The SUSE Linux Enterprise 15 kernel was updated to receive various security and bugfixes. The following security bugs were fixed: - CVE-2019-15291: There was a NULL pointer dereference, caused by a malicious USB device in the flexcop_usb_probe function in the drivers/media/usb/b2c2/flexcop-usb.c driver . - CVE-2019-14821: An out-of-bounds access issue was found in the way the KVM hypervisor implements the Coalesced MMIO write operation. It operates on an MMIO ring buffer "struct kvm_coalesced_mmio" object, wherein write indices "ring-greater than first" and "ring-greater than last" value could be supplied by a host user-space process. An unprivileged host user or process with access to "/dev/kvm" device could use this flaw to crash the host kernel, resulting in a denial of service or potentially escalating privileges on the system . - CVE-2017-18595: A double free may be caused by the function allocate_trace_buffer in the file kernel/trace/trace.c . - CVE-2019-9506: The Bluetooth BR/EDR specification up to and including version 5.1 permitted sufficiently low encryption key length and did not prevent an attacker from influencing the key length negotiation. This allowed practical brute-force attacks that could decrypt traffic and injected arbitrary ciphertext without the victim noticing . The following non-security bugs were fixed: - ACPI: custom_method: fix memory leaks . - ACPI / PCI: fix acpi_pci_irq_enable memory leak . - ACPI / property: Fix acpi_graph_get_remote_endpoint name in kerneldoc . - alarmtimer: Use EOPNOTSUPP instead of ENOTSUPP . - ALSA: aoa: onyx: always initialize register read value . - ALSA: firewire-tascam: check intermediate state of clock status and retry . - ALSA: firewire-tascam: handle error code when getting current source of clock . - ASoC: es8328: Fix copy-paste error in es8328_right_line_controls . - ASoC: Intel: Baytrail: Fix implicit fallthrough warning . - ASoC: sun4i-i2s: RX and TX counter registers are swapped . - ASoC: wm8737: Fix copy-paste error in wm8737_snd_controls . - ASoC: wm8988: fix typo in wm8988_right_line_controls . - ath9k: dynack: fix possible deadlock in ath_dynack_node_{de}init . - atm: iphase: Fix Spectre v1 vulnerability . - bcma: fix incorrect update of BCMA_CORE_PCI_MDIO_DATA . - blk-flush: do not run queue for requests bypassing flush . - blk-flush: use blk_mq_request_bypass_insert . - blk-mq: do not allocate driver tag upfront for flush rq . - blk-mq: Fix memory leak in blk_mq_init_allocated_queue error handling . - blk-mq: insert rq with DONTPREP to hctx dispatch list when requeue . - blk-mq: kABI fixes for blk-mq.h . - blk-mq: move blk_mq_put_driver_tag* into blk-mq.h . - blk-mq: punt failed direct issue to dispatch list . - blk-mq: put the driver tag of nxt rq before first one is requeued . - blk-mq-sched: decide how to handle flush rq via RQF_FLUSH_SEQ . - block: fix timeout changes for legacy request drivers . - block: kABI fixes for BLK_EH_DONE renaming . - block: rename BLK_EH_NOT_HANDLED to BLK_EH_DONE . - bnx2x: Disable multi-cos feature . - bonding/802.3ad: fix link_failure_count tracking . - bonding/802.3ad: fix slave link initialization transition states . - bonding: Add vlan tx offload to hw_enc_features . - bonding: set default miimon value for non-arp modes if not set . - bonding: speed/duplex update at NETDEV_UP event . - btrfs: fix use-after-free when using the tree modification log . - btrfs: qgroup: Fix reserved data space leak if we have multiple reserve calls . - btrfs: qgroup: Fix the wrong