The SUSE Linux Enterprise 15 SP3 kernel was updated to receive various security and bugfixes. The following security bugs were fixed: - CVE-2021-3573: Fixed an UAF vulnerability in function that can allow attackers to corrupt kernel heaps and adopt further exploitations. - CVE-2021-0605: Fixed an out-of-bounds read which could lead to local information disclosure in the kernel with System execution privileges needed. - CVE-2021-0512: Fixed a possible out-of-bounds write which could lead to local escalation of privilege with no additional execution privileges needed. - CVE-2021-33624: Fixed a bug which allows unprivileged BPF program to leak the contents of arbitrary kernel memory via a side-channel. - CVE-2021-34693: Fixed a bug in net/can/bcm.c which could allow local users to obtain sensitive information from kernel stack memory because parts of a data structure are uninitialized. The following non-security bugs were fixed: - 0001-x86-sched-Treat-Intel-SNC-topology-as-default-COD-as.patch: . - alx: Fix an error handling path in "alx_probe" . - ASoC: fsl-asoc-card: Set .owner attribute when registering card . - ASoC: Intel: bytcr_rt5640: Add quirk for the Glavey TM800A550L tablet . - ASoC: Intel: bytcr_rt5640: Add quirk for the Lenovo Miix 3-830 tablet . - ASoC: max98088: fix ni clock divider calculation . - ASoC: rt5659: Fix the lost powers for the HDA header . - ASoC: rt5682: Fix the fast discharge for headset unplugging in soundwire mode . - ASoC: sti-sas: add missing MODULE_DEVICE_TABLE . - ASoC: tas2562: Fix TDM_CFG0_SAMPRATE values . - batman-adv: Avoid WARN_ON timing related checks . - be2net: Fix an error handling path in "be_probe" . - block: Discard page cache of zone reset target range . - Bluetooth: Add a new USB ID for RTL8822CE . - Bluetooth: use correct lock to prevent UAF of hdev object . - bnxt_en: Call bnxt_ethtool_free in bnxt_init_one error path . - bnxt_en: Fix TQM fastpath ring backing store computation . - bnxt_en: Rediscover PHY capabilities after firmware reset . - bpf: Fix integer overflow in argument calculation for bpf_map_area_alloc . - bpf: Fix libelf endian handling in resolv_btfids . - bpfilter: Specify the log level for the kmsg message . - can: mcba_usb: fix memory leak in mcba_usb . - ceph: must hold snap_rwsem when filling inode for async create . - cfg80211: avoid double free of PMSR request . - cfg80211: make certificate generation more robust . - cgroup1: do not allow "\n" in renaming . - cxgb4: fix endianness when flashing boot image . - cxgb4: fix sleep in atomic when flashing PHY firmware . - cxgb4: fix wrong ethtool n-tuple rule lookup . - cxgb4: fix wrong shift . - cxgb4: halt chip before flashing PHY firmware image . - dax: Add a wakeup mode parameter to put_unlocked_entry . - dax: Add an enum for specifying dax wakup mode . - dax: fix ENOMEM handling in grab_mapping_entry . - dax: Wake up all waiters after invalidating dax entry . - dmaengine: ALTERA_MSGDMA depends on HAS_IOMEM . - dmaengine: fsl-dpaa2-qdma: Fix error return code in two functions . - dmaengine: pl330: fix wrong usage of spinlock flags in dma_cyclc . - dmaengine: QCOM_HIDMA_MGMT depends on HAS_IOMEM . - dmaengine: stedma40: add missing iounmap on error in d40_probe . - drm: Fix use-after-free read in drm_getunique . - drm: Lock pointer access in drm_master_release . - drm/amd/amdgpu:save psp ring wptr to avoid attack . - drm/amd/display: Allow bandwidth validation for 0 streams . - drm/amd/display: Fix potential memory leak in DMUB hw_init . - drm/amdgpu: refine amdgpu_fru_get_product_info . - drm/sun4i: dw-hdmi: Make HDMI PHY into a platform device . - drm/tegra: sor: Do not leak runtime PM reference . - drm/vc4: hdmi: