The SUSE Linux Enterprise 12 SP2 kernel was updated to 4.4.120 to receive various security and bugfixes. The following security bugs were fixed: - CVE-2017-13166: An elevation of privilege vulnerability in the v4l2 video driver was fixed. - CVE-2017-15951: The KEYS subsystem did not correctly synchronize the actions of updating versus finding a key in the quot;negativequot; state to avoid a race condition, which allowed local users to cause a denial of service or possibly have unspecified other impact via crafted system calls . - CVE-2017-16644: The hdpvr_probe function in drivers/media/usb/hdpvr/hdpvr-core.c allowed local users to cause a denial of service or possibly have unspecified other impact via a crafted USB device . - CVE-2017-16912: The quot;get_pipequot; function allowed attackers to cause a denial of service via a specially crafted USB over IP packet . - CVE-2017-16913: The quot;stub_recv_cmd_submitquot; function when handling CMD_SUBMIT packets allowed attackers to cause a denial of service via a specially crafted USB over IP packet . - CVE-2017-17975: Use-after-free in the usbtv_probe function in drivers/media/usb/usbtv/usbtv-core.c allowed attackers to cause a denial of service or possibly have unspecified other impact by triggering failure of audio registration, because a kfree of the usbtv data structure occurs during a usbtv_video_free call, but the usbtv_video_fail label"s code attempts to both access and free this data structure . - CVE-2017-18208: The madvise_willneed function in mm/madvise.c allowed local users to cause a denial of service by triggering use of MADVISE_WILLNEED for a DAX mapping . - CVE-2018-8087: Memory leak in the hwsim_new_radio_nl function in drivers/net/wireless/mac80211_hwsim.c allowed local users to cause a denial of service by triggering an out-of-array error case . - CVE-2018-1000026: A insufficient input validation vulnerability in the bnx2x network card driver could result in DoS: Network card firmware assertion takes card off-line. This attack appear to be exploitable via An attacker on a must pass a very large, specially crafted packet to the bnx2x card. This can be done from an untrusted guest VM. - CVE-2018-1068: Insufficient user provided offset checking in the ebtables compat code allowed local attackers to overwrite kernel memory and potentially execute code. The following non-security bugs were fixed: - acpi / bus: Leave modalias empty for devices which are not present . - acpi: sbshc: remove raw pointer from printk message . - Add delay-init quirk for Corsair K70 RGB keyboards . - add ip6_make_flowinfo helper . - ahci: Add Intel Cannon Lake PCH-H PCI ID . - ahci: Add PCI ids for Intel Bay Trail, Cherry Trail and Apollo Lake AHCI . - ahci: Annotate PCI ids for mobile Intel chipsets as such . - alpha: fix crash if pthread_create races with signal delivery . - alpha: fix reboot on Avanti platform . - alsa: hda/ca0132 - fix possible NULL pointer use . - alsa: hda - Fix headset mic detection problem for two Dell machines . - alsa: hda/realtek - Add headset mode support for Dell laptop . - alsa: hda/realtek: PCI quirk for Fujitsu U7x7 . - alsa: hda - Reduce the suspend time consumption for ALC256 . - alsa: hda - Use IS_REACHABLE for dependency on input . - alsa: seq: Fix racy pool initializations . - alsa: seq: Fix regression by incorrect ioctl_mutex usages . - alsa: usb-audio: add implicit fb quirk for Behringer UFX1204 . - alsa: usb-audio: Fix UAC2 get_ctl request with a RANGE attribute . - amd-xgbe: Fix unused suspend handlers build warning . - arm64: define BUG instruction without CONFIG_BUG . - arm64: Disable unhandled signal log messages by default . - arm64: dts: add #cooling-cells to CPU nodes . - arm64: Kconfig: select COMPAT_BINFMT_ELF only when BINFMT_ELF is set . - arm: 8731/1: Fix csum_partial_copy_from_user stack mismatch . - arm: AM33xx: PRM: Remove am33xx_pwrdm_read_prev_pwrst function . - arm: dts: am4372: Correct the interrupts_properties of McASP . - arm: dts: Fix omap4 hang with GPS connected to USB by using wakeupgen . - arm: dts: ls1021a: fix incorrect clock references . - arm: dts: s5pv210: add interrupt-parent for ohci . - arm: dts: STi: Add gpio polarity for quot;hdmi,hpd-gpioquot; property . - arm: kvm: Fix SMCCC handling of unimplemented SMC/HVC calls . - arm: OMAP2+: Fix SRAM virt to phys translation for save_secure_ram_context . - arm: omap2: hide omap3_save_secure_ram on non-OMAP3 builds . - arm: pxa/tosa-bt: add MODULE_LICENSE tag . - arm: spear13xx: Fix dmas cells . - arm: spear13xx: Fix spics gpio controller"s warning . - arm: spear600: Add missing interrupt-parent of rtc . - arm: tegra: select USB_ULPI from EHCI rather than platform . - asoc: au1x: Fix timeout tests in au1xac97c_ac97_read . - asoc: Intel: Kconfig: fix build