0dfed9e
* Mon Feb 01 2021 denis.kirjanov@suse.com
  - net: sun: fix missing release regions in cas_init_one()
    (git-fixes).
  - commit 1566edd
* Mon Feb 01 2021 denis.kirjanov@suse.com
  - net: moxa: Fix a potential double 'free_irq()' (git-fixes).
  - commit 7e78b2e
* Mon Feb 01 2021 tiwai@suse.de
  - Fix a bug in rawmidi UAF fix patch (bsc#1179601, CVE-2020-27786)
    Refresh patches.suse/ALSA-rawmidi-Fix-racy-buffer-resize-under-concurrent.patch
  - commit ce80dfa
* Mon Feb 01 2021 jroedel@suse.de
  - kABI: Fix kABI for extended APIC-ID support (bsc#1181260,
    jsc#ECO-3191).
  - x86/kvm: Add KVM_FEATURE_MSI_EXT_DEST_ID (bsc#1181260,
    jsc#ECO-3191).
  - x86/apic: Support 15 bits of APIC ID in IOAPIC/MSI where
    available (bsc#1181260, jsc#ECO-3191).
  - x86/ioapic: Handle Extended Destination ID field in RTE
    (bsc#1181260, jsc#ECO-3191).
  - x86/msi: Only use high bits of MSI address for DMAR unit
    (bsc#1181260, jsc#ECO-3191).
  - x86/apic: Fix x2apic enablement without interrupt remapping
    (bsc#1181260, jsc#ECO-3191).
  - x86/kvm: Reserve KVM_FEATURE_MSI_EXT_DEST_ID (bsc#1181260,
    jsc#ECO-3191).
  - iommu/vt-d: Don't dereference iommu_device if IOMMU_API is
    not built (bsc#1181260, jsc#ECO-3191).
  - iommu/vt-d: Gracefully handle DMAR units with no supported
    address widths (bsc#1181260, jsc#ECO-3191).
  - commit bd17758
* Mon Feb 01 2021 dwagner@suse.de
  - nbd: freeze the queue while we're adding connections
    (bsc#1181504 CVE-2021-3348).
  - nbd: Fix memory leak in nbd_add_socket (bsc#1181504).
  - commit 447797a
* Mon Feb 01 2021 dbueso@suse.de
  - Move futex fixes into the sorted section (bsc#1181349 CVE-2021-3347)
  - commit c34c9df
* Sun Jan 31 2021 tiwai@suse.de
  - drm/i915: Check for all subplatform bits (git-fixes).
  - can: dev: prevent potential information leak in can_fill_info()
    (git-fixes).
  - xhci: tegra: Delay for disabling LFPS detector (git-fixes).
  - xhci: make sure TRB is fully written before giving it to the
    controller (git-fixes).
  - USB: ehci: fix an interrupt calltrace error (git-fixes).
  - ehci: fix EHCI host controller initialization sequence
    (git-fixes).
  - ALSA: seq: oss: Fix missing error check in
    snd_seq_oss_synth_make_info() (git-fixes).
  - ALSA: hda/via: Add minimum mute flag (git-fixes).
  - can: vxcan: vxcan_xmit: fix use after free bug (git-fixes).
  - drm/nouveau/i2c/gm200: increase width of aux semaphore owner
    fields (git-fixes).
  - drm/nouveau/privring: ack interrupts the same way as RM
    (git-fixes).
  - drm/nouveau/bios: fix issue shadowing expansion ROMs
    (git-fixes).
  - ALSA: doc: Fix reference to mixart.rst (git-fixes).
  - ASoC: Intel: haswell: Add missing pm_ops (git-fixes).
  - can: c_can: c_can_power_up(): fix error handling (git-fixes).
  - commit 6556b1a
* Sun Jan 31 2021 tiwai@suse.de
  - Update patch References tags for futex fixes (bsc#1181349 CVE-2021-3347)
  - commit afd051d
* Sun Jan 31 2021 dbueso@suse.de
  - Refresh patches.suse/futex-Handle-transient-ownerless-rtmutex-state-corre.patch
    As of patches.suse/0001-locking-futex-Allow-low-level-atomic-operations-to-r.patch
    we need to update the patch such that we set EAGAIN and avoid a warn (albeit benign).
  - commit 96704b7
* Fri Jan 29 2021 ptesarik@suse.cz
  - s390/qeth: fix L2 header access in qeth_l3_osa_features_check()
    (git-fixes).
  - s390/qeth: fix locking for discipline setup / removal
    (git-fixes).
  - s390/qeth: fix deadlock during recovery (git-fixes).
  - s390/qeth: delay draining the TX buffers (git-fixes).
  - commit eca39ca
* Fri Jan 29 2021 ptesarik@suse.cz
  - s390/cio: fix use-after-free in ccw_device_destroy_console
    (git-fixes).
  - commit 2bcefd5
* Fri Jan 29 2021 ptesarik@suse.cz
  - net/smc: fix sleep bug in smc_pnet_find_roce_resource()
    (git-fixes).
  - Refresh
    patches.suse/net-smc-switch-smcd_dev_list-spinlock-to-mutex.
  - commit b63038e
* Fri Jan 29 2021 ptesarik@suse.cz
  - net/smc: cancel event worker during device removal (git-fixes).
  - net/smc: check for valid ib_client_data (git-fixes).
  - net/smc: receive pending data after RCV_SHUTDOWN (git-fixes).
  - net/smc: receive returns without data (git-fixes).
  - commit 4050493
* Fri Jan 29 2021 msuchanek@suse.de
  - Refresh patches.suse/4.4.136-002-powerpc-64s-Clear-PCR-on-boot.patch
    Also clear PCR on POWER9 and in dt_cpu_ftrs.
  - commit 6cd712e
* Fri Jan 29 2021 tbogendoerfer@suse.de
  - net/mlx5: Fix memory leak on flow table creation error flow
    (bsc#1046305 FATE#322943).
  - igc: fix link speed advertising (jsc#SLE-4799).
  - commit 37cbcd7
* Fri Jan 29 2021 tbogendoerfer@suse.de
  - Refresh
    patches.suse/0013-net-liquidio-Delete-non-working-LIQUIDIO_PACKAGE-che.patch.
  - Delete
    patches.suse/0012-net-liquidio-Delete-driver-version-assignment.patch.
    As we don't have upstream commit 6a7e25c7fb48 ("net/core: Replace driver
    version to be kernel version") in our trees, removing driver version
    assignments is wrong. Therefore removed commit and adapted fixes backport.
  - commit 226c353
* Fri Jan 29 2021 dbueso@suse.de
  - futex: Fix incorrect should_fail_futex() handling (bsc#1181349).
  - commit 0ba69a9
* Fri Jan 29 2021 dbueso@suse.de
  - futex: Handle faults correctly for PI futexes (bsc#1181349
    bsc#1149032).
  - futex: Simplify fixup_pi_state_owner() (bsc#1181349
    bsc#1149032).
  - futex: Use pi_state_update_owner() in put_pi_state()
    (bsc#1181349 bsc#1149032).
  - rtmutex: Remove unused argument from rt_mutex_proxy_unlock()
    (bsc#1181349 bsc#1149032).
  - futex: Provide and use pi_state_update_owner() (bsc#1181349
    bsc#1149032).
