The SUSE Linux Enterprise 15 SP4 kernel was updated to receive various security and bugfixes. The following security bugs were fixed: * CVE-2023-2985: Fixed an use-after-free vulnerability in hfsplus_put_super in fs/hfsplus/super.c that could allow a local user to cause a denial of service . * CVE-2023-3117: Fixed an use-after-free vulnerability in the netfilter subsystem when processing named and anonymous sets in batch requests that could allow a local user with CAP_NET_ADMIN capability to crash or potentially escalate their privileges on the system . * CVE-2023-3390: Fixed an use-after-free vulnerability in the netfilter subsystem in net/netfilter/nf_tables_api.c that could allow a local attacker with user access to cause a privilege escalation issue . * CVE-2023-3812: Fixed an out-of-bounds memory access flaw in the TUN/TAP device driver functionality that could allow a local user to crash or potentially escalate their privileges on the system . * CVE-2023-20593: Fixed a ZenBleed issue in "Zen 2" CPUs that could allow an attacker to potentially access sensitive information . * CVE-2023-31248: Fixed an use-after-free vulnerability in nft_chain_lookup_byid that could allow a local attacker to escalate their privilege . * CVE-2023-35001: Fixed an out-of-bounds memory access flaw in nft_byteorder that could allow a local attacker to escalate their privilege . The following non-security bugs were fixed: * ACPI: utils: Fix acpi_evaluate_dsm_typed redefinition error . * ALSA: fireface: make read-only const array for model names static . * ALSA: hda/realtek - remove 3k pull low procedure . * ALSA: hda/realtek: Add quirk for ASUS ROG G614Jx . * ALSA: hda/realtek: Add quirk for ASUS ROG GA402X . * ALSA: hda/realtek: Add quirk for ASUS ROG GX650P . * ALSA: hda/realtek: Add quirk for ASUS ROG GZ301V . * ALSA: hda/realtek: Add quirk for Clevo NPx0SNx . * ALSA: hda/realtek: Add quirk for Clevo NS70AU . * ALSA: hda/realtek: Add quirks for Unis H3C Desktop B760 Q760 . * ALSA: hda/realtek: Add support for DELL Oasis 13/14/16 laptops . * ALSA: hda/realtek: Amend G634 quirk to enable rear speakers . * ALSA: hda/realtek: Enable Mute LED on HP Laptop 15s-eq2xxx . * ALSA: hda/realtek: Fix generic fixup definition for cs35l41 amp . * ALSA: hda/realtek: Whitespace fix . * ALSA: hda: fix a possible null-pointer dereference due to data race in snd_hdac_regmap_sync . * ALSA: oxfw: make read-only const array models static . * ALSA: pcm: Fix potential data race at PCM memory allocation helpers . * ASoC: codecs: wcd-mbhc-v2: fix resource leaks on component remove . * ASoC: codecs: wcd934x: fix resource leaks on component remove . * ASoC: codecs: wcd938x: fix codec initialisation race . * ASoC: codecs: wcd938x: fix dB range for HPHL and HPHR . * ASoC: codecs: wcd938x: fix missing clsh ctrl error handling . * ASoC: codecs: wcd938x: fix soundwire initialisation race . * ASoC: tegra: Fix ADX byte map . * ASoC: tegra: Fix AMX byte map . * Add MODULE_FIRMWARE for FIRMWARE_TG357766 . * Documentation: ABI: sysfs-class-net-qmi: pass_through contact update . * Documentation: bonding: fix the doc of peer_notif_delay . * Documentation: timers: hrtimers: Make hybrid union historical . * Enable NXP SNVS RTC driver for i.MX 8MQ/8MP * Fix documentation of panic_on_warn . * IB/hfi1: Use bitmap_zalloc when applicable * PCI/PM: Avoid putting EloPOS E2/S2/H2 PCIe Ports in D3cold . * PCI: Add function 1 DMA alias quirk for Marvell 88SE9235 . * RDMA/rxe: Fix access checks in rxe_check_bind_mw * Revert "arm64: dts: zynqmp: Add address-cells property to interrupt * Revert "drm/amd/display: edp do not add non-edid timings" . * USB: dwc2: Fix some error handling paths . * USB: dwc2: platform: Improve error reporting for problems during .remove . * USB: gadget: udc: core: Offload usb_udc_vbus_handler processing . * USB: gadget: udc: core: Prevent soft_connect_store race . * USB: serial: option: add LARA-R6 01B PIDs . * Update config and supported.conf files due to renaming. * apparmor: fix missing error check for rhashtable_insert_fast . * arm64/mm: mark private VM_FAULT_X defines as vm_fault_t * arm64: dts: microchip: sparx5: do not use PSCI on reference boards * arm64: vdso: Pass to virt_to_page * arm64: xor-neon: mark xor_arm64_neon_* static * can: bcm: Fix UAF in bcm_proc_show . * cifs: add a warning when the in-flight count goes negative . * cifs: address unused variable warning . * cifs: do all necessary checks for credits within or before locking . * cifs: fix lease break oops in xfstest generic/098 . * cifs: fix max_credits implementation . * cifs: fix session state check in reconnect to avoid use-after-free issue . * cifs: fix session state check in smb2_find_smb_ses . * cifs: fix session state transition to avoid use-after-free issue . * cifs: fix sockaddr comparison in iface_cmp . * cifs: fix status checks in cifs_tree_connect . * cifs: log session id when a matching ses is not found . * cifs: new dynamic tracepoint to track ses not found errors . * cifs: prevent use-after-free by freeing the cfile later . * cifs: print all credit counters in DebugData . * cifs: print client_guid in DebugData . * cifs: print more detail when invalidate_inode_mapping fails . * cifs: print nosharesock value while dumping mount options . * clk: qcom: camcc-sc7180: Add parent dependency to all camera GDSCs . * clk: qcom: gcc-ipq6018: Use floor ops for sdcc clocks . * codel: fix kernel-doc notation warnings . * crypto: kpp - Add helper to set reqsize . * crypto: qat - Use helper to set reqsize . * devlink: fix kernel-doc notation warnings . * docs: networking: Update codeaurora references for rmnet . * drm/amd/display: Correct `DMUB_FW_VERSION` macro . * drm/amdgpu: Set vmbo destroy after pt bo is created . * drm/amdgpu: Validate VM ioctl flags . * drm/amdgpu: avoid restore process run into dead loop . * drm/amdgpu: fix clearing mappings for BOs that are always valid in VM . * drm/atomic: Allow vblank-enabled + self-refresh "disable" . * drm/atomic: Fix potential use-after-free in nonblocking commits . * drm/bridge: tc358768: Add atomic_get_input_bus_fmts implementation . * drm/bridge: tc358768: fix TCLK_TRAILCNT computation . * drm/bridge: tc358768: fix THS_TRAILCNT computation . * drm/bridge: tc358768: fix THS_ZEROCNT computation . * drm/client: Fix memory leak in drm_client_target_cloned . * drm/i915/psr: Use hw.adjusted mode when calculating io/fast wake times . * drm/i915: Fix one wrong caching mode enum usage . * drm/msm/disp/dpu: get timing engine status from intf status register . * drm/msm/dpu: Set DPU_DATA_HCTL_EN for in INTF_SC7180_MASK . * drm/panel: simple: Add Powertip PH800480T013 drm_display_mode flags . * drm/panel: simple: Add connector_type for innolux_at043tn24 . * drm/ttm: Do not leak a resource on swapout move error . * dt-bindings: phy: brcm,brcmstb-usb-phy: Fix error in "compatible" conditional schema . * ext4: Fix reusing stale buffer heads from last failed mounting . * ext4: add EA_INODE checking to ext4_iget . * ext4: add ext4_sb_block_valid refactored out of ext4_inode_block_valid . * ext4: add lockdep annotations for i_data_sem for ea_inode"s . * ext4: add strict range checks while freeing blocks . * ext4: avoid deadlock in fs reclaim with page writeback . * ext4: bail out of ext4_xattr_ibody_get