The SUSE Linux Enterprise 12 SP5 Azure kernel was updated to receive various security and bugfixes. The following security bugs were fixed: - CVE-2022-36879: Fixed an issue in xfrm_expand_policies in net/xfrm/xfrm_policy.c where a refcount could be dropped twice . - CVE-2022-3028: Fixed race condition that was found in the IP framework for transforming packets . - CVE-2022-2977: Fixed reference counting for struct tpm_chip . - CVE-2022-29581: Fixed improper update of reference count vulnerability in net/sched that allowed a local attacker to cause privilege escalation to root . - CVE-2022-2639: Fixed an integer coercion error that was found in the openvswitch kernel module . - CVE-2022-26373: Fixed non-transparent sharing of return predictor targets between contexts in some Intel Processors . - CVE-2022-2588: Fixed use-after-free in cls_route . - CVE-2022-21385: Fixed a flaw in net_rds_alloc_sgs that allowed unprivileged local users to crash the machine . - CVE-2022-20369: Fixed possible out of bounds write due to improper input validation in v4l2_m2m_querybuf of v4l2-mem2mem.c . - CVE-2022-20368: Fixed slab-out-of-bounds access in packet_recvmsg . - CVE-2021-4203: Fixed use-after-free read flaw that was found in sock_getsockopt in net/core/sock.c due to SO_PEERCRED and SO_PEERGROUPS race with listen . - CVE-2020-36516: Fixed an issue in the mixed IPID assignment method where an attacker was able to inject data into or terminate a victim"s TCP session . The following non-security bugs were fixed: - 9p: migrate from sync_inode to filemap_fdatawrite_wbc . - ACPI: CPPC: Do not prevent CPPC from working in the future . - Fix releasing of old bundles in xfrm_bundle_lookup . - KABI: cgroup: Restore KABI of css_set . - KVM: PPC: Book3S HV: Context tracking exit guest context before enabling irqs . - KVM: arm64: Avoid setting the upper 32 bits of TCR_EL2 and CPTR_EL2 - KVM: nVMX: Set UMIP bit CR4_FIXED1 MSR when emulating UMIP . - KVM: x86: Mark TSS busy during LTR emulation _after_ all fault checks . - KVM: x86: Set error code to segment selector on LLDT/LTR non-canonical #GP . - PCI: dwc: Deallocate EPC memory on dw_pcie_ep_init errors . - Revert USB: xhci: fix U1/U2 handling for hardware with XHCI_INTEL_HOST quirk set . - Revert r8152: adjust the settings about MAC clock speed down for RTL8153 . - SUNRPC: Fix READ_PLUS crasher . - SUNRPC: Fix the svc_deferred_event trace class . - USB: new quirk for Dell Gen 2 devices . - USB: serial: io_ti: add Agilent E5805A support . - add Kirk Allan as branch maintainer - ata: libata: add qc-flags in ata_qc_complete_template tracepoint . - btrfs: Convert fs_info-free_chunk_space to atomic64_t . - btrfs: add a trace class for dumping the current ENOSPC state . - btrfs: add a trace point for reserve tickets . - btrfs: adjust the flush trace point to include the source . - btrfs: check reclaim_size in need_preemptive_reclaim . - btrfs: check worker before need_preemptive_reclaim . - btrfs: do not do preemptive flushing if the majority is global rsv . - btrfs: do not include the global rsv size in the preemptive used amount . - btrfs: enable a tracepoint when we fail tickets . - btrfs: handle preemptive delalloc flushing slightly differently . - btrfs: implement space clamping for preemptive flushing . - btrfs: improve preemptive background space flushing . - btrfs: include delalloc related info in dump space info tracepoint . - btrfs: introduce a FORCE_COMMIT_TRANS flush operation . - btrfs: make flush_space take a enum btrfs_flush_state instead of int . - btrfs: only clamp the first time we have to start flushing . - btrfs: only ignore delalloc if delalloc is much smaller than ordered . - btrfs: reduce the preemptive flushing threshold to 90% . - btrfs: remove FLUSH_DELAYED_REFS from data ENOSPC flushing . - btrfs: rename need_do_async_reclaim . - btrfs: rework btrfs_calc_reclaim_metadata_size . - btrfs: rip out btrfs_space_info::total_bytes_pinned . - btrfs: rip out may_commit_transaction . - btrfs: rip the first_ticket_bytes logic from fail_all_tickets . - btrfs: simplify the logic in need_preemptive_flushing . - btrfs: take into account global rsv in need_preemptive_reclaim . - btrfs: use delalloc_bytes to determine flush amount for shrink_delalloc . - btrfs: use percpu_read_positive instead of sum_positive for need_preempt . - btrfs: use the filemap_fdatawrite_wbc helper for delalloc shrinking . - btrfs: use the global rsv size in the preemptive thresh calculation . - btrfs: wait on async extents when flushing delalloc . - btrfs: wake up async_delalloc_pages waiters after submit . - ceph: do not truncate file in atomic_open . - cgroup: Use separate src/dst nodes when preloading css_sets for migration . - check sk_peer_cred pointer before put_cred call - crypto: arm64/gcm - Select AEAD for GHASH_ARM64_CE . - crypto: inside-secure - Add missing MODULE_DEVICE_TABLE for of . - cxgb4: fix endian conversions for L4 ports in filters . - cxgb4: move handling L2T ARP failures to caller . - cxgb4: parse TC-U32 key values and masks natively . - dm raid: fix KASAN warning in raid5_add_disks . - drivers/perf: arm_spe: Fix consistency of SYS_PMSCR_EL1.CX . - fs: add a filemap_fdatawrite_wbc helper . - fuse: limit nsec . - iommu/vt-d: avoid invalid memory access via node_online . - ipheth: fix EOVERFLOW in ipheth_rcvbulk_callback . - kabi/severities: add mlx5 internal symbols - kernel-obs-build: include qemu_fw_cfg - lightnvm: Remove lightnvm implemenation . - md-raid: destroy the bitmap after destroying the thread . - md/bitmap: do not set sb values if can"t pass sanity check . - mm/rmap.c: do not reuse anon_vma if we just want a copy . - mm/rmap: Fix anon_vma-degree ambiguity leading to double-reuse . - mvpp2: fix panic on module removal . - mvpp2: refactor the HW checksum setup . - net/mlx5: Clear LAG notifier pointer after unregister . - net/mlx5: Fix auto group size calculation . - net/mlx5: Imply MLXFW in mlx5_core . - net/mlx5e: Use the inner headers to determine tc/pedit offload limitation on decap flows . - net: dsa: mt7530: Change the LINK bit to reflect the link status . - net: emaclite: Simplify if-else statements . - net: ll_temac: Add more error handling of dma_map_single calls . - net: ll_temac: Enable DMA when ready, not before . - net: ll_temac: Fix RX buffer descriptor handling on GFP_ATOMIC pressure . - net: ll_temac: Fix iommu/swiotlb leak . - net: ll_temac: Fix support for 64-bit platforms . - net: ll_temac: Fix support for little-endian platforms . - net: ll_temac: Fix typo bug for 32-bit . - net: sock: tracing: Fix sock_exceed_buf_limit not to dereference stale pointer . - net: stmmac: gmac4: bitrev32 returns u32 . - net: usb: lan78xx: Connect PHY before registering MAC . - net: xilinx: replace dev_kfree_skb_irq by dev_consume_skb_irq for drop profiles . - net_sched: cls_route: disallow handle of 0 . - objtool: Add --backtrace support . - objtool: Add support for intra-function calls . - objtool: Allow no-op CFI ops in alternatives . - objtool: Convert insn type to enum . - objtool: Do not use ignore flag for fake jumps . - objtool: Fix !CFI insn_state propagation . - objtool: Fix ORC vs alternatives . - objtool: Fix sibling call detection . - objtool: Make handle_insn_ops unconditional . - objtool: Remove INSN_STACK . - objtool: Remove check preventing branches within alternative . - objtool: Rename elf_open to prevent conflict with libelf from elftoolchain . - objtool: Rename struct cfi_state . - objtool: Rework allocating stack_ops on decode . - objtool: Rewrite alt-skip_orig . - objtool: Set insn-func for alternatives . - objtool: Support conditional retpolines . - objtool: Support multiple stack_op per instruction . - objtool: Track original function across branches . - objtool: Uniquely identify alternative instruction groups . - objtool: Use Elf_Scn typedef instead of assuming struct name . - pNFS: Do not keep retrying if the server replied NFS4ERR_LAYOUTUNAVAILABLE . - phy: tegra: fix device-tree node lookups . - powerpc/perf: Add privileged access check for thread_imc . - powerpc/perf: Fix loop exit condition in nest_imc_event_init . - powerpc/perf: Return accordingly on invalid chip-id in . - powerpc/powernv/kvm: Use darn for H_RANDOM on Power9 . - powerpc/powernv: Avoid crashing if rng is NULL . - powerpc/powernv: Staticify functions without prototypes . - powerpc/powernv: Use darn instruction for get_random_seed on Power9 . - powerpc/powernv: delay rng platform device creation until later in boot . - powerpc/powernv: rename remaining rng powernv_ functions to pnv_ . - powerpc/powernv: wire up rng during setup_arch . - powerpc/pseries: wire up rng during setup_arch . - powerpc/xive: Fix refcount leak in xive_get_max_prio . - powerpc: Enable execve syscall exit tracepoint . - powerpc: Use sizeof rather than sizeof . - powerpc: define get_cycles macro for arch-override . - powerpc: powernv: kABI: add back powernv_get_random_long . - qed: Add EDPM mode type for user-fw compatibility . - qed: fix kABI in qed_rdma_create_qp_in_params . - rpm: Fix parsing of rpm/macros.kernel-source on SLE12 . - scsi: smartpqi: set force_blk_mq=1. - spmi: trace: fix stack-out-of-bound access in SPMI tracing functions . - squashfs: add more sanity checks in id lookup . - squashfs: add more sanity checks in inode lookup . - squashfs: add more sanity checks in xattr id lookup . - squashfs: fix divide error in calculate_skip . - squashfs: fix inode lookup sanity checks . - squashfs: fix xattr id and id lookup sanity checks . - tracepoint: Add tracepoint_probe_register_may_exist for BPF tracing . - tracing/perf: Use strndup_user instead of buggy open-coded version . - tracing/uprobes: Check the return value of kstrdup for tu-filename . - tracing: Fix race in perf_trace_buf initialization . - usb: misc: fix improper handling of refcount in uss720_probe . - usbnet: Fix linkwatch use-after-free on disconnect . - usbnet: smsc95xx: Fix deadlock on runtime resume . - xen/xenbus: fix return type in xenbus_file_read . - xfs: always free inline data before resetting inode fork during ifree . - xfs: check sb_meta_uuid for dabuf buffer recovery . - xfs: fix NULL pointer dereference in xfs_getbmap . - xprtrdma: Fix trace point use-after-free race . Special Instructions and Notes: Please reboot the system after installing this update.