  - futex: Replace pointless printk in fixup_owner() (bsc#1181349
    bsc#1149032).
  - futex: Ensure the correct return value from futex_lock_pi()
    (bsc#1181349 bsc#1149032).
  - futex: Don't enable IRQs unconditionally in put_pi_state()
    (bsc#1149032).
  - locking/futex: Allow low-level atomic operations to return
    - EAGAIN (bsc#1149032).
  - commit 058c695
* Thu Jan 28 2021 ohering@suse.de
  - x86/hyperv: Fix kexec panic/hang issues (bsc#1176831).
  - commit 786eb3d
* Thu Jan 28 2021 tbogendoerfer@suse.de
  - cxgb4: fix the panic caused by non smac rewrite (bsc#1064802
    bsc#1066129).
  - commit b5006a4
* Thu Jan 28 2021 denis.kirjanov@suse.com
  - net: dsa: b53: b53_arl_rw_op() needs to select IVL or SVL (git-fixes).
  - commit 3aea956
* Thu Jan 28 2021 denis.kirjanov@suse.com
  - net: dsa: b53: Lookup VID in ARL searches when VLAN is enabled (git-fixes). - Refresh patches.suse/net-dsa-b53-Rework-ARL-bin-logic.patch.
  - commit a432764
* Thu Jan 28 2021 denis.kirjanov@suse.com
  - net/liquidio: Delete non-working LIQUIDIO_PACKAGE check
    (git-fixes).
  - commit 61efd0a
* Thu Jan 28 2021 denis.kirjanov@suse.com
  - net/liquidio: Delete driver version assignment (git-fixes).
  - commit 8fe74e2
* Thu Jan 28 2021 denis.kirjanov@suse.com
  - net: bcmgenet: keep MAC in reset until PHY is up (git-fixes).
  - commit c6bce34
* Thu Jan 28 2021 denis.kirjanov@suse.com
  - net: atlantic: fix potential error handling (git-fixes).
  - commit dbd80e5
* Thu Jan 28 2021 denis.kirjanov@suse.com
  - net: atlantic: fix use after free kasan warn (git-fixes).
  - commit 038a344
* Thu Jan 28 2021 denis.kirjanov@suse.com
  - net: smc911x: Adjust indentation in smc911x_phy_configure
    (git-fixes).
  - commit d99da08
* Thu Jan 28 2021 denis.kirjanov@suse.com
  - net: tulip: Adjust indentation in {dmfe, uli526x}_init_module
    (git-fixes).
  - commit a3ef2cc
* Thu Jan 28 2021 denis.kirjanov@suse.com
  - net/sonic: Add mutual exclusion for accessing shared state
    (git-fixes).
  - commit 3796c70
* Thu Jan 28 2021 denis.kirjanov@suse.com
  - mlxsw: switchx2: Do not modify cloned SKBs during xmit
    (git-fixes).
  - commit 1f71af0
* Thu Jan 28 2021 denis.kirjanov@suse.com
  - mlxsw: spectrum: Do not modify cloned SKBs during xmit
    (git-fixes).
  - commit 606b6bb
* Thu Jan 28 2021 denis.kirjanov@suse.com
  - net: freescale: fec: Fix ethtool -d runtime PM (git-fixes).
  - commit bd3b5d1
* Thu Jan 28 2021 tbogendoerfer@suse.de
  - RDMA/mlx5: Fix wrong free of blue flame register on error
    (bsc#1103991 FATE#326007).
  - bnxt_en: Improve stats context resource accounting with RDMA
    driver loaded (bsc#1104745 FATE#325918).
  - net/mlx5e: Fix two double free cases (bsc#1046305 FATE#322943).
  - chtls: Fix chtls resources release sequence (bsc#1104270
    FATE#325931).
  - chtls: Added a check to avoid NULL pointer dereference
    (bsc#1104270 FATE#325931).
  - chtls: Replace skb_dequeue with skb_peek (bsc#1104270
    FATE#325931).
  - chtls: Remove invalid set_tcb call (bsc#1104270 FATE#325931).
  - chtls: Fix hardware tid leak (bsc#1104270 FATE#325931).
  - net: hns3: fix the number of queues actually used by ARQ
    (bsc#1104353 FATE#326415).
  - net: mvpp2: fix pkt coalescing int-threshold configuration
    (bsc#1098633).
  - tun: fix return value when the number of iovs exceeds
    MAX_SKB_FRAGS (bsc#1109837).
  - net: mvpp2: Fix GoP port 3 Networking Complex Control
    configurations (bsc#1098633).
  - RDMA/cma: Don't overwrite sgid_attr after device is released
    (bsc#1103992 FATE#326009).
  - ixgbe: avoid premature Rx buffer reuse (bsc#1109837
    FATE#326322).
  - i40e: avoid premature Rx buffer reuse (bsc#1111981 FATE#326312
    FATE#326313).
  - net: mvpp2: Fix error return code in mvpp2_open() (bsc#1119113
    FATE#326472).
  - chelsio/chtls: fix a double free in chtls_setkey() (bsc#1104270
    FATE#325931).
  - chelsio/chtls: fix panic during unload reload chtls (bsc#1104270
    FATE#325931).
  - bnxt_en: fix error return code in bnxt_init_one() (bsc#1050242
    FATE#322914).
  - RDMA/hns: Bugfix for memory window mtpt configuration
    (bsc#1104427 FATE#326416).
  - net/mlx5: Add handling of port type in rule deletion
    (bsc#1103991 FATE#326007).
  - chelsio/chtls: fix always leaking ctrl_skb (bsc#1104270
    FATE#325931).
  - chelsio/chtls: fix memory leaks caused by a race (bsc#1104270
    FATE#325931).
  - chelsio/chtls: fix memory leaks in CPL handlers (bsc#1104270
    FATE#325931).
  - chelsio/chtls: fix deadlock issue (bsc#1104270 FATE#325931).
  - cxgb4: set up filter action after rewrites (bsc#1064802
    bsc#1066129).
  - chelsio/chtls: fix tls record info to user (bsc#1104270
    FATE#325931).
  - net/sched: act_tunnel_key: fix OOB write in case of IPv6 ERSPAN
    tunnels (bsc#1109837).
  - chelsio/chtls: correct function return and return type
    (bsc#1104270 FATE#325931).
  - chelsio/chtls: correct netdevice for vlan interface (bsc#1104270
    FATE#325931).
  - chelsio/chtls: fix socket lock (bsc#1104270 FATE#325931).
  - RDMA/addr: Fix race with netevent_callback()/rdma_addr_cancel()
    (bsc#1103992 FATE#326009).
  - RDMA/hns: Fix missing sq_sig_type when querying QP (bsc#1104427
    FATE#326416).
  - commit ddb281e
* Thu Jan 28 2021 neilb@suse.de
  - blacklist.conf: add NFS patches which hurt kabi
  - commit f3c5ae2
* Thu Jan 28 2021 neilb@suse.de
  - nfsd4: readdirplus shouldn't return parent of export
    (git-fixes).
  - commit 94a53d9
* Wed Jan 27 2021 tbogendoerfer@suse.de
  - net: hns3: fix a wrong reset interrupt status mask (git-fixes).
