The SUSE Linux Enterprise 15 SP3 kernel was updated. The following security bugs were fixed: - CVE-2022-1966: Fixed an use-after-free bug in the netfilter subsystem. This flaw allowed a local attacker with user access to cause a privilege escalation issue. - CVE-2022-1975: Fixed a sleep-in-atomic bug that allows attacker to crash linux kernel by simulating nfc device from user-space. - CVE-2022-1974: Fixed an use-after-free that could causes kernel crash by simulating an nfc device from user-space. - CVE-2020-26541: Enforce the secure boot forbidden signature database protection mechanism. - The following non-security bugs were fixed: - ACPI: PM: Block ASUS B1400CEAE from suspend to idle by default . - ACPI: sysfs: Fix BERT error region memory mapping . - ACPI: sysfs: Make sparse happy about address space in use . - ALSA: hda/conexant - Fix loopback issue with CX20632 . - ALSA: usb-audio: Optimize TEAC clock quirk . - ALSA: usb-audio: Set up sync for Saffire 6 . - ALSA: usb-audio: Skip generic sync EP parse for secondary EP . - ALSA: usb-audio: Workaround for clock setup on TEAC devices . - ASoC: dapm: Do not fold register value changes into notifications . - ASoC: max98357a: remove dependency on GPIOLIB . - ASoC: rt5645: Fix errorenous cleanup order . - ASoC: tscs454: Add endianness flag in snd_soc_component_driver . - ata: libata-transport: fix {dma|pio|xfer}_mode sysfs files . - ath9k: fix QCA9561 PA bias level . - b43: Fix assigning negative value to unsigned variable . - b43legacy: Fix assigning negative value to unsigned variable . - blk-mq: fix tag_get wait task can"t be awakened . - blk-mq: Fix wrong wakeup batch configuration which will cause hang . - block: fix bio_clone_blkg_association to associate with proper blkcg_gq . - btrfs: tree-checker: fix incorrect printk format . - cfg80211: set custom regdomain after wiphy registration . - clocksource/drivers/oxnas-rps: Fix irq_of_parse_and_map return value . - clocksource/drivers/sp804: Avoid error on multiple instances . - dma-buf: fix use of DMA_BUF_SET_NAME_{A,B} in userspace . - dmaengine: zynqmp_dma: In struct zynqmp_dma_chan fix desc_size data type . - drivers: i2c: thunderx: Allow driver to work with ACPI defined TWSI controllers . - drivers: staging: rtl8192e: Fix deadlock in rtllib_beacons_stop . - drivers: staging: rtl8192u: Fix deadlock in ieee80211_beacons_stop . - drivers: tty: serial: Fix deadlock in sa1100_set_termios . - drivers: usb: host: Fix deadlock in oxu_bus_suspend . - drm: imx: fix compiler warning with gcc-12 . - drm: msm: fix error check return value of irq_of_parse_and_map . - drm/amdgpu/cs: make commands with 0 chunks illegal behaviour . - drm/amdgpu/smu10: fix SoC/fclk units in auto mode . - drm/amdgpu/ucode: Remove firmware load type check in amdgpu_ucode_free_bo . - drm/atomic: Force bridge self-refresh-exit on CRTC switch . - drm/bridge: analogix_dp: Support PSR-exit to disable transition . - drm/i915: Fix -Wstringop-overflow warning in call to intel_read_wm_latency . - drm/i915: fix i915_globals_exit section mismatch error . - drm/komeda: return early if drm_universal_plane_init fails . - drm/msm/dsi: fix address for second DSI PHY on SDM660 . - drm/plane: Move range check for format_count earlier . - drm/radeon: fix a possible null pointer dereference . - drm/virtio: fix NULL pointer dereference in virtio_gpu_conn_get_modes . - efi: Add missing prototype for efi_capsule_setup_info . - efi: Do not import certificates from UEFI Secure Boot for T2 Macs . - fbcon: Consistently protect deferred_takeover with console_lock . - ftrace: Clean up hash direct_functions on register failures . - HID: bigben: fix slab-out-of-bounds Write in bigben_probe . - HID: multitouch: Add support for Google Whiskers Touchpad . - hwmon: Make chip parameter for with_info API mandatory . - i2c: cadence: Increase timeout per message if necessary . - i2c: ismt: Provide a DMA buffer for Interrupt Cause Logging . - iio: dummy: iio_simple_dummy: check the return value of kstrdup . - Input: bcm5974 - set missing URB_NO_TRANSFER_DMA_MAP urb flag . - Input: goodix - fix spurious key release events . - ipw2x00: Fix potential NULL dereference in libipw_xmit . - irqchip: irq-xtensa-mx: fix initial IRQ affinity . - irqchip/armada-370-xp: Do not touch Performance Counter Overflow on A375, A38x, A39x . - irqchip/aspeed-i2c-ic: Fix irq_of_parse_and_map return value . - irqchip/exiu: Fix acknowledgment of edge triggered interrupts . - iwlwifi: mvm: fix assert 1F04 upon reconfig . - KVM: fix wrong exception emulation in check_rdtsc . - KVM: nVMX: Invalidate all roots when emulating INVVPID without EPT . - KVM: nVMX: Query current VMCS when determining if MSR bitmaps are in use . - KVM: nVMX: Set LDTR to its architecturally defined value on nested VM-Exit . - KVM: nVMX: Unconditionally clear nested.pi_pending on nested VM-Enter . - KVM: s390: pv: add macros for UVC CC values . - KVM: s390: pv: avoid double free of sida page . - KVM: s390: pv: avoid stalls for kvm_s390_pv_init_vm . - KVM: s390: vsie/gmap: reduce gmap_rmap overhead . - KVM: VMX: Flush all EPTP/VPID contexts on remote TLB flush . - KVM: VMX: Use current VMCS to query WAITPKG support for MSR emulation . - KVM: x86: clflushopt should be treated as a no-op by emulation . - KVM: x86: Do not force set BSP bit when local APIC is managed by userspace . - KVM: x86: Fix emulation in writing cr8 . - KVM: x86: Fix off-by-one error in kvm_vcpu_ioctl_x86_setup_mce . - KVM: x86: Immediately reset the MMU context when the SMM flag is cleared . - KVM: x86: Inject #GP if guest attempts to toggle CR4.LA57 in 64-bit mode . - KVM: x86: Mark CR4.TSD as being possibly owned by the guest . - KVM: x86: Migrate the PIT only if vcpu0 is migrated, not any BSP . - KVM: x86: Toggling CR4.PKE does not load PDPTEs in PAE mode . - KVM: x86: Toggling CR4.SMAP does not load PDPTEs in PAE mode . - KVM: x86/cpuid: Only provide CPUID leaf 0xA if host has architectural PMU . - KVM: x86/emulator: Defer not-present segment check in __load_segment_descriptor . - KVM: x86/pmu: Fix HW_REF_CPU_CYCLES event pseudo-encoding in intel_arch_events[] . - mac80211: upgrade passive scan to active scan on DFS channels after beacon rx . - md: fix an incorrect NULL check in does_sb_need_changing . - md: fix an incorrect NULL check in md_reload_sb . - media: cx25821: Fix the warning when removing the module . - media: netup_unidvb: Do not leak SPI master in probe error path . - media: pci: cx23885: Fix the error handling in cx23885_initdev . - media: venus: hfi: avoid null dereference in deinit . - misc: rtsx: set NULL intfdata when probe fails . - mmc: block: Fix CQE recovery reset success . - mmc: jz4740: Apply DMA engine limits to maximum segment size . - modpost: fix removing numeric suffixes . - modpost: fix undefined behavior of is_arm_mapping_symbol . - mt76: check return value of mt76_txq_send_burst in mt76_txq_schedule_list . - mwifiex: add mutex lock for call in mwifiex_dfs_chan_sw_work_queue . - net: rtlwifi: properly check for alloc_workqueue