when acpi is not enabled . - asoc: Intel: sst: Fix the return value of "sst_send_byte_stream_mrfld" . - asoc: mediatek: add i2c dependency . - asoc: nuc900: Fix a loop timeout test . - asoc: pcm512x: add missing MODULE_DESCRIPTION/AUTHOR/LICENSE . - asoc: rockchip: disable clock on error . - asoc: rockchip: use __maybe_unused to hide st_irq_syscfg_resume . - asoc: rsnd: avoid duplicate free_irq . - asoc: rsnd: do not call free_irq on Parent SSI . - asoc: simple-card: Fix misleading error message . - asoc: ux500: add MODULE_LICENSE tag . - ata: ahci_xgene: free structure returned by acpi_get_object_info . - b2c2: flexcop: avoid unused function warnings . - binder: add missing binder_unlock . - binder: check for binder_thread allocation failure in binder_poll . - binfmt_elf: compat: avoid unused function warning . - blacklist.conf: commit fd5f7cde1b85d4c8e09 - blktrace: fix unlocked registration of tracepoints . - bluetooth: btsdio: Do not bind to non-removable BCM43341 . - bluetooth: btusb: Restore QCA Rome suspend/resume fix with a quot;rewrittenquot; version . - bnx2x: Improve reliability in case of nested PCI errors . - bnxt_en: Fix the "Invalid VF" id check in bnxt_vf_ndo_prep routine . - bpf: arsh is not supported in 32 bit alu thus reject it . - bpf: avoid false sharing of map refcount with max_entries . - bpf: fix 32-bit divide by zero . - bpf: fix bpf_tail_call x64 JIT . - bpf: fix divides by zero . - bpf: introduce BPF_JIT_ALWAYS_ON config . - bpf: reject stores into ctx via st and xadd . - bridge: implement missing ndo_uninit . - bridge: move bridge multicast cleanup to ndo_uninit . - btrfs: copy fsid to super_block s_uuid . - btrfs: fix crash due to not cleaning up tree log block"s dirty bits . - btrfs: fix deadlock in run_delalloc_nocow . - btrfs: fix deadlock when writing out space cache . - btrfs: fix kernel oops while reading compressed data . - btrfs: Fix possible off-by-one in btrfs_search_path_in_tree . - btrfs: Fix quota reservation leak on preallocated files . - btrfs: fix unexpected -EEXIST when creating new inode . - btrfs: Handle btrfs_set_extent_delalloc failure in fixup worker . - can: flex_can: Correct the checking for frame length in flexcan_start_xmit . - cdrom: turn off autoclose by default . - cfg80211: check dev_set_name return value . - cfg80211: fix cfg80211_beacon_dup . - cifs: dump IPC tcon in debug proc file . - cifs: Fix autonegotiate security settings mismatch . - cifs: Fix missing put_xid in cifs_file_strict_mmap . - cifs: make IPC a regular tcon . - cifs: use tcon_ipc instead of use_ipc parameter of SMB2_ioctl . - cifs: zero sensitive data when freeing . - clk: fix a panic error caused by accessing NULL pointer . - console/dummy: leave .con_font_get set to NULL . - cpufreq: Add Loongson machine dependencies . - crypto: aesni - handle zero length dst buffer . - crypto: af_alg - whitelist mask and type . - crypto: caam - fix endless loop when DECO acquire fails . - crypto: cryptd - pass through absence of -gt;setkey . - crypto: hash - introduce crypto_hash_alg_has_setkey . - crypto: poly1305 - remove -gt;setkey method . - crypto: s5p-sss - Fix kernel Oops in AES-ECB mode . - crypto: tcrypt - fix S/G table for test_aead_speed . - crypto: x86/twofish-3way - Fix %rbp usage . - cw1200: fix bogus maybe-uninitialized warning . - dccp: limit sk_filter trim to payload . - dell-wmi, dell-laptop: depends DMI . - dlm: fix double list_del . - dlm: fix NULL pointer dereference in send_to_sock . - dmaengine: at_hdmac: fix potential NULL pointer dereference in atc_prep_dma_interleaved . - dmaengine: dmatest: fix container_of member in dmatest_callback . - dmaengine: ioat: Fix error handling path . - dmaengine: jz4740: disable/unprepare clk if probe fails . - dmaengine: zx: fix build warning . - dm: correctly handle chained bios in dec_pending . - dn_getsockoptdecnet: move nf_{get/set}sockopt outside sock lock . - do not put symlink bodies in pagecache into highmem . - dpt_i2o: fix build warning . - driver-core: use "dev" argument in dev_dbg_ratelimited stub . - drivers/net: fix eisa_driver probe section mismatch . - drm/amdgpu: Avoid leaking PM domain on driver unbind . - drm/amdgpu: Fix SDMA load/unload sequence on HWS disabled mode . - drm/amdkfd: Fix SDMA oversubsription handling . - drm/amdkfd: Fix SDMA ring buffer size calculation . - drm/armada: fix leak of crtc structure . - drm/edid: Add 6 bpc quirk for CPT panel in Asus UX303LA . - drm/gma500: remove helper function . - drm/gma500: Sanity-check pipe index . - drm/nouveau: hide gcc-4.9 -Wmaybe-uninitialized . - drm/nouveau/pci: do a msi rearm on init . - drm/radeon: adjust tested variable . - drm: rcar-du: Fix race condition when disabling planes at CRTC stop . - drm: rcar-du: Use the VBK interrupt for vblank events . - drm: Require __GFP_NOFAIL for the legacy drm_modeset_lock_all . - drm/ttm: check the return value of kzalloc . - drm/vmwgfx: use *_32_bits macros . - e1000: fix disabling already-disabled warning . - edac, octeon: Fix an uninitialized variable warning . - em28xx: only use mt9v011 if camera support is enabled . - enable DST_CACHE in non-vanilla configs except s390x/zfcpdump - ext4: correct documentation for grpid mount option . - ext4: do not unnecessarily allocate buffer in recently_deleted . - ext4: Fix data exposure after failed AIO DIO . - ext4: save error to disk in __ext4_grp_locked_error . - f2fs: fix a bug caused by NULL extent tree . While this fs is not supported by SLE it affects opensuse users so let"s add it to our kernel for opensuse merging. - fbdev: auo_k190x: avoid unused function warnings . - fbdev: s6e8ax0: avoid unused function warnings . - fbdev: sis: enforce selection of at least one backend . - fbdev: sm712fb: avoid unused function warnings . - flow_dissector: Check skb for VLAN only if skb specified . - flow_dissector: fix vlan tag handling . - flow_dissector: For stripped vlan, get vlan info from skb-gt;vlan_tci . - ftrace: Remove incorrect setting of glob search field . - geneve: fix populating tclass in geneve_get_v6_dst . - genirq/msi: Add stubs for get_cached_msi_msg/pci_write_msi_msg . - genksyms: Fix segfault with invalid declarations . - gianfar: fix a flooded alignment reports because of padding issue . - go7007: add MEDIA_CAMERA_SUPPORT dependency . - gpio: ath79: add missing MODULE_DESCRIPTION/LICENSE . - gpio: intel-mid: Fix build warning when !CONFIG_PM . - gpio: iop: add missing MODULE_DESCRIPTION/AUTHOR/LICENSE . - gpio: xgene: mark PM functions as __maybe_unused . - grace: replace BUG_ON by WARN_ONCE in exit_net hook . - gre: build header correctly for collect metadata tunnels . - gre: do not assign header_ops in collect metadata mode . - gre: do not keep the GRE header around in collect medata mode . - gre: reject GUE and FOU in collect metadata mode . - hdpvr: hide unused variable . - hid: quirks: Fix keyboard + touchpad on Toshiba Click Mini not working . - hippi: Fix a Fix a possible sleep-in-atomic bug in rr_close . - hrtimer: Ensure POSIX compliance . - hwmon: Use 64bit math for DIRECT format values . - hwrng: exynos - use __maybe_unused to hide pm functions . - i2c: remove __init from i2c_register_board_info . - ib/ipoib: Fix race condition in neigh creation . - ib/mlx4: Fix incorrectly releasing steerable UD QPs when have only ETH ports . - ib/mlx4: Fix mlx4_ib_alloc_mr error flow . - ibmvnic: Account for VLAN header length in TX buffers . - ibmvnic: Account for VLAN tag in L2 Header descriptor . - ibmvnic: Allocate max queues stats buffers . - ibmvnic: Allocate statistics buffers during probe . - ibmvnic: Check for NULL skb"s in NAPI poll routine . - ibmvnic: Clean RX pool buffers during device close . - ibmvnic: Clean up device close . - ibmvnic: Correct goto target for tx irq initialization failure . - ibmvnic: Do not attempt to login if RX or TX queues are not allocated . - ibmvnic: Do not disable device during failover or partition migration . - ibmvnic: Ensure that buffers are NULL after free . - ibmvnic: Fix early release of login buffer . - ibmvnic: fix empty firmware version and errors cleanup . - ibmvnic: fix firmware version when no firmware level has been provided by the VIOS server . - ibmvnic: Fix login buffer memory leaks . - ibmvnic: Fix NAPI structures memory leak . - ibmvnic: Fix recent errata commit . - ibmvnic: Fix rx queue cleanup for non-fatal resets . - ibmvnic: Fix TX descriptor tracking again . - ibmvnic: Fix TX descriptor tracking . - ibmvnic: Free and re-allocate scrqs when tx/rx scrqs change . - ibmvnic: Free RX socket buffer in case of adapter error . - ibmvnic: Generalize TX pool structure . - ibmvnic: Handle TSO backing device errata . - ibmvnic: Harden TX/RX pool cleaning . - ibmvnic: Improve TX buffer accounting . - ibmvnic: Keep track of supplementary TX descriptors . - ibmvnic: Make napi usage dynamic . - ibmvnic: Move active sub-crq count settings . - ibmvnic: Pad small packets to minimum MTU size . - ibmvnic: queue reset when CRQ gets closed during reset . - ibmvnic: Remove skb-gt;protocol checks in ibmvnic_xmit . - ibmvnic: Rename active queue count variables . - ibmvnic: Reorganize device close . - ibmvnic: Report queue stops and restarts as debug output . - ibmvnic: Reset long term map ID counter . - ibmvnic: Split counters for scrq/pools/napi . - ibmvnic: Update and clean up reset TX pool routine . - ibmvnic: Update release RX pool routine . - ibmvnic: Update TX and TX completion routines . - ibmvnic: Update TX pool initialization routine . - ibmvnic: Wait until reset is complete to set carrier on . - idle: i7300: add PCI dependency . - igb: Free IRQs when device is hotplugged . - iio: adc: axp288: remove redundant duplicate const on axp288_adc_channels . - iio: adis_lib: Initialize trigger before requesting interrupt . - iio: buffer: check if a buffer has been set up when poll is called . - input: tca8418_keypad - hide gcc-4.9 -Wmaybe-uninitialized warning . - input: tca8418_keypad - remove double read of key event register . - iommu/amd: Add align parameter to alloc_irq_index . - iommu/amd: Enforce alignment for MSI IRQs . - iommu/amd: Fix alloc_irq_index increment . - iommu/vt-d: Use domain instead of cache fetching . - ip6mr: fix stale iterator . - ipc/msg: introduce msgctl . - ipc/sem: introduce semctl . - ipc/shm: introduce shmctl . - ip_tunnel: fix preempt warning in ip tunnel creation/updating . - ip_tunnel: replace dst_cache with generic implementation . - ipv4: allow local fragmentation in ip_finish_output_gso . - ipv4: fix checksum annotation in udp4_csum_init . - ipv4: ipconfig: avoid unused ic_proto_used symbol . - ipv4: update comment to document GSO fragmentation cases . - ipv6: datagram: Refactor dst lookup and update codes to a new function . - ipv6: datagram: Refactor flowi6 init codes to a new function . - ipv6: datagram: Update dst cache of a connected datagram sk during pmtu update . - ipv6: fix checksum annotation in udp6_csum_init . - ipv6: icmp6: Allow icmp messages to be looped back . - ipv6/ila: fix nlsize calculation for lwtunnel . - ipv6: remove unused in6_addr struct . - ipv6: tcp: fix endianness annotation in tcp_v6_send_response . - ipv6: udp: Do a route lookup and update during release_cb . - ipvlan: Add the skb-gt;mark as flow4"s member to lookup route . - ipvlan: fix multicast processing . - ipvlan: fix various issues in ipvlan_process_multicast . - irqchip/gic-v3: Use wmb instead of smb_wmb in gic_raise_softirq . - isdn: eicon: reduce stack size of sig_ind function . - isdn: icn: remove a #warning . - isdn: sc: work around type mismatch warning . - jffs2: Fix use-after-free bug in jffs2_iget"s error handling path . - kABI: protect struct cpuinfo_x86 . - kABI: protect struct ip_tunnel and reintroduce ip_tunnel_dst_reset_all . - kABI: reintroduce crypto_poly1305_setkey . - kabi: restore kabi after quot;net: replace dst_cache ip6_tunnel implementation with the generic onequot; . - kabi: restore nft_set_elem_destroy signature . - kabi: restore rhashtable_insert_slow signature . - kabi/severities: add __x86_indirect_thunk_rsp - kabi/severities: as per bsc#1068569 we can ignore XFS kabi The gods have spoken, let there be light. - kabi: uninline sk_receive_skb . - kaiser: fix compile error without vsyscall . - kaiser: fix intel_bts perf crashes . - kasan: rework Kconfig settings . - kernel/async.c: revert quot;async: simplify lowest_in_progressquot; . - kernel: fix rwlock implementation . - kernfs: fix regression in kernfs_fop_write caused by wrong type . - keys: encrypted: fix buffer overread in valid_master_desc . - kmemleak: add scheduling point to kmemleak_scan . - kvm: add X86_LOCAL_APIC dependency . - kvm: arm/arm64: Check pagesize when allocating a hugepage at Stage 2 . - kvm: nVMX: Fix kernel panics induced by illegal INVEPT/INVVPID types . - kvm: nVMX: Fix races when sending nested PI while dest enters/leaves L2 . - kvm: nVMX: invvpid handling improvements . - kvm: nVMX: kmap can"t fail . - kvm: nVMX: vmx_complete_nested_posted_interrupt can"t fail . - kvm: PPC: Book3S PR: Fix svcpu copying with preemption enabled . - kvm: VMX: clean up declaration of VPID/EPT invalidation types . - kvm: VMX: Fix rflags cache during vCPU reset . - kvm: VMX: Make indirect call speculation safe . - kvm: x86: Do not re-execute instruction when not passing CR2 value . - kvm: x86: emulator: Return to user-mode on L1 CPL=0 emulation failure . - kvm: x86: fix escape of guest dr6 to the host . - kvm: X86: Fix operand/address-size during instruction decoding . - kvm: x86: ioapic: Clear Remote IRR when entry is switched to edge-triggered . - kvm: x86: ioapic: Fix level-triggered EOI and IOAPIC reconfigure race . - kvm: x86: ioapic: Preserve read-only values in the redirection table . - kvm: x86: Make indirect calls in emulator speculation safe . - kvm/x86: Reduce retpoline performance impact in slot_handle_level_range, by always inlining iterator helper methods . - l2tp: fix use-after-free during module unload . - led: core: Fix brightness setting when setting delay_off=0 . - leds: do not overflow sysfs buffer in led_trigger_show . - lib/mpi: Fix umul_ppmm for MIPS64r6 . - livepatch: introduce shadow variable API . Shadow variables support. - livepatch: __kgr_shadow_get_or_alloc is local to shadow.c . Shadow variables support. - lockd: fix quot;list_add double addquot; caused by legacy signal interface . - loop: fix concurrent