  - commit f402199
* Wed Jan 27 2021 tbogendoerfer@suse.de
  - bnxt_en: return proper error codes in bnxt_show_temp
    (bsc#1104745 FATE#325918).
  - cxgb4: fix all-mask IP address comparison (bsc#1064802
    bsc#1066129).
  - IB/mlx5: Fix DEVX support for MLX5_CMD_OP_INIT2INIT_QP command
    (bsc#1103991 FATE#326007).
  - RDMA/core: Ensure security pkey modify is not lost (bsc#1046306
    FATE#322942).
  - RDMA/core: Fix pkey and port assignment in get_new_pps
    (bsc#1046306 FATE#322942).
  - RDMA/core: Fix use of logical OR in get_new_pps (bsc#1046306
    FATE#322942).
  - commit fb4b60c
* Wed Jan 27 2021 tbogendoerfer@suse.de
  - net: hns3: add compatible handling for command
    HCLGE_OPC_PF_RST_DONE (git-fixes).
  - net: hns3: check reset interrupt status when reset fails
    (git-fixes).
  - commit 3bdc4a9
* Wed Jan 27 2021 tbogendoerfer@suse.de
  - net/mlx5e: Fix memleak in mlx5e_create_l2_table_groups
    (git-fixes).
  - net/mlx4_en: Avoid scheduling restart task if it is already
    running (git-fixes).
  - cxgb3: fix error return code in t3_sge_alloc_qset() (git-fixes).
  - net: ena: set initial DMA width to avoid intel iommu issue
    (git-fixes).
  - i40e: Fix removing driver while bare-metal VFs pass traffic
    (git-fixes).
  - bnxt_en: Release PCI regions when DMA mask setup fails during
    probe (git-fixes).
  - bnxt_en: fix error return code in bnxt_init_board() (git-fixes).
  - bnxt_en: read EEPROM A2h address using page 0 (git-fixes).
  - mlxsw: core: Fix use-after-free in mlxsw_emad_trans_finish()
    (git-fixes).
  - RDMA/qedr: Fix inline size returned for iWARP (bsc#1050545
    FATE#322893).
  - net: ethernet: mlx4: Avoid assigning a value to ring_cons but
    not used it anymore in mlx4_en_xmit() (git-fixes).
  - net: team: fix memory leak in __team_options_register
    (git-fixes).
  - net/mlx5e: Fix VLAN create flow (git-fixes).
  - net/mlx5e: Fix VLAN cleanup flow (git-fixes).
  - team: set dev->needed_headroom in team_setup_by_port()
    (git-fixes).
  - bonding: set dev->needed_headroom in bond_setup_by_slave()
    (git-fixes).
  - RDMA/core: Fix reported speed and width (bsc#1046306
    FATE#322942).
  - RDMA/bnxt_re: Do not report transparent vlan from QP1
    (bsc#1104742 FATE#325917).
  - cxgb4: fix thermal zone device registration (bsc#1104279
    FATE#325938 bsc#1104277 FATE#325936).
  - bnxt_en: fix HWRM error when querying VF temperature
    (bsc#1104745 FATE#325918).
  - bnxt_en: Don't query FW when netif_running() is false
    (bsc#1086282 FATE#324873).
  - RDMA/bnxt_re: Do not add user qps to flushlist (bsc#1050244
    FATE#322915).
  - RDMA/core: Fix return error value in _ib_modify_qp() to negative
    (bsc#1103992 FATE#326009).
  - RDMA/mlx5: Fix typo in enum name (bsc#1103991 FATE#326007).
  - net/mlx5e: fix bpf_prog reference count leaks in mlx5e_alloc_rq
    (bsc#1103990 FATE#326006).
  - net: hns3: fix a TX timeout issue (bsc#1104353 FATE#326415).
  - net: hns3: fix error handling for desc filling (bsc#1104353
    FATE#326415).
  - net: hns3: fix for not calculating TX BD send size correctly
    (bsc#1126390).
  - mlxsw: destroy workqueue when trap_register in mlxsw_emad_init
    (bsc#1112374).
  - net: hns3: fix use-after-free when doing self test (bsc#1104353
    FATE#326415).
  - net: hns3: add a missing uninit debugfs when unload driver
    (bsc#1104353 FATE#326415).
  - cxgb4: move DCB version extern to header file (bsc#1104279
    FATE#325938).
  - cxgb4: remove cast when saving IPv4 partial checksum
    (bsc#1074220).
  - cxgb4: fix SGE queue dump destination buffer context
    (bsc#1073513).
  - cxgb4: use correct type for all-mask IP address comparison
    (bsc#1064802 bsc#1066129).
  - cxgb4: use unaligned conversion for fetching timestamp
    (bsc#1046540 bsc#1046648).
  - xdp: Fix xsk_generic_xmit errno (bsc#1109837).
  - net/filter: Permit reading NET in load_bytes_relative when
    MAC not set (bsc#1109837).
  - RDMA/mlx5: Add init2init as a modify command (bsc#1103991
    FATE#326007).
  - RDMA/hns: Fix cmdq parameter of querying pf timer resource
    (bsc#1104427 FATE#326416 bsc#1126206).
  - net_failover: fixed rollback in net_failover_open()
    (bsc#1109837).
  - igb: Report speed and duplex as unknown when device is runtime
    suspended (git-fixes).
  - net/mlx5e: IPoIB, Drop multicast packets that this interface
    sent (bsc#1075020).
  - ixgbe: Fix XDP redirect on archs with PAGE_SIZE above 4K
    (bsc#1109837 FATE#326322).
  - veth: Adjust hard_start offset on redirect XDP frames
    (bsc#1109837).
  - Revert "crypto: chelsio - Inline single pdu only" (git-fixes).
  - bnxt_en: Fix accumulation of bp->net_stats_prev (bsc#1104745
    FATE#325918).
  - mlxsw: spectrum: Fix use-after-free of split/unsplit/type_set
    in case reload fails (bsc#1112374).
  - __netif_receive_skb_core: pass skb by reference (bsc#1109837).
  - RDMA/iw_cxgb4: Fix incorrect function parameters (bsc#1136348
    jsc#SLE-4684).
  - cpumap: Avoid warning when CONFIG_DEBUG_PER_CPU_MAPS is enabled
    (bsc#1109837).
  - cxgb4: fix adapter crash due to wrong MC size (bsc#1073513).
  - cxgb4: fix large delays in PTP synchronization (bsc#1046540
    bsc#1046648).
  - qed: Fix use after free in qed_chain_free (bsc#1050536
    FATE#322898 bsc#1050538 FATE#322897).
  - qed: Fix race condition between scheduling and destroying
    the slowpath workqueue (bsc#1086314 FATE#324886 bsc#1086313
    FATE#324885 bsc#1086301 FATE#3248881).
  - virtio_net: Keep vnet header zeroed if XDP is loaded for small
    buffer (git-fixes).
  - net: cbs: Fix software cbs to consider packet sending time
    (bsc#1109837).
  - bnxt_en: Reset rings if ring reservation fails during open()
    (bsc#1086282 FATE#324873).
  - cxgb4: fix throughput drop during Tx backpressure (bsc#1127354
    bsc#1127371).