fails for any reason . * ext4: block range must be validated before use in ext4_mb_clear_bb . * ext4: check iomap type only if ext4_iomap_begin does not fail . * ext4: disallow ea_inodes with extended attributes . * ext4: fail ext4_iget if special inode unallocated . * ext4: fix WARNING in ext4_update_inline_data . * ext4: fix WARNING in mb_find_extent . * ext4: fix bug_on in __es_tree_search caused by bad quota inode . * ext4: fix data races when using cached status extents . * ext4: fix deadlock when converting an inline directory in nojournal mode . * ext4: fix i_disksize exceeding i_size problem in paritally written case . * ext4: fix lockdep warning when enabling MMP . * ext4: fix task hung in ext4_xattr_delete_inode . * ext4: fix to check return value of freeze_bdev in ext4_shutdown . * ext4: fix use-after-free read in ext4_find_extent for bigalloc + inline . * ext4: improve error handling from ext4_dirhash . * ext4: improve error recovery code paths in __ext4_remount . * ext4: move where set the MAY_INLINE_DATA flag is set . * ext4: only update i_reserved_data_blocks on successful block allocation . * ext4: refactor ext4_free_blocks to pull out ext4_mb_clear_bb . * ext4: refuse to create ea block when umounted . * ext4: set lockdep subclass for the ea_inode in ext4_xattr_inode_cache_find . * ext4: turn quotas off if mount failed after enabling quotas . * ext4: update s_journal_inum if it changes after journal replay . * ext4: use ext4_fc_tl_mem in fast-commit replay path . * ext4: zero i_disksize when initializing the bootloader inode . * fbdev: au1200fb: Fix missing IRQ check in au1200fb_drv_probe . * fbdev: imxfb: warn about invalid left/right margin . * fuse: ioctl: translate ENOSYS in outarg . * fuse: revalidate: do not invalidate if interrupted . * hvcs: Fix hvcs port reference counting . * hvcs: Get reference to tty in remove . * hvcs: Synchronize hotplug remove with port free . * hvcs: Use dev_groups to manage hvcs device attributes . * hvcs: Use driver groups to manage driver attributes . * hvcs: Use vhangup in hotplug remove . * hwmon: Allow setting sample averaging . * hwmon: Fix problems with temperature monitoring on ADM1272 . * i2c: xiic: Defer xiic_wakeup and __xiic_start_xfer in xiic_process . * i2c: xiic: Do not try to handle more interrupt events after error . * inotify: Avoid reporting event with invalid wd . * jbd2: fix data missing when reusing bh which is ready to be checkpointed . * jdb2: Do not refuse invalidation of already invalidated buffers . * kABI: do not check external trampolines for signature . * kabi/severities: Add VAS symbols changed due to recent fix VAS accelerators are directly tied to the architecture, there is no reason to have out-of- tree production drivers * kselftest: vDSO: Fix accumulation of uninitialized ret when CLOCK_REALTIME is undefined . * leds: trigger: netdev: Recheck NETDEV_LED_MODE_LINKUP on dev rename . * media: atomisp: gmin_platform: fix out_len in gmin_get_config_dsm_var . * media: cec: i2c: ch7322: also select REGMAP . * media: i2c: Correct format propagation for st-mipid02 . * media: usb: Check az6007_read return value . * media: usb: siano: Fix warning due to null work_func_t function pointer . * media: venus: helpers: Fix ALIGN of non power of two . * media: videodev2.h: Fix struct v4l2_input tuner index comment . * memcg: drop kmem.limit_in_bytes . * mmc: core: disable TRIM on Kingston EMMC04G-M627 . * mmc: sdhci: fix DMA configure compatibility issue when 64bit DMA mode is used . * net: mana: Add support for vlan tagging . * net: phy: prevent stale pointer dereference in phy_init . * ntb: amd: Fix error