failure . - nfc: st21nfca: fix incorrect sizing calculations in EVT_TRANSACTION . - nfc: st21nfca: fix incorrect validating logic in EVT_TRANSACTION . - nfc: st21nfca: fix memory leaks in EVT_TRANSACTION handling . - NFS: Do not report ENOSPC write errors twice . - nfsd: Fix null-ptr-deref in nfsd_fill_super . - PCI: hv: Fix NUMA node assignment when kernel boots with custom NUMA topology . - pcmcia: db1xxx_ss: restrict to MIPS_DB1XXX boards . - pinctrl: sunxi: fix f1c100s uart2 function . - platform/chrome: cros_ec_proto: Send command again when timeout occurs . - platform/x86: wmi: Fix driver-greater than notify vs -greater than probe race . - platform/x86: wmi: Replace read_takes_no_args with a flags field . - devfreq: rk3399_dmc: Disable edev on remove . - raid5: introduce MD_BROKEN . - rtl818x: Prevent using not initialized queues . - rtlwifi: Use pr_warn instead of WARN_ONCE . - s390: fix detection of vector enhancements facility 1 vs. vector packed decimal facility . - s390: fix strrchr implementation . - s390/cio: dont call css_wait_for_slow_path inside a lock . - s390/cio: Fix the 'type' field in s390_cio_tpi tracepoint . - s390/crypto: fix scatterwalk_unmap callers in AES-GCM . - s390/ctcm: fix potential memory leak . - s390/ctcm: fix variable dereferenced before check . - s390/dasd: fix data corruption for ESE devices . - s390/dasd: Fix read for ESE with blksize 4k . - s390/dasd: Fix read inconsistency for ESE DASD devices . - s390/dasd: prevent double format of tracks for ESE devices . - s390/ftrace: fix ftrace_update_ftrace_func implementation . - s390/lcs: fix variable dereferenced before check . - s390/mcck: fix invalid KVM guest condition check . - s390/mcck: isolate SIE instruction when setting CIF_MCCK_GUEST flag . - s390/nmi: handle guarded storage validity failures for KVM guests . - s390/nmi: handle vector validity failures for KVM guests . - s390/pv: fix the forcing of the swiotlb . - s390/qdio: cancel the ESTABLISH ccw after timeout . - s390/qdio: fix roll-back after timeout on ESTABLISH ccw . - s390/vfio-ap: fix circular lockdep when setting/clearing crypto masks . - serial: msm_serial: disable interrupts in __msm_console_write . - spi: Introduce device-managed SPI controller allocation . - spi: spi-rspi: Remove setting {src,dst}_{addr,addr_width} based on DMA direction . - spi: stm32-qspi: Fix wait_cmd timeout in APM mode . - staging: rtl8712: fix uninit-value in r871xu_drv_init . - staging: rtl8712: fix uninit-value in usb_read8 and friends . - tilcdc: tilcdc_external: fix an incorrect NULL check on list iterator . - tty: Fix a possible resource leak in icom_probe . - tty: synclink_gt: Fix null-pointer-dereference in slgt_clean . - usb: core: hcd: Add support for deferring roothub registration . - usb: dwc2: gadget: do not reset gadget"s driver-greater than bus . - usb: hcd-pci: Fully suspend across freeze/thaw cycle . - usb: host: isp116x: check return value after calling platform_get_resource . - usb: new quirk for Dell Gen 2 devices . - usb: serial: option: add Quectel BG95 modem . - vfio-ccw: Check initialized flag in cp_init . - vfio/ccw: Remove unneeded GFP_DMA . - video: fbdev: pxa3xx-gcu: release the resources correctly in pxa3xx_gcu_probe/remove . - virtio/s390: implement virtio-ccw revision 2 correctly . - vringh: Fix loop descriptors check in the indirect cases . - watchdog: wdat_wdt: Stop watchdog when rebooting the system . Special Instructions and Notes: Please reboot the system after installing this update.