  - RDMA/core: Fix protection fault in get_pkey_idx_qp_list
    (bsc#1046306 FATE#322942).
  - RDMA/iw_cxgb4: initiate CLOSE when entering TERM (bsc#1136348
    jsc#SLE-4684).
  - net: hns3: add management table after IMP reset (bsc#1104353
    FATE#326415).
  - drivers: net: xgene: Fix the order of the arguments of
    'alloc_etherdev_mqs()' (git-fixes).
  - cxgb4/cxgb4vf: fix flow control display for auto negotiation
    (bsc#1046540 FATE#322930 bsc#1046542 FATE#322928).
  - net: hns3: reallocate SSU' buffer size when pfc_en changes
    (bsc#1104353 FATE#326415).
  - net/mlx5e: TX, Fix consumer index of error cqe dump (bsc#1103990
    FATE#326006).
  - net: hns3: fix mis-counting IRQ vector numbers issue
    (bsc#1104353 FATE#326415).
  - RDMA/hns: bugfix for slab-out-of-bounds when loading hip08
    driver (bsc#1104427 FATE#326416).
  - RDMA/hns: Bugfix for slab-out-of-bounds when unloading hip08
    driver (bsc#1104427 FATE#326416).
  - net_sched: let qdisc_put() accept NULL pointer (bsc#1056657
    FATE#322189 bsc#1056653 FATE#322190 bsc#1056787).
  - net: hns3: fix shaper parameter algorithm (bsc#1104353
    FATE#326415).
  - net: hns3: fix error VF index when setting VLAN offload
    (bsc#1104353 FATE#326415).
  - net: hns3: fix interrupt clearing error for VF (bsc#1104353
    FATE#326415).
  - net: hns3: clear reset interrupt status in hclge_irq_handle()
    (git-fixes).
  - nfp: validate the return code from dev_queue_xmit() (git-fixes).
  - vhost/vsock: fix vhost vsock cid hashing inconsistent
    (git-fixes).
  - commit b766aed
* Wed Jan 27 2021 msuchanek@suse.de
  - scsi: ibmvfc: Set default timeout to avoid crash during
    migration (bsc#1181425 ltc#188252).
  - commit 195b2a9
* Wed Jan 27 2021 jgross@suse.com
  - blacklist.conf: add c8d647a326f0 xen/pvcallsback: use lateeoi irq binding
  - commit 308c42d
* Tue Jan 26 2021 dwagner@suse.de
  - scsi: lpfc: Simplify bool comparison (bsc#1180891).
  - scsi: lpfc: Update lpfc version to 12.8.0.7 (bsc#1180891).
  - scsi: lpfc: Enhancements to LOG_TRACE_EVENT for better
    readability (bsc#1180891).
  - scsi: lpfc: Implement health checking when aborting I/O
    (bsc#1180891).
  - scsi: lpfc: Fix vport create logging (bsc#1180891).
  - scsi: lpfc: Fix NVMe recovery after mailbox timeout
    (bsc#1180891).
  - scsi: lpfc: Fix target reset failing (bsc#1180891).
  - scsi: lpfc: Fix error log messages being logged following SCSI
    task mgnt (bsc#1180891).
  - scsi: lpfc: Prevent duplicate requests to unregister with
    cpuhp framework (bsc#1180891).
  - scsi: lpfc: Fix FW reset action if I/Os are outstanding
    (bsc#1180891).
  - scsi: lpfc: Use the nvme-fc transport supplied timeout for LS
    requests (bsc#1180891).
  - scsi: lpfc: Fix crash when a fabric node is released prematurely
    (bsc#1180891).
  - scsi: lpfc: Refresh ndlp when a new PRLI is received in the
    PRLI issue state (bsc#1180891).
  - scsi: lpfc: Fix auto sli_mode and its effect on CONFIG_PORT
    for SLI3 (bsc#1180891).
  - scsi: lpfc: Fix PLOGI S_ID of 0 on pt2pt config (bsc#1180891).
  - commit 88024a9
* Mon Jan 25 2021 ptesarik@suse.cz
  - vfio iommu: Add dma available capability (bsc#1179573
    LTC#190106).
  - commit c234a3f
* Mon Jan 25 2021 tiwai@suse.de
  - iio: ad5504: Fix setting power-down state (git-fixes).
  - serial: mvebu-uart: fix tx lost characters at power off
    (git-fixes).
  - usb: udc: core: Use lock when write to soft_connect (git-fixes).
  - i2c: octeon: check correct size of maximum RECV_LEN packet
    (git-fixes).
  - mmc: sdhci-xenon: fix 1.8v regulator stabilization (git-fixes).
  - drm/atomic: put state on error path (git-fixes).
  - ACPI: scan: Make acpi_bus_get_device() clear return pointer
    on error (git-fixes).
  - spi: cadence: cache reference clock rate during probe
    (git-fixes).
  - ACPI: scan: Harden acpi_device_add() against device ID overflows
    (git-fixes).
  - r8152: Add Lenovo Powered USB-C Travel Hub (git-fixes).
  - ALSA: firewire-tascam: Fix integer overflow in midi_port_work()
    (git-fixes).
  - ALSA: fireface: Fix integer overflow in transmit_midi_msg()
    (git-fixes).
  - ASoC: dapm: remove widget from dirty list on free (git-fixes).
  - ACPI: scan: add stub acpi_create_platform_device() for
    !CONFIG_ACPI (git-fixes).
  - misdn: dsp: select CONFIG_BITREVERSE (git-fixes).
  - commit 4e17252
* Mon Jan 25 2021 jslaby@suse.cz
  - blacklist.conf: add CONFIG_PROC_FS=n fix
  - commit d506362
* Mon Jan 25 2021 jslaby@suse.cz
  - net: vlan: avoid leaks on register_vlan_dev() failures
    (git-fixes).
  - commit 588ae15
* Mon Jan 25 2021 ptesarik@suse.cz
  - s390/dasd: fix list corruption of lcu list (bsc#1181170
    LTC#190915).
  - s390/dasd: fix list corruption of pavgroup group list
    (bsc#1181170 LTC#190915).
  - s390/dasd: prevent inconsistent LCU device data (bsc#1181170
    LTC#190915).
  - commit e73b11c
* Mon Jan 25 2021 msuchanek@suse.de
  - blacklist.conf: Add 08685be7761d powerpc/64s: fix scv entry fallback flush vs interrupt
    No scv support.
  - commit f4c561c
* Fri Jan 22 2021 ptesarik@suse.cz
  - s390/smp: perform initial CPU reset also for SMT siblings
    (git-fixes).
  - commit 9853cb5
* Fri Jan 22 2021 ptesarik@suse.cz
  - net/af_iucv: set correct sk_protocol for child sockets
    (git-fixes).
  - net/af_iucv: always register net_device notifier (git-fixes).
  - commit aebe99b
* Fri Jan 22 2021 ptesarik@suse.cz
  - net/af_iucv: fix null pointer dereference on shutdown
    (bsc#1179563 LTC#190108).
  - commit 0a706d4
* Fri Jan 22 2021 tiwai@suse.de
  - Drop drm/sun4i patches that broke the build
    They don't build properly on 32bit arm config
  - commit ef6a2c5
* Thu Jan 21 2021 jroedel@suse.de
  - vfio-pci: Use io_remap_pfn_range() for PCI IO memory
    (bsc#1181231).
