The SUSE Linux Enterprise 11 SP4 kernel was updated to receive various security and bugfixes. The following security bugs were fixed: - CVE-2014-3688: The SCTP implementation allowed remote attackers to cause a denial of service by triggering a large number of chunks in an association"s output queue . The following non-security bugs were fixed: - ALSA: hda/ca0132: fix build failure when a local macro is defined . - ALSA: seq: Do not allow resizing pool in use . - Delete patches.fixes/0001-ipc-shm-Fix-shmat-mmap-nil-page-protection.patch - IB/mlx4: fix sprintf format warning . - RDMA/mlx4: Discard unknown SQP work requests . - USB: uss720: fix NULL-deref at probe . - bna: integer overflow bug in debugfs . - e1000e: Ignore TSYNCRXCTL when getting I219 clock attributes . - e1000e: Undo e1000e_pm_freeze if __e1000_shutdown fails . - fix a leak in /proc/schedstats . - ixgbe: Initialize 64-bit stats seqcounts . - mm: fix the NULL mapping case in __isolate_lru_page . - module/retpoline: Warn about missing retpoline in module . - net/mlx4_core: Fix error handling in mlx4_init_port_info . - net/mlx4_en: Change default QoS settings . - net/mlx4_en: Use __force to fix a sparse warning in TX datapath . - netxen: fix incorrect loop counter decrement . - powerpc: Machine check interrupt is a non-maskable interrupt . - s390/qdio: do not merge ERROR output buffers . - s390/qeth: do not dump control cmd twice . - s390/qeth: fix SETIP command handling . - s390/qeth: free netdevice when removing a card . - s390/qeth: lock read device while queueing next buffer . - s390/qeth: when thread completes, wake up all waiters . - sched/sysctl: Check user input value of sysctl_sched_time_avg . - scsi: sg: mitigate read/write abuse . - tg3: do not clear stats while tg3_close . - video/stifb: Return -ENOMEM after a failed kzalloc in stifb_init_fb . - vmxnet3: use correct flag to indicate LRO feature . - x86-32/kaiser: Add CPL check for CR3 switch before iret . - x86-non-upstream-eager-fpu 32bit fix . - x86/cpu/bugs: Make retpoline module warning conditional .