target io_tree when freeing reserved data space . - btrfs: relocation: fix use-after-free on dead relocation roots . - ceph: use ceph_evict_inode to cleanup inode"s resource . - clk: at91: fix update bit maps on CFG_MOR write . - clk: sunxi-ng: v3s: add missing clock slices for MMC2 module clocks . - clk: sunxi-ng: v3s: add the missing PLL_DDR1 . - crypto: caam - fix concurrency issue in givencrypt descriptor . - crypto: caam - free resources in case caam_rng registration failed . - crypto: cavium/zip - Add missing single_release . - crypto: ccp - Reduce maximum stack usage . - crypto: qat - Silence smp_processor_id warning . - crypto: skcipher - Unmap pages after an external error . - dmaengine: dw: platform: Switch to acpi_dma_controller_register . - dmaengine: iop-adma.c: fix printk format warning . - drivers: thermal: int340x_thermal: Fix sysfs race condition . - drm/i915: Fix various tracepoints for gen2 - drm/imx: Drop unused imx-ipuv3-crtc.o build - EDAC/amd64: Decode syndrome before translating address . - eeprom: at24: make spd world-readable again . - ext4: fix warning inside ext4_convert_unwritten_extents_endio . - ext4: set error return correctly when ext4_htree_store_dirent fails . - Fix kabi for: NFSv4: Fix OPEN / CLOSE race . - gpio: fix line flag validation in lineevent_create . - gpio: fix line flag validation in linehandle_create . - gpiolib: acpi: Add gpiolib_acpi_run_edge_events_on_boot option and blacklist . - gpiolib: only check line handle flags once . - gpio: Move gpiochip_lock/unlock_as_irq to gpio/driver.h . - hwmon: Fix write operations for negative temperatures . - hwmon: fix shtc1 and shtw1 id mask . - ife: error out when nla attributes are empty . - iio: dac: ad5380: fix incorrect assignment to val . - Input: elan_i2c - remove Lenovo Legion Y7000 PnpID . - iommu/dma: Fix for dereferencing before null checking . - ip6_tunnel: fix possible use-after-free on xmit . - ipv6/addrconf: allow adding multicast addr if IFA_F_MCAUTOJOIN is set . - isdn/capi: check message length in capi_write . - kabi: media: em28xx: fix handler for vidioc_s_input . fixes kabi - kabi: media: em28xx: stop rewriting device"s struct . fixes kabi - KVM: PPC: Book3S: Fix incorrect guest-to-user-translation error handling . - KVM: PPC: Book3S HV: Check for MMU ready on piggybacked virtual cores . - KVM: PPC: Book3S HV: Do not lose pending doorbell request on migration on P9 . - KVM: PPC: Book3S HV: Do not push XIVE context when not using XIVE device . - KVM: PPC: Book3S HV: Fix lockdep warning when entering the guest . - KVM: PPC: Book3S HV: Fix race in re-enabling XIVE escalation interrupts . - KVM: PPC: Book3S HV: Handle virtual mode in XIVE VCPU push code . - KVM: PPC: Book3S HV: XIVE: Free escalation interrupts before disabling the VP . - leds: leds-lp5562 allow firmware files up to the maximum length . - leds: trigger: gpio: GPIO 0 is valid . - libertas_tf: Use correct channel range in lbtf_geo_init . - libiscsi: do not try to bypass SCSI EH . - livepatch: Nullify obj-greater than mod in klp_module_coming"s error path . - mac80211: minstrel_ht: fix per-group max throughput rate initialization . - md: do not report active array_state until after revalidate_disk completes . - md: only call set_in_sync when it is expected to succeed . - md/raid6: Set R5_ReadError when there is read failure on parity disk . - media: atmel: atmel-isi: fix timeout value for stop streaming . - media: dib0700: fix link error for dibx000_i2c_set_speed . - media: em28xx: fix handler for