  - KVM: x86/mmu: Commit zap of remaining invalid pages when
    recovering lpages (bsc#1181230).
  - commit 3da333d
* Thu Jan 21 2021 mkubecek@suse.cz
  - netfilter: ctnetlink: add a range check for l3/l4 protonum
    (CVE-2020-25211 bsc#1176395).
  - commit 92230c0
* Thu Jan 21 2021 jroedel@suse.de
  - blacklist.conf: Add a couple of VFIO/PCI and SWIOTLB fixes
  - commit 9053ccf
* Thu Jan 21 2021 neilb@suse.de
  - SUNRPC: cache: ignore timestamp written to 'flush' file
    (bsc#1178036).
  - commit 0eac715
* Wed Jan 20 2021 jgross@suse.com
  - Update
    patches.suse/0001-xen-events-add-a-proper-barrier-to-2-level-uevent-un.patch
    (CVE-2020-27673 XSA-332 bsc#1177411).
  - Update
    patches.suse/0002-xen-events-fix-race-in-evtchn_fifo_unmask.patch
    (CVE-2020-27673 XSA-332 bsc#1177411).
  - Update
    patches.suse/0003-xen-events-add-a-new-late-EOI-evtchn-framework.patch
    (CVE-2020-27673 XSA-332 bsc#1177411).
  - Update
    patches.suse/0004-xen-blkback-use-lateeoi-irq-binding.patch
    (CVE-2020-27673 XSA-332 bsc#1177411).
  - Update
    patches.suse/0005-xen-netback-use-lateeoi-irq-binding.patch
    (CVE-2020-27673 XSA-332 bsc#1177411).
  - Update
    patches.suse/0006-xen-scsiback-use-lateeoi-irq-binding.patch
    (CVE-2020-27673 XSA-332 bsc#1177411).
  - Update
    patches.suse/0008-xen-pciback-use-lateeoi-irq-binding.patch
    (CVE-2020-27673 XSA-332 bsc#1177411).
  - Update
    patches.suse/0009-xen-events-switch-user-event-channels-to-lateeoi-mod.patch
    (CVE-2020-27673 XSA-332 bsc#1177411).
  - Update
    patches.suse/0010-xen-events-use-a-common-cpu-hotplug-hook-for-event-c.patch
    (CVE-2020-27673 XSA-332 bsc#1177411).
  - Update
    patches.suse/0011-xen-events-defer-eoi-in-case-of-excessive-number-of-.patch
    (CVE-2020-27673 XSA-332 bsc#1177411).
  - Update
    patches.suse/0012-xen-events-block-rogue-events-for-some-time.patch
    (CVE-2020-27673 XSA-332 bsc#1177411).
  - Update
    patches.suse/XEN-uses-irqdesc-irq_data_common-handler_data-to-sto.patch
    (CVE-2020-27673 XSA-332 bsc#1065600).
  - Update
    patches.suse/xen-events-avoid-removing-an-event-channel-while-han.patch
    (CVE-2020-27675 XSA-331 bsc#1177410).
  - Update
    patches.suse/xen-events-don-t-use-chip_data-for-legacy-IRQs.patch
    (CVE-2020-27673 XSA-332 bsc#1065600).
  - Added CVE numbers for above patches.
  - commit 77fc141
* Wed Jan 20 2021 msuchanek@suse.de
  - Exclude Symbols.list again.
    Removing the exclude builds vanilla/linux-next builds.
    Fixes: 55877625c800 ("kernel-binary.spec.in: Package the obj_install_dir as explicit filelist.")
  - commit a1728f2
* Wed Jan 20 2021 tzimmermann@suse.de
  - drm/msm: Fix WARN_ON() splat in _free_object() (bsc#1129770)
    Backporting changes:
    * context changes
  - commit 2cc0fa0
* Wed Jan 20 2021 tzimmermann@suse.de
  - drm: sun4i: hdmi: Fix inverted HPD result (bsc#1112178)
    Backporting changes:
    * context changes
  - commit 67fea56
* Tue Jan 19 2021 msuchanek@suse.de
  - floppy: reintroduce O_NDELAY fix (boo#1181018).
  - commit 7b17926
* Tue Jan 19 2021 ykaukab@suse.de
  - arm64: pgtable: Ensure dirty bit is preserved across
    pte_wrprotect() (bsc#1180130).
  - arm64: pgtable: Fix pte_accessible() (bsc#1180130).
  - commit 50f7568
* Tue Jan 19 2021 tbogendoerfer@suse.de
  - netfilter: clear skb->next in NF_HOOK_LIST() (bsc#1180765
    CVE-2021-20177).
  - commit 979e397
* Tue Jan 19 2021 tzimmermann@suse.de
  - drm/amdkfd: Put ACPI table after using it (bsc#1129770)
    Backporting changes:
    * context changes
  - commit d706a4a
* Tue Jan 19 2021 tzimmermann@suse.de
  - drm/msm: Fix use-after-free in msm_gem with carveout (bsc#1129770)
    Backporting changes:
    * context changes
    * removed reference to msm_gem_is_locked()
  - commit 2473171
* Tue Jan 19 2021 tzimmermann@suse.de
  - drm/tve200: Fix handling of platform_get_irq() error (bsc#1129770)
  - commit 74c8661
* Tue Jan 19 2021 tzimmermann@suse.de
  - drm/msm: Avoid div-by-zero in dpu_crtc_atomic_check() (bsc#1129770)
    Backporting changes:
    * context changes
    * moved num_mixers from struct dpu_crtc_state to struct dpu_crtc
  - commit 235aa45
* Tue Jan 19 2021 tzimmermann@suse.de
  - blacklist.conf: Append 'drm/i915: Clear the repeater bit on HDCP disable'
  - commit dd4f37c
* Tue Jan 19 2021 tzimmermann@suse.de
  - blacklist.conf: Append 'drm/i915: Fix sha_text population code'
  - commit 7f2c93c
* Tue Jan 19 2021 tzimmermann@suse.de
  - drm/i915: Clear the repeater bit on HDCP disable (bsc#1112178)
    Backporting changes:
    * context changes
  - commit 3d4aebe
* Tue Jan 19 2021 tzimmermann@suse.de
  - drm/i915: Fix sha_text population code (bsc#1112178)
    Backporting changes:
    * context changes
  - commit b3b6c93
* Tue Jan 19 2021 tzimmermann@suse.de
  - blacklist.conf: Append 'drm/i915: Move cec_notifier to intel_hdmi_connector_unregister, v2.'
  - commit 5511837
* Tue Jan 19 2021 tzimmermann@suse.de
  - blacklist.conf: Append 'drm/amd/powerplay: fix a crash when overclocking Vega M'
  - commit 17cad3d
* Tue Jan 19 2021 tzimmermann@suse.de
  - blacklist.conf: Append 'drm/i915: Move cec_notifier to intel_hdmi_connector_unregister, v2.'