handling in amd_ntb_pci_driver_init . * ntb: idt: Fix error handling in idt_pci_driver_init . * ntb: intel: Fix error handling in intel_ntb_pci_driver_init . * ntb: ntb_tool: Add check for devm_kcalloc . * ntb: ntb_transport: fix possible memory leak while device_register fails . * nvme-multipath: support io stats on the mpath device . * nvme: introduce nvme_start_request . * ocfs2: Switch to security_inode_init_security . * ocfs2: check new file size on fallocate call . * ocfs2: fix use-after-free when unmounting read-only filesystem . * opp: Fix use-after-free in lazy_opp_tables after probe deferral . * phy: Revert "phy: Remove SOC_EXYNOS4212 dep. from PHY_EXYNOS4X12_USB" . * phy: tegra: xusb: Clear the driver reference in usb-phy dev . * phy: tegra: xusb: check return value of devm_kzalloc . * pie: fix kernel-doc notation warning . * pinctrl: amd: Detect internal GPIO0 debounce handling . * pinctrl: amd: Fix mistake in handling clearing pins at startup . * pinctrl: amd: Only use special debounce behavior for GPIO 0 . * powerpc/64: Only WARN if __pa/__va called with bad addresses . * powerpc/64s: Fix VAS mm use after free . * powerpc/book3s64/mm: Fix DirectMap stats in /proc/meminfo . * powerpc/bpf: Fix use of user_pt_regs in uapi . * powerpc/ftrace: Remove ftrace init tramp once kernel init is complete . * powerpc/interrupt: Do not read MSR from interrupt_exit_kernel_prepare . * powerpc/mm/dax: Fix the condition when checking if altmap vmemap can cross- boundary . * powerpc/mm: Switch obsolete dssall to .long . * powerpc/powernv/sriov: perform null check on iov before dereferencing iov . * powerpc/powernv/vas: Assign real address to rx_fifo in vas_rx_win_attr . * powerpc/prom_init: Fix kernel config grep . * powerpc/secvar: fix refcount leak in format_show . * powerpc/xics: fix refcount leak in icp_opal_init . * powerpc: clean vdso32 and vdso64 directories . * powerpc: define get_cycles macro for arch-override . * powerpc: update ppc_save_regs to save current r1 in pt_regs . * pwm: ab8500: Fix error code in probe . * pwm: imx-tpm: force "real_period" to be zero in suspend . * pwm: sysfs: Do not apply state to already disabled PWMs . * rpm/check-for-config-changes: ignore also RISCV_ISA_ _and DYNAMIC_SIGFRAME They depend on CONFIG_TOOLCHAIN_HAS__. * rsi: remove kernel-doc comment marker . * s390/ap: fix status returned by ap_aqic . * s390/ap: fix status returned by ap_qact . * s390/debug: add _ASM_S390_ prefix to header guard . * s390/percpu: add READ_ONCE to arch_this_cpu_to_op_simple . * s390: define RUNTIME_DISCARD_EXIT to fix link error with GNU ld less than 2.36 . * s390: discard .interp section . * sched/debug: fix dentry leak in update_sched_domain_debugfs * sched: Fix DEBUG !SCHEDSTATS warn * security: keys: Modify mismatched function name . * selftests: mptcp: depend on SYN_COOKIES . * selftests: mptcp: sockopt: return error if wrong mark . * selftests: rtnetlink: remove netdevsim device after ipsec offload test . * selftests: tc: add "ct" action kconfig dep . * selftests: tc: add ConnTrack procfs kconfig . * selftests: tc: set timeout to 15 minutes . * signal/powerpc: On swapcontext failure force SIGSEGV . * signal: Replace force_sigsegv with force_fatal_sig . * smb3: do not reserve too many oplock credits . * smb3: missing null check in SMB2_change_notify . * smb: client: fix broken file attrs with nodfs mounts . * smb: client: fix missed ses refcounting . * smb: client: fix parsing of source mount option . * smb: client: fix shared DFS root mounts with different prefixes . * smb: client: fix warning in CIFSFindFirst . * smb: client: fix warning in CIFSFindNext . * smb: client: fix warning in cifs_match_super . * smb: client: fix warning in cifs_smb3_do_mount . * smb: client: fix warning in generic_ip_connect . * smb: client: improve DFS mount check . * smb: client: remove redundant pointer "server" . * smb: delete an unnecessary statement . * smb: move client and server files to common directory fs/smb . * smb: remove obsolete comment . * soundwire: qcom: fix storing port config out-of-bounds . * spi: bcm-qspi: return error if neither hif_mspi nor mspi is available . * spi: bcm63xx: fix max prepend length . * tpm: tpm_vtpm_proxy: fix a race condition in /dev/vtpmx creation . * tty: serial: fsl_lpuart: add earlycon for imx8ulp platform . * ubi: Fix failure attaching when vid_hdr offset equals to page size . * ubi: ensure that VID header offset + VID header size less than= alloc, size . * udf: Avoid double brelse in udf_rename . * udf: Define EFSCORRUPTED error code . * udf: Detect system inodes linked into directory hierarchy . * udf: Discard preallocation before extending file with a hole . * udf: Do not bother looking for prealloc extents if i_lenExtents matches i_size . * udf: Do not bother merging very long extents . * udf: Do not update file length for failed writes to inline files . * udf: Fix error handling in udf_new_inode . * udf: Fix extending file within last block . * udf: Fix preallocation discarding at indirect extent boundary . * udf: Preserve link count of system files . * udf: Truncate added extents on failed expansion . * wifi: airo: avoid uninitialized warning in airo_get_rate . * wifi: ray_cs: Drop useless status variable in parse_addr . * wifi: ray_cs: Utilize strnlen in parse_addr . * wifi: rtw89: debug: fix error code in rtw89_debug_priv_send_h2c_set . * wl3501_cs: use eth_hw_addr_set . * writeback: fix call of incorrect macro . * x86: Fix .brk attribute in linker script . * xfs: AIL needs asynchronous CIL forcing . * xfs: CIL work is serialised, not pipelined . * xfs: XLOG_STATE_IOERROR must die . * xfs: async CIL flushes need pending pushes to be made stable . * xfs: attach iclog callbacks in xlog_cil_set_ctx_write_state . * xfs: clean up the rtbitmap fsmap backend . * xfs: do not deplete the reserve pool when trying to shrink the fs . * xfs: do not reverse order of items in bulk AIL insertion . * xfs: do not run shutdown callbacks on active iclogs . * xfs: drop async cache flushes from CIL commits . * xfs: factor out log write ordering from xlog_cil_push_work . * xfs: fix getfsmap reporting past the last rt extent . * xfs: fix integer overflows in the fsmap rtbitmap and logdev backends . * xfs: fix interval filtering in multi-step fsmap queries . * xfs: fix logdev fsmap query result filtering . * xfs: fix off-by-one error when the last rt extent is in use . * xfs: fix uninitialized variable access . * xfs: make fsmap backend function key parameters const . * xfs: make the record pointer passed to query_range functions const . * xfs: move the CIL workqueue to the CIL . * xfs: move xlog_commit_record to xfs_log_cil.c . * xfs: order CIL checkpoint start records . * xfs: pass a CIL context to xlog_write . * xfs: pass explicit mount pointer to rtalloc query functions . * xfs: rework xlog_state_do_callback . * xfs: run callbacks before waking waiters in xlog_state_shutdown_callbacks . * xfs: separate out log shutdown callback processing . * xfs: wait iclog complete before tearing down AIL . * xhci: Fix TRB prefetch issue of ZHAOXIN hosts . * xhci: Fix resume issue of some ZHAOXIN hosts . * xhci: Show ZHAOXIN xHCI root hub speed correctly . ## Special Instructions and Notes: * Please reboot the system after installing this update.