lo_open/lo_release . - mac80211: fix the update of path metric for RANN frame . - mac80211: mesh: drop frames appearing to be from us . - Make DST_CACHE a silent config option . - mdio-sun4i: Fix a memory leak . - md/raid1: Use a new variable to count flighting sync requests - media: cxusb, dib0700: ignore XC2028_I2C_FLUSH . - media: dvb-usb-v2: lmedm04: Improve logic checking of warm start . - media: dvb-usb-v2: lmedm04: move ts2020 attach to dm04_lme2510_tuner . - media: r820t: fix r820t_write_reg for KASAN . - media: s5k6aa: describe some function parameters . - media: soc_camera: soc_scale_crop: add missing MODULE_DESCRIPTION/AUTHOR/LICENSE . - media: ts2020: avoid integer overflows on 32 bit machines . - media: usbtv: add a new usbid . - media: v4l2-compat-ioctl32.c: add missing VIDIOC_PREPARE_BUF . - media: v4l2-compat-ioctl32.c: avoid sizeof . - media: v4l2-compat-ioctl32.c: copy clip list in put_v4l2_window32 . - media: v4l2-compat-ioctl32.c: copy m.userptr in put_v4l2_plane32 . - media: v4l2-compat-ioctl32.c: do not copy back the result for certain errors . - media: v4l2-compat-ioctl32.c: drop pr_info for unknown buffer type . - media: v4l2-compat-ioctl32.c: fix ctrl_is_pointer . - media: v4l2-compat-ioctl32.c: fix the indentation . - media: v4l2-compat-ioctl32.c: make ctrl_is_pointer work for subdevs . - media: v4l2-compat-ioctl32.c: move "helper" functions to __get/put_v4l2_format32 . - media: v4l2-compat-ioctl32: Copy v4l2_window-gt;global_alpha . - media: v4l2-compat-ioctl32.c: refactor compat ioctl32 logic . - media: v4l2-ioctl.c: do not copy back the result for -ENOTTY . - mips: Implement __multi3 for GCC7 MIPS64r6 builds . - mmc: bcm2835: Do not overwrite max frequency unconditionally . - mm/early_ioremap: Fix boot hang with earlyprintk=efi,keep . - mm: hide a #warning for COMPILE_TEST . - mm/kmemleak.c: make cond_resched rate-limiting more efficient . - mm: pin address_space before dereferencing it while isolating an LRU page . - mm,vmscan: Make unregister_shrinker no-op if register_shrinker failed . - mn10300/misalignment: Use SIGSEGV SEGV_MAPERR to report a failed user copy . - modsign: hide openssl output in silent builds . - module/retpoline: Warn about missing retpoline in module . - mpt3sas: Do not mark fw_event workqueue as WQ_MEM_RECLAIM . - mptfusion: hide unused seq_mpt_print_ioc_summary function . - mtd: cfi: convert inline functions to macros . - mtd: cfi: enforce valid geometry configuration . - mtd: ichxrom: maybe-uninitialized with gcc-4.9 . - mtd: maps: add __init attribute . - mtd: nand: brcmnand: Disable prefetch by default . - mtd: nand: denali_pci: add missing MODULE_DESCRIPTION/AUTHOR/LICENSE . - mtd: nand: Fix nand_do_read_oob return value . - mtd: nand: gpmi: Fix failure when a erased page has a bitflip at BBM . - mtd: nand: sunxi: Fix ECC strength choice . - mtd: sh_flctl: pass FIFO as physical address . - mvpp2: fix multicast address filter . - ncpfs: fix unused variable warning . - ncr5380: shut up gcc indentation warning . - net: add dst_cache support . - net: arc_emac: fix arc_emac_rx error paths . - net: avoid skb_warn_bad_offload on IS_ERR . - net: cdc_ncm: initialize drvflags before usage . - net: dst_cache_per_cpu_dst_set can be static . - net: ena: add detection and recovery mechanism for handling missed/misrouted MSI-X . - net: ena: add new admin define for future support of IPv6 RSS . - net: ena: add power management ops to the ENA driver . - net: ena: add statistics for missed tx packets . - net: ena: fix error handling in ena_down sequence . - net: ena: fix race condition between device reset and link up setup . - net: ena: fix rare kernel crash when bar memory remap fails . - net: ena: fix wrong max Tx/Rx queues on ethtool . - net: ena: improve ENA driver boot time . - net: ena: increase ena driver version to 1.3.0 . - net: ena: increase ena driver version to 1.5.0 . - net: ena: reduce the severity of some printouts . - net: ena: remove legacy suspend suspend/resume support . - net: ena: Remove redundant unlikely . - net: ena: unmask MSI-X only after device initialization is completed . - net: ethernet: xilinx: Mark XILINX_LL_TEMAC broken on 64-bit . - netfilter: drop outermost socket lock in getsockopt . - netfilter: ebtables: CONFIG_COMPAT: do not trust userland offsets . - netfilter: ebtables: fix erroneous reject of last rule . - netfilter: ipt_CLUSTERIP: fix out-of-bounds accesses in clusterip_tg_check . - netfilter: ipvs: avoid unused variable warnings . - netfilter: nf_queue: Make the queue_handler pernet . - netfilter: nf_tables: fix a wrong check to skip the inactive rules . - netfilter: nf_tables: fix inconsistent element expiration calculation . - netfilter: nf_tables: fix *leak* when expr clone fail . - netfilter: nf_tables: fix race when create