  - commit 15580f1
* Tue Jan 19 2021 tzimmermann@suse.de
  - drm/vgem: Replace opencoded version of drm_gem_dumb_map_offset() (bsc#1112178)
    Backporting changes:
    * context changes
  - commit fb51493
* Tue Jan 19 2021 tzimmermann@suse.de
  - drm/amd/powerplay: fix a crash when overclocking Vega M (bsc#1113956)
  - commit 909795d
* Tue Jan 19 2021 tzimmermann@suse.de
  - drm: sun4i: hdmi: Remove extra HPD polling (bsc#1112178)
  - commit 76afd33
* Tue Jan 19 2021 neilb@suse.de
  - NFS: nfs_igrab_and_active must first reference the superblock
    (git-fixes).
  - pNFS: Mark layout for return if return-on-close was not sent
    (git-fixes).
  - net: sunrpc: interpret the return value of kstrtou32 correctly
    (git-fixes).
  - NFS4: Fix use-after-free in trace_event_raw_event_nfs4_set_lock
    (git-fixes).
  - NFS: switch nfsiod to be an UNBOUND workqueue (git-fixes).
  - lockd: don't use interval-based rebinding over TCP (git-fixes).
  - NFSv4.2: condition READDIR's mask for security label based on
    LSM state (git-fixes).
  - md/raid10: initialize r10_bio->read_slot before use (git-fixes).
  - md: fix a warning caused by a race between concurrent
    md_ioctl()s (git-fixes).
  - nfs_common: need lock during iterate through the list
    (git-fixes).
  - nfsd: Fix message level for normal termination (git-fixes).
  - commit 4d661ca
* Tue Jan 19 2021 neilb@suse.de
  - Remove patches.suse/nfs-mark-nfsiod-cpu-intensive.patch
    About to get replaced by upstream version.
  - commit 7d82450
* Mon Jan 18 2021 tbogendoerfer@suse.de
  - tun: correct header offsets in napi frags mode (bsc#1180812
    CVE-2021-0342).
  - commit 0ae29aa
* Mon Jan 18 2021 denis.kirjanov@suse.com
  - net: stmmac: dwmac-sunxi: Provide TX and RX fifo sizes
    (git-fixes).
  - commit 91e8143
* Mon Jan 18 2021 mgorman@suse.de
  - blacklist.conf: Removal of HMM function breaks KABI
  - commit 1cd8ef8
* Mon Jan 18 2021 mgorman@suse.de
  - blacklist.conf: SLUB not enabled in kernel config
  - commit 6202d29
* Mon Jan 18 2021 mgorman@suse.de
  - page_frag: Recover from memory pressure (git fixes
    (mm/pgalloc)).
  - commit 4457ecd
* Mon Jan 18 2021 mgorman@suse.de
  - mm, page_alloc: fix core hung in free_pcppages_bulk() (git fixes
    (mm/hotplug)).
  - commit 840f046
* Mon Jan 18 2021 mgorman@suse.de
  - blacklist.conf: CMA not enabled in kernel config
  - commit 4513c12
* Mon Jan 18 2021 mgorman@suse.de
  - blacklist.conf: CMA not enabled in kernel config
  - commit 016b829
* Mon Jan 18 2021 mgorman@suse.de
  - mm/slab: use memzero_explicit() in kzfree() (git fixes
    (mm/slab)).
  - commit e7d7f67
* Mon Jan 18 2021 mgorman@suse.de
  - Refresh
    patches.suse/mm-fix-mremap-not-considering-huge-pmd-devmap.patch.
  - commit 2a2a762
* Mon Jan 18 2021 mgorman@suse.de
  - blacklist.conf: SLUB not enabled in kernel config
  - commit 1d41e83
* Mon Jan 18 2021 mgorman@suse.de
  - blacklist.conf: SLUB not enabled in kernel config
  - commit f29f5d9
* Mon Jan 18 2021 mgorman@suse.de
  - mm/page_alloc: fix watchdog soft lockups during
    set_zone_contiguous() (git fixes (mm/pgalloc)).
  - commit d02bb6f
* Mon Jan 18 2021 mgorman@suse.de
  - mm/rmap: map_pte() was not handling private ZONE_DEVICE page
    properly (git fixes (mm/hmm)).
  - commit 433e971
* Mon Jan 18 2021 mgorman@suse.de
  - mm: hwpoison: disable memory error handling on 1GB hugepage
    (git fixes (mm/hwpoison)).
  - commit 5bd329a
* Fri Jan 15 2021 aabdallah@suse.de
  - KVM: SVM: Initialize prev_ga_tag before use (bsc#1180912).
  - commit e44aeda
* Fri Jan 15 2021 tiwai@suse.de
  - Move the build fix for g2d driver into patches.suse
    It's actaully no kABI fix but the pure build fix, hence it must be
    out of patches.kabi
  - commit 9c47154
* Thu Jan 14 2021 tbogendoerfer@suse.de
  - Refresh
    patches.suse/IB-hfi1-Ensure-correct-mm-is-used-at-all-times.patch.
    Fixed backport (removed one line too much, d'oh).
  - commit 6dc4356
* Wed Jan 13 2021 tbogendoerfer@suse.de
  - IB/hfi1: Ensure correct mm is used at all times (bsc#1179878
    CVE-2020-27835).
  - commit 39a2b87
* Wed Jan 13 2021 denis.kirjanov@suse.com
  - net: stmmac: Enable 16KB buffer size (git-fixes).
  - commit f223efb
* Wed Jan 13 2021 denis.kirjanov@suse.com
  - net: stmmac: 16KB buffer must be 16 byte aligned (git-fixes).
  - commit 3ccc81e
* Wed Jan 13 2021 denis.kirjanov@suse.com
  - net: stmmac: RX buffer size must be 16 byte aligned (git-fixes).
  - commit 05ff9e2
* Wed Jan 13 2021 denis.kirjanov@suse.com
  - net: stmmac: Do not accept invalid MTU values (git-fixes).
  - commit 63ae7fc
* Wed Jan 13 2021 denis.kirjanov@suse.com
  - net: usb: lan78xx: Fix error message format specifier (git-fixes).
  - commit 3dd5ee1
* Wed Jan 13 2021 denis.kirjanov@suse.com
  - caif: no need to check return value of debugfs_create functions (git-fixes).
  - commit 4fb5202
* Wed Jan 13 2021 denis.kirjanov@suse.com
  - drivers/net: Use octal not symbolic permissions (git-fixes). - Refresh patches.suse/msft-hv-1661-scsi-netvsc-Use-the-vmbus-function-to-calculate-ring.patch. - Refresh patches.suse/msft-hv-1707-hv_netvsc-fix-network-namespace-issues-with-VF-suppo.patch.
  - commit e4e6ab9
* Wed Jan 13 2021 denis.kirjanov@suse.com
  - net: dsa: LAN9303: select REGMAP when LAN9303 enable (git-fixes).
  - commit 5d03a23
* Wed Jan 13 2021 denis.kirjanov@suse.com
  - net: phy: broadcom: Fix RGMII delays configuration for BCM54210E (git-fixes).
  - commit dc3e380
* Wed Jan 13 2021 denis.kirjanov@suse.com
  - net: phy: Allow BCM54616S PHY to setup internal TX/RX clock delay (git-fixes).