vidioc_s_input . - media: em28xx: stop rewriting device"s struct . - media: fdp1: Reduce FCP not found message level to debug . - media: marvell-ccic: do not generate EOF on parallel bus . - media: mc-device.c: do not memset __user pointer contents . - media: ov6650: Fix sensor possibly not detected on probe . - media: ov6650: Move v4l2_clk_get to ov6650_video_probe helper . - media: replace strcpy by strscpy . - media: Revert "[media] marvell-ccic: reset ccic phy when stop streaming for stability" . - media: technisat-usb2: break out of loop at end of buffer . - media: tm6000: double free if usb disconnect while streaming . - media: vb2: Fix videobuf2 to map correct area . - mic: avoid statically declaring a "struct device" . - mmc: sdhci-msm: fix mutex while in spinlock . - mmc: sdhci-of-arasan: Do now show error message in case of deffered probe . - mtd: spi-nor: Fix Cadence QSPI RCU Schedule Stall . - mvpp2: refactor MTU change code . - net: bridge: delete local fdb on device init failure . - net: bridge: mcast: do not delete permanent entries when fast leave is enabled . - net: fix ifindex collision during namespace removal . - net/ibmvnic: prevent more than one thread from running in reset . - net/ibmvnic: unlock rtnl_lock in reset so linkwatch_event can run . - net/mlx5e: Only support tx/rx pause setting for port owner . - net/mlx5e: Prevent encap flow counter update async to user query . - net/mlx5e: Use flow keys dissector to parse packets for ARFS . - net/mlx5: Use reversed order when unregister devices . - net/packet: fix race in tpacket_snd . - net: sched: Fix a possible null-pointer dereference in dequeue_func . - net/smc: make sure EPOLLOUT is raised . - NFS4: Fix v4.0 client state corruption when mount . - nfsd: degraded slot-count more gracefully as allocation nears exhaustion . - nfsd: Do not release the callback slot unless it was actually held . - nfsd: Fix overflow causing non-working mounts on 1 TB machines . - nfsd: fix performance-limiting session calculation . - nfsd: give out fewer session slots as limit approaches . - nfsd: handle drc over-allocation gracefully . - nfsd: increase DRC cache limit . - NFS: Do not interrupt file writeout due to fatal errors . - NFS: Do not open code clearing of delegation state . - NFS: Ensure O_DIRECT reports an error if the bytes read/written is 0 . - NFS: Fix regression whereby fscache errors are appearing on "nofsc" mounts . - NFS: Forbid setting AF_INET6 to "struct sockaddr_in"-greater than sin_family . - NFS: Refactor nfs_lookup_revalidate . - NFS: Remove redundant semicolon . - NFSv4.1: Again fix a race where CB_NOTIFY_LOCK fails to wake a waiter . - NFSv4.1: Fix open stateid recovery . - NFSv4.1: Only reap expired delegations . - NFSv4: Check the return value of update_open_stateid . - NFSv4: Fix an Oops in nfs4_do_setattr . - NFSv4: Fix a potential sleep while atomic in nfs4_do_reclaim . - NFSv4: Fix delegation state recovery . - NFSv4: Fix lookup revalidate of regular files . - NFSv4: Fix OPEN / CLOSE race . - NFSv4: Handle the special Linux file open access mode . - NFSv4: Only pass the delegation to setattr if we"re sending a truncate . - NFSv4/pnfs: Fix a page lock leak in nfs_pageio_resend . - nl80211: Fix possible Spectre-v1 for CQM RSSI thresholds . - null_blk: complete requests from -greater than timeout . - null_blk: wire up timeouts . - nvme: fix multipath crash when ANA is deactivated . - nvmem: Use the same permissions for eeprom as for nvmem . - nvme-rdma: Allow DELETING state change failure in . - nvme-rdma: centralize admin/io queue teardown sequence . - nvme-rdma: centralize controller setup sequence . - nvme-rdma: fix a NULL deref when an admin connect times out . - nvme-rdma: fix timeout handler . - nvme-rdma: stop admin queue before freeing it . - nvme-rdma: support up to 4 segments of inline data . - nvme-rdma: unquiesce queues when deleting the controller . - nvme: remove ns sibling before clearing path . - nvme: return BLK_EH_DONE from -greater than timeout . - PCI: hv: Detect and fix Hyper-V PCI domain number collision . - phy: renesas: rcar-gen3-usb2: Disable clearing VBUS in over-current . - platform/x86: pmc_atom: Add Siemens SIMATIC IPC227E to critclk_systems DMI table . - PM: sleep: Fix possible overflow in pm_system_cancel_wakeup . - pNFS fallback to MDS if no deviceid found . - pNFS/flexfiles: Fix PTR_ERR dereferences in ff_layout_track_ds_error . - pNFS/flexfiles: Turn off soft RPC calls . - powerpc/64: Make sys_switch_endian traceable . - powerpc/64s/radix: Fix MADV_[FREE|DONTNEED] TLB flush miss problem with THP . - powerpc/64s/radix: Fix memory hotplug section page table creation . - powerpc/64s/radix: Fix memory hot-unplug page table split . - powerpc/64s/radix: Implement _tlbie_va_range flush functions . - powerpc/64s/radix: Improve preempt handling in TLB code . - powerpc/64s/radix: Improve TLB flushing for page table freeing . - powerpc/64s/radix: Introduce local single page ceiling for TLB range flush . - powerpc/64s/radix: Optimize flush_tlb_range . - powerpc/book3s64/mm: Do not do tlbie fixup for some hardware revisions . - powerpc/book3s64/radix: Rename CPU_FTR_P9_TLBIE_BUG feature flag . - powerpc: bpf: Fix generation of load/store DW instructions . - powerpc/bpf: use unsigned division instruction for 64-bit operations . - powerpc: Drop page_is_ram and walk_system_ram_range . - powerpc/irq: Do not WARN continuously in arch_local_irq_restore . - powerpc/irq: drop arch_early_irq_init . - powerpc/mm: Fixup tlbie vs mtpidr/mtlpidr ordering issue on POWER9 . - powerpc/mm/radix: Drop unneeded NULL check . - powerpc/mm/radix: implement LPID based TLB flushes to be used by KVM . - powerpc/mm: Simplify page_is_ram by using memblock_is_memory . - powerpc/mm: Use memblock API for PPC32 page_is_ram . - powerpc/module64: Fix comment in R_PPC64_ENTRY handling . - powerpc/powernv: Fix compile without CONFIG_TRACEPOINTS . - powerpc/powernv/ioda2: Allocate TCE table levels on demand for default DMA window . - powerpc/powernv/ioda: Fix race in TCE level allocation . - powerpc/powernv: move OPAL call wrapper tracing and interrupt handling to C . - powerpc/powernv/npu: Remove obsolete comment about TCE_KILL_INVAL_ALL . - powerpc/pseries: Call H_BLOCK_REMOVE when supported . - powerpc/pseries: Fix cpu_hotplug_lock acquisition in resize_hpt . - powerpc/pseries/memory-hotplug: Fix return value type of find_aa_index . - powerpc/pseries: Read TLB Block Invalidate Characteristics . - powerpc/ptrace: Simplify vr_get/set to avoid GCC warning . - powerpc/xive: Fix bogus error code returned by OPAL . - powerpc/xive: Implement get_irqchip_state method for XIVE to fix shutdown race . - powerpc/xmon: Fix opcode being uninitialized in print_insn_powerpc . - power: reset: gpio-restart: Fix typo when gpio reset is not found . - power: supply: Init device wakeup after device_add . - ppp: Fix memory leak in ppp_write . - printk: Do not lose last line in kmsg buffer dump . - printk: fix printk_time race . - printk/panic: Avoid deadlock in printk after stopping CPUs by