Make sure the controller is powered in detect . - drm/vc4: hdmi: Move the HSM clock enable to runtime_pm . - dt-bindings: reset: meson8b: fix duplicate reset IDs . - ethtool: strset: fix message length calculation . - ext4: fix bug on in ext4_es_cache_extent as ext4_split_extent_at failed . - ext4: fix check to prevent false positive report of incorrect used inodes . - ext4: fix error code in ext4_commit_super . - ext4: fix memory leak in ext4_fill_super . - FCOE: fcoe_wwn_from_mac kABI fix . - fs: fix reporting supported extra file attributes for statx . - ftrace: Do not blindly read the ip address in ftrace_bug . - ftrace: Free the trampoline when ftrace_startup fails . - fuse: BUG_ON correction in fuse_dev_splice_write . - HID: Add BUS_VIRTUAL to hid_connect logging . - HID: gt683r: add missing MODULE_DEVICE_TABLE . - HID: hid-input: add mapping for emoji picker key . - HID: hid-sensor-hub: Return error for hid_set_field failure . - HID: quirks: Set INCREMENT_USAGE_ON_DUPLICATE for Saitek X65 . - HID: usbhid: fix info leak in hid_submit_ctrl . - HID: usbhid: Fix race between usbhid_close and usbhid_stop . - hwmon: shows the negative temperature properly . - i2c: mpc: Make use of i2c_recover_bus . - ice: add ndo_bpf callback for safe mode netdev ops . - ice: parameterize functions responsible for Tx ring management . - isdn: mISDN: netjet: Fix crash in nj_probe: . - kernel-binary.spec.in: Regenerate makefile when not using mkmakefile. - kernel: kexec_file: fix error return code of kexec_calculate_store_digests . - kthread_worker: split code for canceling the delayed work timer . - kthread: prevent deadlock when kthread_mod_delayed_work races with kthread_cancel_delayed_work_sync . - kyber: fix out of bounds access when preempted . - lib: vdso: Remove CROSS_COMPILE_COMPAT_VDSO . - media: mtk-mdp: Check return value of of_clk_get . - media: mtk-mdp: Fix a refcounting bug on error in init . - media: s5p-g2d: Fix a memory leak in an error handling path in "g2d_probe" . - mlxsw: reg: Spectrum-3: Enforce lowest max-shaper burst size of 11 . - mmc: meson-gx: use memcpy_to/fromio for dram-access-quirk . - module: limit enabling module.sig_enforce . - net: mvpp2: add mvpp2_phylink_to_port helper . - net/mlx5: Consider RoCE cap before init RDMA resources . - net/mlx5: E-Switch, Allow setting GUID for host PF vport . - net/mlx5: E-Switch, Read PF mac address . - net/mlx5: Fix PBMC register mapping . - net/mlx5: Fix placement of log_max_flow_counter . - net/mlx5: Fix sleep while atomic in mlx5_eswitch_get_vepa . - net/mlx5: Reset mkey index on creation . - net/mlx5e: Block offload of outer header csum for UDP tunnels . - net/mlx5e: Fix page reclaim for dead peer hairpin . - net/mlx5e: Remove dependency in IPsec initialization flows . - net/nfc/rawsock.c: fix a permission check bug . - net/sched: act_ct: handle DNAT tuple collision . - net/x25: Return the correct errno code . - netxen_nic: Fix an error handling path in "netxen_nic_probe" . - NFS: Fix a potential NULL dereference in nfs_get_client . - NFS: Fix use-after-free in nfs4_init_client . - NFS: Fix deadlock between nfs4_evict_inode and nfs4_opendata_get_inode . - nvmem: rmem: fix undefined reference to memremap . - ocfs2: fix data corruption by fallocate . - PCI: aardvark: Do not rely on jiffies while holding spinlock . - PCI: aardvark: Fix kernel panic during PIO transfer . - PCI: Add ACS quirk for Broadcom BCM57414 NIC . - PCI: Mark some NVIDIA GPUs to avoid bus reset . - PCI: Mark TI C667X to avoid bus reset . - PCI: Work around Huawei Intelligent NIC VF FLR erratum . - perf/x86/intel/uncore: Fix a kernel WARNING triggered by maxcpus=1 . - perf/x86/intel/uncore: Remove uncore extra PCI