  - commit 287fdc5
* Wed Jan 13 2021 tiwai@suse.de
  - Drop uvcvideo patch that doesn't build
  - commit 298bbff
* Tue Jan 12 2021 tiwai@suse.de
  - blacklist.conf: remove invalid entry, already backported
  - commit a469334
* Tue Jan 12 2021 mgorman@suse.de
  - blacklist.conf: Tables not used currently in-tree
  - commit 2aec284
* Tue Jan 12 2021 mgorman@suse.de
  - blacklist.conf: UP not enabled in config
  - commit 9b055fe
* Tue Jan 12 2021 oneukum@suse.com
  - blacklist.conf: build fix not relevant in our config
  - commit eaf3550
* Tue Jan 12 2021 oneukum@suse.com
  - docs: Fix reST markup when linking to sections (git-fixes).
  - commit 2ffe4fe
* Tue Jan 12 2021 oneukum@suse.com
  - blacklist.conf: kABI
  - commit 546297f
* Mon Jan 11 2021 msuchanek@suse.de
  - powerpc/perf: Fix crashes with generic_compat_pmu & BHRB
    (bsc#1178900 ltc#189284 git-fixes).
  - commit 5b292b4
* Mon Jan 11 2021 msuchanek@suse.de
  - powerpc/perf: Add generic compat mode pmu driver (bsc#1178900
    ltc#189284).
  - powerpc/perf: init pmu from core-book3s (bsc#1178900
    ltc#189284).
  - commit 2d3c61b
* Mon Jan 11 2021 bp@suse.de
  - x86/resctrl: Don't move a task to the same resource group
    (bsc#1112178).
  - commit 162f4b0
* Mon Jan 11 2021 bp@suse.de
  - x86/resctrl: Use an IPI instead of task_work_add() to update
    PQR_ASSOC MSR (bsc#1112178).
  - commit 304df7d
* Mon Jan 11 2021 denis.kirjanov@suse.com
  - net: qca_spi: Move reset_count to struct qcaspi (git-fixes).
  - commit 09d7b00
* Mon Jan 11 2021 denis.kirjanov@suse.com
  - net: bcmgenet: reapply manual settings to the PHY (git-fixes).
  - commit 7d07690
* Mon Jan 11 2021 denis.kirjanov@suse.com
  - net: phy: micrel: Discern KSZ8051 and KSZ8795 PHYs (git-fixes).
  - commit d3b5290
* Mon Jan 11 2021 denis.kirjanov@suse.com
  - net: phy: micrel: make sure the factory test bit is cleared
    (git-fixes).
  - commit 043ec37
* Mon Jan 11 2021 denis.kirjanov@suse.com
  - net: stmmac: fix length of PTP clock's name string (git-fixes).
  - commit 6c3c8e0
* Mon Jan 11 2021 denis.kirjanov@suse.com
  - net: stmmac: gmac4+: Not all Unicast addresses may be available
    (git-fixes).
  - commit eac7cd9
* Mon Jan 11 2021 denis.kirjanov@suse.com
  - net: ethernet: stmmac: Fix signedness bug in
    ipq806x_gmac_of_parse() (git-fixes).
  - commit bff5c88
* Mon Jan 11 2021 denis.kirjanov@suse.com
  - net: stmmac: dwmac-meson8b: Fix signedness bug in probe
    (git-fixes).
  - commit 84a3dda
* Mon Jan 11 2021 denis.kirjanov@suse.com
  - net: broadcom/bcmsysport: Fix signedness in bcm_sysport_probe()
    (git-fixes).
  - commit 227f036
* Mon Jan 11 2021 denis.kirjanov@suse.com
  - blacklist.conf: update the blacklist
  - commit 250ebee
* Mon Jan 11 2021 tiwai@suse.de
  - USB: serial: iuu_phoenix: fix DMA from stack (git-fixes).
  - usb: gadget: configfs: Preserve function ordering after bind
    failure (git-fixes).
  - usb: gadget: select CONFIG_CRC32 (git-fixes).
  - usb: gadget: f_uac2: reset wMaxPacketSize (git-fixes).
  - usb: dwc3: ulpi: Use VStsDone to detect PHY regs access
    completion (git-fixes).
  - USB: yurex: fix control-URB timeout handling (git-fixes).
  - usb: chipidea: ci_hdrc_imx: add missing put_device() call in
    usbmisc_get_init_data() (git-fixes).
  - USB: gadget: legacy: fix return error code in acm_ms_bind()
    (git-fixes).
  - USB: xhci: fix U1/U2 handling for hardware with XHCI_INTEL_HOST
    quirk set (git-fixes).
  - dmaengine: xilinx_dma: fix mixed_enum_type coverity warning
    (git-fixes).
  - dmaengine: xilinx_dma: check dma_async_device_register return
    value (git-fixes).
  - Revert "device property: Keep secondary firmware node secondary
    by type" (git-fixes).
  - wan: ds26522: select CONFIG_BITREVERSE (git-fixes).
  - wil6210: select CONFIG_CRC32 (git-fixes).
  - ethernet: ucc_geth: fix use-after-free in ucc_geth_remove()
    (git-fixes).
  - ALSA: pcm: Clear the full allocated memory at hw_params
    (git-fixes).
  - misc: vmw_vmci: fix kernel info-leak by initializing dbells
    in vmci_ctx_get_chkpt_doorbells() (git-fixes).
  - media: gp8psk: initialize stats at power control logic
    (git-fixes).
  - commit 2f3aec2
* Mon Jan 11 2021 bp@suse.de
  - x86/mtrr: Correct the range check before performing MTRR type
    lookups (bsc#1112178).
  - commit 0c96651
* Mon Jan 11 2021 bp@suse.de
  - x86/mm: Fix leak of pmd ptlock (bsc#1112178).
  - commit aeba3ea
* Mon Jan 11 2021 jgross@suse.com
  - xen: support having only one event pending per watch
    (bsc#1179508 XSA-349 CVE-2020-29568).
  - commit d884e81
* Mon Jan 11 2021 jgross@suse.com
  - xen: revert Allow watches discard events before queueing
    (bsc#1179508 XSA-349 CVE-2020-29568).
  - commit 2a4a8da
* Mon Jan 11 2021 jgross@suse.com
  - xen: revert Add 'will_handle' callback support in
    xenbus_watch_path() (bsc#1179508 XSA-349 CVE-2020-29568).
  - commit 6baf8b8
* Mon Jan 11 2021 jgross@suse.com
  - xen: revert Support will_handle watch callback (bsc#1179508
    XSA-349 CVE-2020-29568).
  - commit 3918801
* Mon Jan 11 2021 mgorman@suse.de
  - mm: don't wake kswapd prematurely when watermark boosting is
    disabled (git fixes (mm/vmscan)).
  - commit b2e95ac
* Mon Jan 11 2021 jgross@suse.com
  - xen: revert Count pending messages for each watch (bsc#1179508
    XSA-349 CVE-2020-29568).
  - commit 9d30f4d
* Mon Jan 11 2021 jgross@suse.com
  - xen: revert Disallow pending watch messages (bsc#1179508
    XSA-349 CVE-2020-29568).
  - commit d039881
* Mon Jan 11 2021 jgross@suse.com
  - xen-blkback: set ring->xenblkd to NULL after kthread_stop()
    (bsc#1179509 XSA-350 CVE-2020-29569).