new element in dynset . - netfilter: on sockopt acquire sock lock only in the required scope . - netfilter: tee: select NF_DUP_IPV6 unconditionally . - netfilter: x_tables: avoid out-of-bounds reads in xt_request_find_{match|target} . - netfilter: x_tables: fix int overflow in xt_alloc_table_info . - netfilter: xt_RATEEST: acquire xt_rateest_mutex for hash insert . - netfilter: xt_socket: fix transparent match for IPv6 request sockets . - net: gianfar_ptp: move set_fipers to spinlock protecting area . - net: hp100: remove unnecessary #ifdefs . - net: igmp: add a missing rcu locking section . - net/ipv4: Introduce IPSKB_FRAG_SEGS bit to inet_skb_parm.flags . - netlink: fix nla_put_{u8,u16,u32} for KASAN . - net: replace dst_cache ip6_tunnel implementation with the generic one . - net_sched: red: Avoid devision by zero . - net_sched: red: Avoid illegal values . - net: vxlan: lwt: Fix vxlan local traffic . - net: vxlan: lwt: Use source ip address during route lookup . - nfs: Add a cond_resched to nfs_commit_release_pages . - nfs: commit direct writes even if they fail partially . - nfsd: check for use of the closed special stateid . - nfsd: CLOSE SHOULD return the invalid special stateid for NFSv4.x . - nfsd: Ensure we check stateid validity in the seqid operation checks . - nfs: Do not convert nfs_idmap_cache_timeout to jiffies . - nfs: fix a deadlock in nfs client initialization . - nfs/pnfs: fix nfs_direct_req ref leak when i/o falls back to the mds . - nfs: reject request for id_legacy key without auxdata . - nfs: Trunking detection should handle ERESTARTSYS/EINTR . - nvme: Fix managing degraded controllers . - ocfs2: return error when we attempt to access a dirty bh in jbd2 . - openvswitch: fix the incorrect flow action alloc size . - ovl: fix failure to fsync lower dir . - ovs/geneve: fix rtnl notifications on iface deletion . - ovs/gre: fix rtnl notifications on iface deletion . - ovs/gre,geneve: fix error path when creating an iface . - ovs/vxlan: fix rtnl notifications on iface deletion . - pci/ASPM: Do not retrain link if ASPM not possible . - pci: keystone: Fix interrupt-controller-node lookup . - perf bench numa: Fixup discontiguous/sparse numa nodes . - perf top: Fix window dimensions change handling . - perf/x86: Shut up false-positive -Wmaybe-uninitialized warning . - pinctrl: sunxi: Fix A80 interrupt pin bank . - pipe: cap initial pipe capacity according to pipe-max-size limit . - pktcdvd: Fix pkt_setup_dev error path . - platform/x86: intel_mid_thermal: Fix suspend handlers unused warning . - PM / devfreq: Propagate error from devfreq_add_device . - PM / wakeirq: Fix unbalanced IRQ enable for wakeirq . - posix-timer: Properly check sigevent-gt;sigev_notify . - power: bq27xxx_battery: mark some symbols __maybe_unused . - powerpc/64: Fix flush_cache_range called from modules . - powerpc/64s: Fix RFI flush dependency on HARDLOCKUP_DETECTOR . - powerpc/64s: Improve RFI L1-D cache flush fallback . - powerpc: Do not preempt_disable in show_cpuinfo . - powerpc/numa: Invalidate numa_cpu_lookup_table on cpu remove . - powerpc/perf: Fix oops when grouping different pmu events . - powerpc/powernv: Fix MCE handler to avoid trashing CR0/CR1 registers . - powerpc/powernv: Move IDLE_STATE_ENTER_SEQ macro to cpuidle.h . - powerpc/powernv: Support firmware disable of RFI flush . - powerpc/pseries: Support firmware disable of RFI flush . - powerpc: Simplify module TOC handling . - power: reset: zx-reboot: add missing MODULE_DESCRIPTION/AUTHOR/LICENSE . - profile: hide unused functions when !CONFIG_PROC_FS . - Provide a function to create a NUL-terminated string from unterminated data . - pwc: hide unused label . - qla2xxx: asynchronous pci probing . - qlcnic: fix deadlock bug . - r8169: fix RTL8168EP take too long to complete driver initialization . - RDMA/cma: Make sure that PSN is not over max allowed . - reiserfs: avoid a -Wmaybe-uninitialized warning . - Revert quot;Bluetooth: btusb: fix QCA Rome suspend/resumequot; . - Revert quot;bpf: avoid false sharing of map refcount with max_entriesquot; . - Revert quot;netfilter: nf_queue: Make the queue_handler pernetquot; . - Revert quot;net: replace dst_cache ip6_tunnel implementation with the generic onequot; . - Revert quot;power: bq27xxx_battery: Remove unneeded dependency in Kconfigquot; . - Revert quot;powerpc: Simplify module TOC handlingquot; . - Revert quot;x86/entry/64: Separate cpu_current_top_of_stack from TSS.sp0quot; This reverts commit 89ef3e2aec59362edf7b1cd1c48acc81cd74e319. - Revert quot;x86/entry/64: Use a per-CPU trampoline stack for IDT entriesquot; This reverts commit 5812bed1a96b27804bfd1eadbe3e263cb58aafdf. - rfi-flush: Move the logic to avoid a redo into the debugfs code . - rfi-flush: Switch to new linear fallback flush . - rhashtable: add