The SUSE Linux Enterprise 11 SP4 kernel was updated to receive various security and bugfixes. Following security bugs were fixed: - CVE-2015-7509: Mounting ext4 filesystems in no-journal mode could hav lead to a system crash . - CVE-2015-7799: The slhc_init function in drivers/net/slip/slhc.c in the Linux kernel did not ensure that certain slot numbers are valid, which allowed local users to cause a denial of service via a crafted PPPIOCSMAXCID ioctl call . - CVE-2015-8104: The KVM subsystem in the Linux kernel allowed guest OS users to cause a denial of service by triggering many #DB exceptions, related to svm.c . - CVE-2015-5307: The KVM subsystem in the Linux kernel allowed guest OS users to cause a denial of service by triggering many #AC exceptions, related to svm.c and vmx.c . - CVE-2015-7990: RDS: There was no verification that an underlying transport exists when creating a connection, causing usage of a NULL pointer . - CVE-2015-5157: arch/x86/entry/entry_64.S in the Linux kernel on the x86_64 platform mishandled IRET faults in processing NMIs that occurred during userspace execution, which might have allowed local users to gain privileges by triggering an NMI . - CVE-2015-7872: The key_gc_unused_keys function in security/keys/gc.c in the Linux kernel allowed local users to cause a denial of service via crafted keyctl commands . - CVE-2015-0272: Missing checks allowed remote attackers to cause a denial of service via a crafted MTU value in an IPv6 Router Advertisement message, a different vulnerability than CVE-2015-8215 . - CVE-2015-6937: The __rds_conn_create function in net/rds/connection.c in the Linux kernel allowed local users to cause a denial of service or possibly have unspecified other impact by using a socket that was not properly bound . The following non-security bugs were fixed: - ALSA: hda - Disable 64bit address for Creative HDA controllers . - Driver: Vmxnet3: Fix ethtool -S to return correct rx queue stats . - Drivers: hv: do not do hypercalls when hypercall_page is NULL. - Drivers: hv: kvp: move poll_channel to hyperv_vmbus.h. - Drivers: hv: util: move kvp/vss function declarations to hyperv_vmbus.h. - Drivers: hv: vmbus: Get rid of some unused definitions. - Drivers: hv: vmbus: Implement the protocol for tearing down vmbus state. - Drivers: hv: vmbus: add special crash handler . - Drivers: hv: vmbus: add special kexec handler. - Drivers: hv: vmbus: kill tasklets on module unload. - Drivers: hv: vmbus: prefer ^A notification chain to "panic". - Drivers: hv: vmbus: remove hv_synic_free_cpu call from hv_synic_cleanup. - Drivers: hv: vmbus: unregister panic notifier on module unload. - IB/srp: Avoid skipping srp_reset_host after a transport error . - IB/srp: Fix a sporadic crash triggered by cable pulling . - KEYS: Fix race between key destruction and finding a keyring by name . - Make sure XPRT_CONNECTING gets cleared when needed . - NFSv4: Fix two infinite loops in the mount code . - PCI: Add VPD function 0 quirk for Intel Ethernet devices . - PCI: Add dev_flags bit to access VPD through function 0 . - PCI: Clear NumVFs when disabling SR-IOV in sriov_init . - PCI: Refresh First VF Offset and VF Stride when updating NumVFs . - PCI: Update NumVFs register when disabling SR-IOV . - PCI: delay configuration of SRIOV capability . - PCI: set pci sriov page size before reading SRIOV BAR . - SCSI: hosts: update to use ida_simple for host_no - SUNRPC refactor rpcauth_checkverf error returns . - af_iucv: avoid path quiesce of severed path in shutdown . - ahci: Add Device ID for Intel Sunrise Point PCH . - blktap: also call blkif_disconnect when frontend switched to closed . - blktap: refine mm tracking . - cachefiles: Avoid deadlocks with fs freezing . - dm sysfs: introduce ability to add writable attributes . - dm-snap: avoid deadock on s-lock when a read is split . - dm: do not start current request if it would"ve merged with the previous . - dm: impose configurable deadline for dm_request_fn"s merge heuristic . - drm/i915: Avoid race of intel_crt_detect_hotplug with HPD interrupt, v2 . - drm/i915: Fix DDC probe for passive adapters . - drm/i915: add hotplug activation period to hotplug update mask . - fix lpfc_send_rscn_event allocation size claims bnc#935757 - fs: Avoid deadlocks of fsync_bdev and fs freezing . - fs: Fix deadlocks between sync and fs freezing . - hugetlb: simplify migrate_huge_page . - hwpoison, hugetlb: lock_page/unlock_page does not match for handling a free hugepage . - ipr: Fix incorrect trace indexing . - ipr: Fix invalid array indexing for HRRQ . - ipv6: fix tunnel error handling . - ipvs: Fix reuse connection if real server is dead . - ipvs: drop first packet to dead server . - kernel: correct uc_sigmask of the compat signal frame . - kernel: fix incorrect use of DIAG44 in continue_trylock_relax . - kexec: Fix race between panic and crash_kexec called directly . - ktime: add ktime_after and ktime_before helpe . - lib/string.c: introduce memchr_inv . - lpfc: Fix cq_id masking problem . - macvlan: Support bonding events bsc#948521 - memory-failure: do code refactor of soft_offline_page . - memory-failure: fix an error of mce_bad_pages statistics . - memory-failure: use num_poisoned_pages instead of mce_bad_pages . - memory-hotplug: update mce_bad_pages when removing the memory . - mm/memory-failure.c: fix wrong num_poisoned_pages in handling memory error on thp . - mm/memory-failure.c: recheck PageHuge after hugetlb page migrate successfully . - mm/migrate.c: pair unlock_page and lock_page when migrating huge pages . - mm: exclude reserved pages from dirtyable memory 32b fix . - mm: fix GFP_THISNODE callers and clarify . - mm: remove GFP_THISNODE . - mm: sl[au]b: add knowledge of PFMEMALLOC reserve pages . - net/core: Add VF link state control policy . - netfilter: xt_recent: fix namespace destroy path . - panic/x86: Allow cpus to save registers even if they . - panic/x86: Fix re-entrance problem due to panic on . - pktgen: clean up ktime_t helpers . - qla2xxx: Do not reset adapter if SRB handle is in range . - qla2xxx: Remove decrement of sp reference count in abort handler . - qla2xxx: Remove unavailable firmware files . - qla2xxx: do not clear slot in outstanding cmd array . - qlge: Fix qlge_update_hw_vlan_features to handle if interface is down . - quota: Fix deadlock with suspend and quotas . - rcu: Eliminate deadlock between CPU hotplug and expedited grace periods . - rtc: cmos: Cancel alarm timer if alarm time is equal to now+1 seconds . - rtnetlink: Fix VF IFLA policy . - rtnetlink: fix VF info size . - s390/dasd: fix disconnected device with valid path mask . - s390/dasd: fix invalid PAV assignment after suspend/resume . - s390/dasd: fix list_del corruption after lcu changes . - s390/pci: handle events for unused functions . - s390/pci: improve handling of hotplug event 0x301 . - s390/pci: improve state check when processing hotplug events . - sched/core: Fix task and run queue sched_info::run_delay inconsistencies . - sg: fix read error reporting . - usb: xhci: apply XHCI_AVOID_BEI quirk to all Intel xHCI controllers . - usbback: correct copy length for partial transfers . - usbvision fix overflow of interfaces array . - veth: extend device features . - vfs: Provide function to get superblock and wait for it to thaw . - vmxnet3: adjust ring sizes when interface is down . - vmxnet3: fix ethtool ring buffer size setting . - writeback: Skip writeback for frozen filesystem . - x86, pageattr: Prevent overflow in slow_virt_to_phys for X86_PAE . - x86/evtchn: make use of PHYSDEVOP_map_pirq. - x86: mm: drop TLB flush from ptep_set_access_flags . - x86: mm: only do a local tlb flush in ptep_set_access_flags . - xen: x86, pageattr: Prevent overflow in slow_virt_to_phys for X86_PAE . - xfs: Fix lost direct IO write in the last block . - xfs: Fix softlockup in xfs_inode_ag_walk . - xfs: add EOFBLOCKS inode tagging/untagging . - xfs: add XFS_IOC_FREE_EOFBLOCKS ioctl . - xfs: add background scanning to clear eofblocks inodes . - xfs: add inode id filtering to eofblocks scan . - xfs: add minimum file size filtering to eofblocks scan . - xfs: create function to scan and clear EOFBLOCKS inodes . - xfs: create helper to check whether to free eofblocks on inode . - xfs: introduce a common helper xfs_icluster_size_fsb . - xfs: make xfs_free_eofblocks non-static, return EAGAIN on trylock failure . - xfs: support a tag-based inode_ag_iterator . - xfs: support multiple inode id filtering in eofblocks scan . - xfs: use xfs_icluster_size_fsb in xfs_bulkstat . - xfs: use xfs_icluster_size_fsb in xfs_ialloc_inode_init . - xfs: use xfs_icluster_size_fsb in xfs_ifree_cluster . - xfs: use xfs_icluster_size_fsb in xfs_imap . - xhci: Add spurious wakeup quirk for LynxPoint-LP controllers . - xhci: Calculate old endpoints correctly on device reset . - xhci: For streams the css flag most be read from the stream-ctx on ep stop . - xhci: change xhci 1.0 only restrictions to support xhci 1.1 . - xhci: fix isoc endpoint dequeue from advancing too far on transaction error . - xhci: silence TD warning . - xhci: use uninterruptible sleep for waiting for internal operations .