  - commit 1aab73c
* Mon Jan 11 2021 jgross@suse.com
  - xenbus/xenbus_backend: Disallow pending watch messages
    (bsc#1179508 XSA-349 CVE-2020-29568).
  - commit 0cdf358
* Mon Jan 11 2021 jgross@suse.com
  - xen/xenbus: Count pending messages for each watch (bsc#1179508
    XSA-349 CVE-2020-29568).
  - commit a14bb56
* Mon Jan 11 2021 jgross@suse.com
  - xen/xenbus/xen_bus_type: Support will_handle watch callback
    (bsc#1179508 XSA-349 CVE-2020-29568).
  - commit 33a4600
* Mon Jan 11 2021 jgross@suse.com
  - xen/xenbus: Add 'will_handle' callback support in
    xenbus_watch_path() (bsc#1179508 XSA-349 CVE-2020-29568).
  - commit 5ef1497
* Mon Jan 11 2021 jgross@suse.com
  - xen/xenbus: Allow watches discard events before queueing
    (bsc#1179508 XSA-349 CVE-2020-29568).
  - commit 6f7a44e
* Fri Jan 08 2021 mkoutny@suse.com
  - sched/fair: Fix unthrottle_cfs_rq() for leaf_cfs_rq list
    (bsc#1179093).
  - sched/fair: Fix enqueue_task_fair() warning some more
    (bsc#1179093).
  - sched/fair: Fix enqueue_task_fair warning (bsc#1179093).
  - sched/fair: Fix reordering of enqueue/dequeue_task_fair()
    (bsc#1179093).
  - sched/fair: Reorder enqueue/dequeue_task_fair path
    (bsc#1179093).
  - commit 1b239da
* Fri Jan 08 2021 tiwai@suse.de
  - Drop the previous drm/nouveau fix that turned out to be superfluous (CVE-2020-25639 bsc#1176846)
  - commit 001c6e5
* Fri Jan 08 2021 tiwai@suse.de
  - Move upstreamed vgacon patch into sorted section
  - commit 73d2a02
* Fri Jan 08 2021 tiwai@suse.de
  - drm: bail out of nouveau_channel_new if channel init fails
    (CVE-2020-25639 bsc#1176846).
  - commit 55debf7
* Fri Jan 08 2021 wqu@suse.com
  - btrfs: qgroup: don't try to wait flushing if we're already
    holding a transaction (bsc#1179575).
  - commit bda1cb8
* Thu Jan 07 2021 bp@suse.de
  - x86/i8259: Use printk_deferred() to prevent deadlock
    (bsc#1112178).
  - commit d166bf5
* Thu Jan 07 2021 msuchanek@suse.de
  - Refresh patches.suse/nvdimm-Avoid-race-between-probe-and-reading-device-a.patch.
    Refresh to v2 URL
  - commit 97aafaa
* Thu Jan 07 2021 bp@suse.de
  - blacklist.conf: 44623b2818f4 crypto: x86/crc32c - fix building with clang ias
  - commit a557330
* Thu Jan 07 2021 bp@suse.de
  - x86/mm/numa: Remove uninitialized_var() usage (bsc#1112178).
  - commit 8dd9b08
* Thu Jan 07 2021 tiwai@suse.de
  - ALSA: hda/via: Fix runtime PM for Clevo W35xSS (git-fixes).
  - commit c485186
* Wed Jan 06 2021 martin.wilck@suse.com
  - scsi: core: Fix VPD LUN ID designator priorities (bsc#1178049,
    git-fixes).
  - commit 3730025
* Wed Jan 06 2021 martin.wilck@suse.com
  - Refresh
    patches.suse/ibmvnic-continue-fatal-error-reset-after-passive-ini.patch.
  - commit 5851206
* Wed Jan 06 2021 bp@suse.de
  - EDAC/amd64: Fix PCI component registration (bsc#1112178).
  - commit 522b115
* Wed Jan 06 2021 msuchanek@suse.de
  - Refresh patch metadata.
  - Refresh patches.suse/ibmvnic-continue-fatal-error-reset-after-passive-ini.patch.
  - Refresh patches.suse/ibmvnic-fix-NULL-pointer-dereference.patch.
  - commit d7a2a14
* Tue Jan 05 2021 oneukum@suse.com
  - blacklist.conf: misattributed patch. The upstream tag is wrong.
  - commit 565f00f
* Tue Jan 05 2021 ddiss@suse.de
  - target: fix XCOPY NAA identifier lookup (CVE-2020-28374,
    bsc#1178372).
  - commit 2765e76
* Tue Jan 05 2021 tiwai@suse.de
  - mwifiex: Fix possible buffer overflows in
    mwifiex_cmd_802_11_ad_hoc_start (CVE-2020-36158 bsc#1180559).
  - commit a833298
* Mon Jan 04 2021 lhenriques@suse.de
  - Refresh patches.suse/ceph-fix-race-in-concurrent-_ceph_remove_cap-invocations.patch.
    Patch has been merged into mainline; refreshing Git-commit and Path-mainline
    tags in patch.
  - commit adfe820
* Mon Jan 04 2021 tiwai@suse.de
  - usb: gadget: configfs: Fix missing spin_lock_init() (git-fixes).
  - commit c3f05ce
* Mon Jan 04 2021 msuchanek@suse.de
  - powerpc/pci: Remove legacy debug code (bsc#1172145 ltc#184630
    git-fixes).
  - commit fa7242a
* Mon Jan 04 2021 heming.zhao@suse.com
  - md/cluster: fix deadlock when node is doing resync job
    (bsc#1163727).
  - md/cluster: block reshape with remote resync job (bsc#1163727).
  - md/bitmap: fix memory leak of temporary bitmap (bsc#1163727).
  - md/bitmap: md_bitmap_get_counter returns wrong blocks
    (bsc#1163727).
  - md/bitmap: md_bitmap_read_sb uses wrong bitmap blocks
    (bsc#1163727).
  - md-cluster: fix rmmod issue when md_cluster convert bitmap to
    none (bsc#1163727).
  - md-cluster: fix safemode_delay value when converting to
    clustered bitmap (bsc#1163727).
  - md-cluster: fix wild pointer of unlock_all_bitmaps()
    (bsc#1163727).
  - commit 4237378
* Mon Jan 04 2021 ptesarik@suse.cz
  - s390/dasd: fix hanging device offline processing (bsc#1144912).
  - commit 1bce0a7
* Mon Jan 04 2021 msuchanek@suse.de
  - powerpc/pci: Fix broken INTx configuration via OF (bsc#1172145
    ltc#184630).
  - powerpc/pci: Use of_irq_parse_and_map_pci() helper (bsc#1172145
    ltc#184630).
  - powerpc: Convert to using %pOF instead of full_name (bsc#1172145
    ltc#184630).
  - commit 3f7f68e
* Mon Jan 04 2021 msuchanek@suse.de
  - powerpc/pci: Remove LSI mappings on device teardown (bsc#1172145
    ltc#184630).
  - commit 871ada7
* Mon Jan 04 2021 tiwai@suse.de
  - staging: wlan-ng: fix out of bounds read in
    prism2sta_probe_usb() (git-fixes).
  - video: fbdev: neofb: fix memory leak in neo_scan_monitor()
    (git-fixes).
  - usb: gadget: net2280: fix memory leak on