rhashtable_lookup_get_insert_key . - rtc-opal: Fix handling of firmware error codes, prevent busy loops . - rtlwifi: fix gcc-6 indentation warning . - rtlwifi: rtl8821ae: Fix connection lost problem correctly . - s390/dasd: fix handling of internal requests . - s390/dasd: fix wrongly assigned configuration data . - s390/dasd: prevent prefix I/O error . - s390: fix handling of -1 in set{,fs}[gu]id16 syscalls . - sched/rt: Up the root domain ref count when passing it around via IPIs . - sched/rt: Use container_of to get root domain in rto_push_irq_work_func . - scripts/kernel-doc: Do not fail with status != 0 if error encountered with -none . - scsi: aacraid: Prevent crash in case of free interrupt during scsi EH path . - scsi: advansys: fix build warning for PCI=n . - scsi: advansys: fix uninitialized data access . - scsi: csiostor: fix use after free in csio_hw_use_fwconfig . - scsi: fdomain: drop fdomain_pci_tbl when built-in . - scsi: ibmvfc: fix misdefined reserved field in ibmvfc_fcp_rsp_info . - SCSI: initio: remove duplicate module device table . - scsi: mvumi: use __maybe_unused to hide pm functions . - scsi: qla2xxx: Fix abort command deadlock due to spinlock . - scsi: qla2xxx: Remove aborting ELS IOCB call issued as part of timeout . - scsi: return correct blkprep status code in case scsi_init_io fails . - scsi: sim710: fix build warning . - scsi: sr: workaround VMware ESXi cdrom emulation bug . - scsi: storvsc: Fix scsi_cmd error assignments in storvsc_handle_error . - scsi: sun_esp: fix device reference leaks . - scsi: ufs: ufshcd: fix potential NULL pointer dereference in ufshcd_config_vreg . - sctp: make use of pre-calculated len . - selinux: ensure the context is NUL terminated in security_context_to_sid_core . - selinux: general protection fault in sock_has_perm . - selinux: skip bounded transition processing if the policy isn"t loaded . - serial: 8250_mid: fix broken DMA dependency . - serial: 8250_uniphier: fix error return code in uniphier_uart_probe . - serial: imx: Only wakeup via RTSDEN bit if the system has RTS/CTS . - sget: handle failures of register_shrinker . - signal/openrisc: Fix do_unaligned_access to send the proper signal . - signal/sh: Ensure si_signo is initialized in do_divide_error . - SolutionEngine771x: fix Ether platform data . - spi: atmel: fixed spin_lock usage inside atmel_spi_remove . - spi: imx: do not access registers while clocks disabled . - spi: sun4i: disable clocks in the remove function . - ssb: mark ssb_bus_register as __maybe_unused . - staging: android: ashmem: Fix a race condition in pin ioctls . - staging: iio: adc: ad7192: fix external frequency setting . - staging: rtl8188eu: Fix incorrect response to SIOCGIWESSID . - staging: ste_rmi4: avoid unused function warnings . - staging: unisys: visorinput depends on INPUT . - staging: wilc1000: fix kbuild test robot error . - SUNRPC: Allow connect to return EHOSTUNREACH . - tc1100-wmi: fix build warning when CONFIG_PM not enabled . - tc358743: fix register i2c_rd/wr function fix . - tc358743: fix register i2c_rd/wr functions . - tcp: do not set rtt_min to 1 . - tcp: release sk_frag.page in tcp_disconnect . - test_bpf: fix the dummy skb after dissector changes . - tg3: Add workaround to restrict 5762 MRRS to 2048 . - tg3: Enable PHY reset in MTU change path for 5720 . - thermal: fix INTEL_SOC_DTS_IOSF_CORE dependencies . - thermal: spear: use __maybe_unused for PM functions . - tlan: avoid unused label with PCI=n . - tools build: Add tools tree support for "make -s" . - tty: cyclades: cyz_interrupt is only used for PCI . - tty: hvc_xen: hide xen_console_remove when unused . - tty: mxser: Remove ASYNC_CLOSING . - ubi: block: Fix locking for idr_alloc/idr_remove . - udp: restore UDPlite many-cast delivery . - usb: build drivers/usb/common/ when USB_SUPPORT is set . - USB: cdc-acm: Do not log urb submission errors on disconnect . - USB: cdc_subset: only build when one driver is enabled . - usb: dwc3: gadget: Set maxpacket size for ep0 IN . - usb: f_fs: Prevent gadget unbind if it is already unbound . - usb: gadget: do not dereference g until after it has been null checked . - usb: gadget: f_fs: Process all descriptors during bind . - usb: gadget: uvc: Missing files for configfs interface . - usbip: fix 3eee23c3ec14 tcp_socket address still in the status file . - usbip: keep usbip_device sockfd state in sync with tcp_socket . - usbip: list: do not list devices attached to vhci_hcd . - usbip: prevent bind loops on devices attached to vhci_hcd . - usbip: vhci_hcd: clear just the USB_PORT_STAT_POWER bit . - usb: ldusb: add PIDs for new CASSY devices supported by this driver . - usb: musb/ux500: remove duplicate check for dma_is_compatible . - usb: ohci: Proper handling of ed_rm_list to handle race condition between usb_kill_urb