dev HSWEP_PCI_PCU_3 . - powerpc/perf: Fix crash in perf_instruction_pointer when ppmu is not set . - qla2xxx: synchronize rport dev_loss_tmo setting . - qlcnic: Fix an error handling path in "qlcnic_probe" . - radeon: use memcpy_to/fromio for UVD fw upload . - regulator: bd70528: Fix off-by-one for buck123 .n_voltages setting . - Removed patch that was incorrectly added to SLE15-SP2 - Revert "ecryptfs: replace BUG_ON with error handling code" . - Revert "ibmvnic: simplify reset_long_term_buff function" . - Revert "PCI: PM: Do not read power state in pci_enable_device_flags" . - Revert "video: hgafb: fix potential NULL pointer dereference" . - Revert "video: imsttfb: fix potential NULL pointer dereferences" - s390/dasd: add missing discipline function . - s390/stack: fix possible register corruption with stack switch helper . - sched/debug: Fix cgroup_path[] serialization - sched/fair: Keep load_avg and load_sum synced - scsi: core: Fix race between handling STS_RESOURCE and completion . - scsi: fcoe: Fix mismatched fcoe_wwn_from_mac declaration . - scsi: ufs: Fix imprecise load calculation in devfreq window . - SCSI: ufs: fix ktime_t kabi change . - scsi: ufs: ufshcd-pltfrm depends on HAS_IOMEM . - spi: spi-nxp-fspi: move the register operation after the clock enable . - spi: sprd: Add missing MODULE_DEVICE_TABLE . - spi: stm32-qspi: Always wait BUSY bit to be cleared in stm32_qspi_wait_cmd . - SUNRPC: Handle major timeout in xprt_adjust_timeout . - SUNRPC: Handle major timeout in xprt_adjust_timeout . - tracing: Correct the length check which causes memory corruption . - tracing: Do no increment trace_clock_global by one . - tracing: Do not stop recording cmdlines when tracing is off . - tracing: Do not stop recording comms if the trace file is being read . - tracing: Restructure trace_clock_global to never block . - USB: core: hub: Disable autosuspend for Cypress CY7C65632 . - USB: dwc3: core: fix kernel panic when do reboot . - USB: dwc3: core: fix kernel panic when do reboot . - USB: dwc3: debugfs: Add and remove endpoint dirs dynamically . - USB: dwc3: ep0: fix NULL pointer exception . - USB: f_ncm: only first packet of aggregate needs to start timer . - USB: f_ncm: only first packet of aggregate needs to start timer . - USB: fix various gadget panics on 10gbps cabling . - USB: fix various gadget panics on 10gbps cabling . - USB: gadget: eem: fix wrong eem header operation . - USB: gadget: eem: fix wrong eem header operation . - USB: gadget: f_fs: Ensure io_completion_wq is idle during unbind . - USB: gadget: f_fs: Ensure io_completion_wq is idle during unbind . - USB: serial: ftdi_sio: add NovaTech OrionMX product ID . - USB: serial: ftdi_sio: add NovaTech OrionMX product ID . - USB: serial: omninet: add device id for Zyxel Omni 56K Plus . - USB: serial: omninet: add device id for Zyxel Omni 56K Plus . - video: hgafb: correctly handle card detect failure during probe . - video: hgafb: fix potential NULL pointer dereference . - vrf: fix maximum MTU . - x86/elf: Use _BITUL macro in UAPI headers . - x86/fpu: Preserve supervisor states in sanitize_restored_user_xstate . - x86/pkru: Write hardware init value to PKRU when xstate is init . - x86/process: Check PF_KTHREAD and not current-greater than or equal to mm for kernel threads . - xen-blkback: fix compatibility bug with single page rings . - xen-pciback: reconfigure also from backend watch handler . - xen-pciback: redo VF placement in the virtual topology . - xen/evtchn: Change irq_info lock to raw_spinlock_t . - xfrm: policy: Read seqcount outside of rcu-read side in xfrm_policy_lookup_bytype . Special Instructions and Notes: Please reboot the system after installing this update.