The SUSE Linux Enterprise 12 SP5 kernel was updated. The following security bugs were fixed: - CVE-2020-3702: Fixed a bug which could be triggered with specifically timed and handcrafted traffic and cause internal errors in a WLAN device that lead to improper layer 2 Wi-Fi encryption with a consequent possibility of information disclosure. - CVE-2021-3752: Fixed a use after free vulnerability in the Linux kernel"s bluetooth module. - CVE-2021-40490: Fixed a race condition discovered in the ext4 subsystem that could leat to local priviledge escalation. - CVE-2021-3744: Fixed a bug which could allows attackers to cause a denial of service. - CVE-2021-3764: Fixed a bug which could allows attackers to cause a denial of service. The following non-security bugs were fixed: - be2net: Fix an error handling path in "be_probe" . - bnx2x: fix an error code in bnx2x_nic_load . - bnxt_en: Add missing DMA memory barriers . - bnxt_en: do not disable an already disabled PCI device . - bnxt: disable napi before canceling DIM . - btrfs: prevent rename2 from exchanging a subvol with a directory from different parents . - clk: at91: clk-generated: Limit the requested rate to our range . - clk: kirkwood: Fix a clocking boot regression . - crypto: x86/aes-ni-xts - use direct calls to and 4-way stride . - cxgb4: fix IRQ free race during driver unload . - debugfs: Return error during {full/open}_proxy_open on rmmod . - docs: Fix infiniband uverbs minor number . - drm/gma500: Fix end of loop tests for list_for_each_entry Backporting changes: * refresh - drm/imx: ipuv3-plane: Remove two unnecessary export symbols Backporting changes: * refreshed - drm/mediatek: Add AAL output size configuration Backporting changes: * adapted code to use writel function - drm/msm: Small msm_gem_purge fix Backporting changes: * context changes in msm_gem_purge * remove test for non-existant msm_gem_is_locked - drm/msm/dsi: Fix some reference counted resource leaks - drm/qxl: lost qxl_bo_kunmap_atomic_page in qxl_image_init_helper . - drm/rockchip: cdn-dp: fix sign extension on an int multiply for a u64 Backporting changes * context changes - dt-bindings: pwm: stm32: Add #pwm-cells . - e1000e: Do not take care about recovery NVM checksum . - e1000e: Fix an error handling path in "e1000_probe" . - e1000e: Fix the max snoop/no-snoop latency for 10M . - EDAC/i10nm: Fix NVDIMM detection . - fbmem: add margin check to fb_check_caps Backporting changes: * context chacnges in fb_set_var - Fix build warnings. Also align code location with later codestreams and improve bisectability. - fm10k: Fix an error handling path in "fm10k_probe" . - fs/select: avoid clang stack usage warning . - fuse: truncate pagecache on atomic_o_trunc . - gve: fix the wrong AdminQ buffer overflow check . - hv_netvsc: Make netvsc/VF binding check both MAC and serial number . - hv: mana: adjust mana_select_queue to old API . - hv: mana: remove netdev_lockdep_set_classes usage . - i40e: Add additional info to PHY type error . - i40e: Fix autoneg disabling for non-10GBaseT links . - i40e: Fix error handling in i40e_vsi_open . - i40e: Fix log TC creation failure when max num of queues is exceeded . - i40e: Fix logic of disabling queues . - iavf: Fix an error handling path in "iavf_probe" . - iavf: Set RSS LUT and key in reset handle path . - ibmvnic: check failover_pending in login response . - ice: Prevent probing virtual functions . - igb: Check if num of q_vectors is smaller than max before array access . - igb: Fix an error handling path in "igb_probe" . - igb: Fix use-after-free error during reset . - ipc: remove memcg accounting for sops objects in do_semtimedop . - irqchip/gic-v2: Reset APRn registers at boot time . - irqchip/gic-v3: Do not try to reset AP0Rn . - irqchip/gic-v3: Reset APgRn registers at boot time . - ixgbe: Fix an error handling path in "ixgbe_probe" . - kdb: do a sanity check on the cpu in kdb_per_cpu . - KVM: x86: Use kernel"s x86_phys_bits to handle reduced MAXPHYADDR . - liquidio: Fix unintentional sign extension issue on left shift of u16 . - mailbox: sti: quieten kernel-doc warnings . - mlx4: Fix missing error code in mlx4_load_one . - net: linkwatch: fix failure to restore device state across suspend/resume . - net: mana: Add a driver for Microsoft Azure Network Adapter . - net: mana: Add support for EQ sharing . - net: mana: Add WARN_ON_ONCE in case of CQE read overflow . - net: mana: Fix a memory leak in an error handling path in . - net: mana: fix PCI_HYPERV dependency . - net: mana: Move NAPI from EQ to CQ . - net: mana: Prefer struct_size over open coded arithmetic . - net: mana: remove redundant initialization of variable err . - net: mana: Use int to check the return value of mana_gd_poll_cq . - net: mana: Use struct_size in kzalloc . - net: pch_gbe: Propagate error from devm_gpio_request_one . - net: qed: fix left elements count calculation . - net: qlcnic: add missed unlock in qlcnic_83xx_flash_read32 . - net: sched: cls_api: Fix the the wrong parameter . - net: sched: Fix qdisc_rate_table refcount leak when get tcf_block failed . - net: sched: sch_teql: fix null-pointer dereference . - pinctrl: samsung: Fix pinctrl bank pin count . - powerpc: fix function annotations to avoid section mismatch warnings with gcc-10 . - powerpc/drmem: Make LMB walk a bit more flexible . - powerpc/mm: Fix section mismatch warning . - powerpc/mm: Fix section mismatch warning in early_check_vec5 . - powerpc/mm/radix: Free PUD table when freeing pagetable . - powerpc/numa: Early request for home node associativity . - powerpc/perf: Drop the case of returning 0 as instruction pointer . - powerpc/perf: Fix crash in perf_instruction_pointer when ppmu is not set . - powerpc/perf: Fix the check for SIAR value . - powerpc/perf: Use regs-nip when SIAR is zero . - powerpc/perf: Use stack siar instead of mfspr . - powerpc/perf: Use the address from SIAR register to set cpumode flags . - powerpc/perf/hv-gpci: Fix counter value parsing . - powerpc/powernv: Fix machine check reporting of async store errors . - powerpc/pseries: Move mm/book3s64/vphn.c under platforms/pseries/ . - powerpc/pseries: Prevent free CPU ids being reused on another node . - powerpc/pseries/dlpar: use rtas_get_sensor . - profiling: fix shift-out-of-bounds bugs . - pseries/drmem: update LMBs after LPM . - qlcnic: Remove redundant unlock in qlcnic_pinit_from_rom . - RDMA/bnxt_re: Add missing spin lock initialization . - RDMA/efa: Be consistent with modify QP bitmask - RDMA/efa: Use the correct current and new states in modify QP - resource: Fix find_next_iomem_res iteration issue . - s390: bpf: implement jitting of BPF_ALU | BPF_ARSH | BPF_* . - s390/bpf: Fix 64-bit subtraction of the -0x80000000 constant . - s390/bpf: Fix branch shortening during codegen pass . - s390/bpf: Fix optimizing out zero-extensions . - s390/bpf: Wrap JIT macro parameter usages in parentheses . - s390/unwind: use current_frame_address to unwind current task . - scsi: core: Add helper to return number of logical blocks in a request . - scsi: core: Introduce the scsi_cmd_to_rq function . - scsi: fc: Add EDC ELS definition . - scsi: fc: Update formal FPIN descriptor definitions . - scsi: lpfc: Add bsg support for retrieving adapter cmf data . - scsi: lpfc: Add cm statistics buffer support . - scsi: lpfc: Add cmf_info sysfs entry . - scsi: lpfc: Add cmfsync WQE support . - scsi: lpfc: Add debugfs support for cm framework buffers . - scsi: lpfc: Add EDC ELS support . - scsi: lpfc: Add MIB feature enablement support . - scsi: lpfc: Add rx monitoring statistics . - scsi: lpfc: Add SET_HOST_DATA mbox cmd to pass date/time info to firmware . - scsi: lpfc: Add support for cm enablement buffer . - scsi: lpfc: Add support for maintaining the cm statistics buffer . - scsi: lpfc: Add support for the CM framework . - scsi: lpfc: Adjust bytes received vales during cmf timer interval . - scsi: lpfc: Copyright updates for 14.0.0.1 patches . - scsi: lpfc: Do not release final kref on Fport node while ABTS outstanding . - scsi: lpfc: Do not remove ndlp on PRLI errors in P2P mode . - scsi: lpfc: Expand FPIN and RDF receive logging . - scsi: lpfc: Fix compilation errors on kernels with no CONFIG_DEBUG_FS . - scsi: lpfc: Fix CPU to/from endian warnings introduced by ELS processing . - scsi: lpfc: Fix EEH support for NVMe I/O . - scsi: lpfc: Fix FCP I/O flush functionality for TMF routines . - scsi: lpfc: Fix gcc -Wstringop-overread warning, again . - scsi: lpfc: Fix hang on unload due to stuck fport node . - scsi: lpfc: Fix I/O block after enabling managed congestion mode . - scsi: lpfc: Fix list_add corruption in lpfc_drain_txq . - scsi: lpfc: Fix NVMe I/O failover to non-optimized path . - scsi: lpfc: Fix premature rpi release for unsolicited TPLS and LS_RJT . - scsi: lpfc: Fix rediscovery of tape device after LIP . - scsi: lpfc: Fix sprintf overflow in lpfc_display_fpin_wwpn . - scsi: lpfc: Improve PBDE checks during SGL processing . - scsi: lpfc: Remove unneeded variable . - scsi: lpfc: Update lpfc version to 14.0.0.1 . - scsi: lpfc: Update lpfc version to 14.0.0.2 . - scsi: lpfc: Use correct scnprintf limit . - scsi: lpfc: Use scsi_cmd_to_rq instead of scsi_cmnd.request . - scsi: lpfc: Use the proper SCSI midlayer interfaces for PI . - scsi: lpfc: Zero CGN stats only during initial driver load and stat reset . - scsi: scsi_devinfo: Add blacklist entry for HPE OPEN-V . - SUNRPC: Ensure to ratelimit the server not responding syslog messages . - USB: musb: tusb6010: uninitialized data in tusb_fifo_write_unaligned . - USB: serial: option: add new VID/PID to support Fibocom FG150 . - USB: serial: option: remove duplicate USB device ID . - video: fbdev: imxfb: Fix an error message Backporting changes: * context changes in imxfb_probe - x86/apic/msi: Plug non-maskable MSI affinity race . - x86/crash: Add e820 reserved ranges to kdump kernel"s e820 table . - x86/e820, ioport: Add a new I/O resource descriptor IORES_DESC_RESERVED . - x86/mm: Fix kern_addr_valid to cope with existing but not present entries . - x86/mm: Rework ioremap resource mapping determination . - x86/resctrl: Fix a maybe-uninitialized build warning treated as error . - x86/resctrl: Fix default monitoring groups reporting . - xgene-v2: Fix a resource leak in the error handling path of "xge_probe" . Special Instructions and Notes: Please reboot the system after installing this update.