and finish_unlinks . - usb: option: Add support for FS040U modem . - usb: phy: msm add regulator dependency . - usb: renesas_usbhs: missed the quot;runningquot; flag in usb_dmac with rx path . - USB: serial: io_edgeport: fix possible sleep-in-atomic . - USB: serial: pl2303: new device id for Chilitag . - USB: serial: simple: add Motorola Tetra driver . - usb: uas: unconditionally bring back host after reset . - v4l: remove MEDIA_TUNER dependency for VIDEO_TUNER . - vb2: V4L2_BUF_FLAG_DONE is set after DQBUF . - vfs: do not do RCU lookup of empty pathnames . - vhost_net: stop device during reset owner . - video: fbdev: atmel_lcdfb: fix display-timings lookup . - video: fbdev/mmp: add MODULE_LICENSE . - video: fbdev: sis: remove unused variable . - video: fbdev: via: remove possibly unused variables . - video: Use bool instead int pointer for get_opt_bool argument . - virtio_balloon: prevent uninitialized variable use . - vlan: Check for vlan ethernet types for 8021.q or 802.1ad . - vmxnet3: prevent building with 64K pages . - vxlan: consolidate csum flag handling . - vxlan: consolidate output route calculation . - vxlan: consolidate vxlan_xmit_skb and vxlan6_xmit_skb . - vxlan: do not allow overwrite of config src addr . - watchdog: imx2_wdt: restore previous timeout after suspend+resume . - wireless: cw1200: use __maybe_unused to hide pm functions_ . - x86: add MULTIUSER dependency for KVM . - x86/asm: Fix inline asm call constraints for GCC 4.4 . - x86/boot: Avoid warning for zero-filling .bss . - x86: bpf_jit: small optimization in emit_bpf_tail_call . - x86/bugs: Drop one quot;mitigationquot; from dmesg . - x86/build: Silence the build with quot;make -squot; . - x86/cpu/bugs: Make retpoline module warning conditional . - x86/cpu: Change type of x86_cache_size variable to unsigned int . - x86/entry/64: Separate cpu_current_top_of_stack from TSS.sp0 . - x86/entry/64: Use a per-CPU trampoline stack for IDT entries . - x86: fix build warnign with 32-bit PAE . - x86/fpu/math-emu: Fix possible uninitialized variable use . - x86/kaiser: fix build error with KASAN amp;amp; !FUNCTION_GRAPH_TRACER . - x86/kvm/vmx: do not use vm-exit instruction length for fast MMIO when running nested . - x86/mce: Pin the timer when modifying . - x86/microcode/AMD: Change load_microcode_amd"s param to bool to fix preemptibility bug . - x86/microcode/AMD: Do not load when running on a hypervisor . - x86/microcode: Do the family check first . - x86/mm/kmmio: Fix mmiotrace for page unaligned addresses . - x86/nospec: Fix header guards names . - x86/oprofile: Fix bogus GCC-8 warning in nmi_setup . - x86/paravirt: Remove "noreplace-paravirt" cmdline option . - x86/platform: Add PCI dependency for PUNIT_ATOM_DEBUG . - x86/platform/olpc: Fix resume handler build warning . - x86/pti: Make unpoison of pgd for trusted boot work for real . - x86/ras/inject: Make it depend on X86_LOCAL_APIC=y . - x86/retpoline: Avoid retpolines for built-in __init functions . - x86/retpoline: Remove the esp/rsp thunk . - x86/spectre: Check CONFIG_RETPOLINE in command line parser . - x86/spectre: Fix an error message . - x86/spectre: Fix spelling mistake: quot;vunerablequot;-gt; quot;vulnerablequot; . - x86/spectre: Remove the out-of-tree RSB stuffing - x86/spectre: Simplify spectre_v2 command line parsing . - x86/speculation: Fix typo IBRS_ATT, which should be IBRS_ALL . - x86/xen: Zero MSR_IA32_SPEC_CTRL before suspend . - xen/gntdev: Fix off-by-one error when unmapping with holes . - xen/gntdev: Fix partial gntdev_mmap cleanup . - xen-netfront: enable device after manual module load . - xen-netfront: remove warning when unloading module . - xen: XEN_acpi_PROCESSOR is Dom0-only . - xfrm: check id proto in validate_tmpl . - xfrm: Fix stack-out-of-bounds read on socket policy lookup . - xfrm: Fix stack-out-of-bounds with misconfigured transport mode policies . - xfrm_user: propagate sec ctx allocation errors . - xfs: do not chain ioends during writepage submission . - xfs: factor mapping out of xfs_do_writepage . - xfs: Introduce writeback context for writepages . - xfs: ioends require logically contiguous file offsets . - xfs: quota: check result of register_shrinker . - xfs: quota: fix missed destroy of qi_tree_lock . - xfs: reinit btree pointer on attr tree inactivation walk . - xfs: remove nonblocking mode from xfs_vm_writepage . - xfs: remove racy hasattr check from attr ops . - xfs: remove xfs_cancel_ioend . - xfs: stop searching for free slots in an inode chunk when there are none . - xfs: toggle readonly state around xfs_log_mount_finish . - xfs: ubsan fixes . - xfs: validate sb_logsunit is a multiple of the fs blocksize . - xfs: write unmount record for ro mounts . - xfs: xfs_cluster_write is redundant . - xtensa: fix futex_atomic_cmpxchg_inatomic .