NMI . - qla2xxx: kABI fixes for v10.01.00.18-k . - qla2xxx: remove SGI SN2 support . - quota: fix wrong condition in is_quota_modification . - r8152: Set memory to all 0xFFs on failed reg reads . - regulator: lm363x: Fix off-by-one n_voltages for lm3632 ldo_vpos/ldo_vneg . - Revert "mwifiex: fix system hang problem after resume" . - scsi: qla2xxx: Add 28xx flash primary/secondary status/image mechanism . - scsi: qla2xxx: Add Device ID for ISP28XX . - scsi: qla2xxx: Add error handling for PLOGI ELS passthrough . - scsi: qla2xxx: Add First Burst support for FC-NVMe devices . - scsi: qla2xxx: Add fw_attr and port_no SysFS node . - scsi: qla2xxx: Add new FW dump template entry types . - scsi: qla2xxx: Add pci function reset support . - scsi: qla2xxx: Add protection mask module parameters . - scsi: qla2xxx: Add Serdes support for ISP28XX . - scsi: qla2xxx: Add support for multiple fwdump templates/segments . - scsi: qla2xxx: Add support for setting port speed . - scsi: qla2xxx: Allow NVMe IO to resume with short cable pull . - scsi: qla2xxx: allow session delete to finish before create . - scsi: qla2xxx: Always check the qla2x00_wait_for_hba_online return value . - scsi: qla2xxx: Avoid PCI IRQ affinity mapping when multiqueue is not supported . - scsi: qla2xxx: avoid printf format warning . - scsi: qla2xxx: Avoid that Coverity complains about dereferencing a NULL rport pointer . - scsi: qla2xxx: Avoid that lockdep complains about unsafe locking in tcm_qla2xxx_close_session . - scsi: qla2xxx: Avoid that qla2x00_mem_free crashes if called twice . - scsi: qla2xxx: Capture FW dump on MPI heartbeat stop event . - scsi: qla2xxx: Change abort wait_loop from msleep to wait_event_timeout . - scsi: qla2xxx: Change data_dsd into an array . - scsi: qla2xxx: Change default ZIO threshold . - scsi: qla2xxx: Change the return type of qla24xx_read_flash_data . - scsi: qla2xxx: Change the return type of qla2x00_update_ms_fdmi_iocb into void . - scsi: qla2xxx: Check for FW started flag before aborting . - scsi: qla2xxx: check for kstrtol failure . - scsi: qla2xxx: Check for MB timeout while capturing ISP27/28xx FW dump . - scsi: qla2xxx: Check secondary image if reading the primary image fails . - scsi: qla2xxx: Check the PCI info string output buffer size . - scsi: qla2xxx: Check the size of firmware data structures at compile time . - scsi: qla2xxx: Cleanup fcport memory to prevent leak . - scsi: qla2xxx: Cleanup redundant qla2x00_abort_all_cmds during unload . - scsi: qla2xxx: Cleanups for NVRAM/Flash read/write path . - scsi: qla2xxx: cleanup trace buffer initialization . - scsi: qla2xxx: Complain if a command is released that is owned by the firmware . - scsi: qla2xxx: Complain if a mailbox command times out . - scsi: qla2xxx: Complain if a soft reset fails . - scsi: qla2xxx: Complain if parsing the version string fails . - scsi: qla2xxx: Complain if sp-greater than done is not called from the completion path . - scsi: qla2xxx: Complain if waiting for pending commands times out . - scsi: qla2xxx: Complain loudly about reference count underflow . - scsi: qla2xxx: Correct error handling during initialization failures . - scsi: qla2xxx: Correction and improvement to fwdt processing . - scsi: qla2xxx: Correctly report max/min supported speeds . - scsi: qla2xxx: deadlock by configfs_depend_item . - scsi: qla2xxx: Declare fourth qla2x00_set_model_info argument const . - scsi: qla2xxx: Declare local symbols static . - scsi: qla2xxx: Declare qla24xx_build_scsi_crc_2_iocbs static . - scsi: qla2xxx: Declare qla2x00_find_new_loop_id static . - scsi: qla2xxx: Declare qla_tgt_cmd.cdb const . - scsi: qla2xxx: Declare the fourth ql_dump_buffer argument const . - scsi: qla2xxx: Disable T10-DIF feature with FC-NVMe during probe . - scsi: qla2xxx: Do not corrupt vha-greater than plogi_ack_list . - scsi: qla2xxx: Downgrade driver to 10.01.00.19-k There are upstream bug reports against 10.01.00.19-k which haven"t been resolved. Also the newer version failed to get a proper review. For time being it"s better to got with the older version and do not introduce new bugs. - scsi: qla2xxx: Dual FCP-NVMe target port support . - scsi: qla2xxx: Enable type checking for the SRB free and done callback functions . - scsi: qla2xxx: Fix abort timeout race condition . - scsi: qla2xxx: Fix a NULL pointer dereference . - scsi: qla2xxx: Fix a qla24xx_enable_msix error path . - scsi: qla2xxx: Fix a race condition between aborting and completing a SCSI command . - scsi: qla2xxx: Fix a recently introduced kernel warning . - scsi: qla2xxx: Fix a small typo in qla_bsg.c . - scsi: qla2xxx: Fix code indentation for qla27xx_fwdt_entry . - scsi: qla2xxx: Fix comment alignment in qla_bsg.c . - scsi: qla2xxx: Fix comment in MODULE_PARM_DESC in qla2xxx . - scsi: qla2xxx: Fix different size DMA Alloc/Unmap . - scsi: qla2xxx: Fix DMA error when the DIF sg buffer crosses 4GB boundary . - scsi: qla2xxx: Fix DMA unmap leak . - scsi: qla2xxx: Fix driver reload for ISP82xx . - scsi: qla2xxx: Fix driver unload when FC-NVMe LUNs are connected . - scsi: qla2xxx: fix fcport null pointer access . - scsi: qla2xxx: Fix flash read for Qlogic ISPs . - scsi: qla2xxx: Fix formatting of pointer types . - scsi: qla2xxx: Fix fw dump corruption . - scsi: qla2xxx: Fix fw options handle eh_bus_reset . - scsi: qla2xxx: Fix gnl.l memory leak on adapter init failure . - scsi: qla2xxx: Fix hang in fcport delete path . - scsi: qla2xxx: Fix hardirq-unsafe locking . - scsi: qla2xxx: Fix hardlockup in abort command during driver remove . - scsi: qla2xxx: Fix kernel crash after disconnecting NVMe devices . - scsi: qla2xxx: Fix LUN discovery if loop id is not assigned yet by firmware . - scsi: qla2xxx: Fix message indicating vectors used by driver . - scsi: qla2xxx: Fix N2N link reset . - scsi: qla2xxx: Fix N2N link up fail . - scsi: qla2xxx: Fix Nport ID display value . - scsi: qla2xxx: Fix NULL pointer crash due to stale CPUID . - scsi: qla2xxx: Fix NVME cmd and LS cmd timeout race condition . - scsi: qla2xxx: Fix NVMe port discovery after a short device port loss . - scsi: qla2xxx: Fix panic from use after free in qla2x00_async_tm_cmd . - scsi: qla2xxx: Fix possible fcport null-pointer dereferences . - scsi: qla2xxx: Fix premature timer expiration . - scsi: qla2xxx: Fix qla24xx_process_bidir_cmd . - scsi: qla2xxx: Fix race conditions in the code for aborting SCSI commands . - scsi: qla2xxx: Fix read offset in qla24xx_load_risc_flash . - scsi: qla2xxx: Fix Relogin to prevent modifying scan_state flag . - scsi: qla2xxx: Fix routine qla27xx_dump_{mpi|ram} . - scsi: qla2xxx: Fix session cleanup hang . - scsi: qla2xxx: Fix session lookup in qlt_abort_work . - scsi: qla2xxx: fix spelling mistake "alredy" -greater than "already" . - scsi: qla2xxx: fix spelling mistake "initializatin" -greater than "initialization" . - scsi: qla2xxx: Fix SRB allocation flag to avoid sleeping in IRQ context . - scsi: qla2xxx: Fix stale mem access on driver unload . - scsi: qla2xxx: Fix stale session . - scsi: qla2xxx: Fix stuck login session . - scsi: qla2xxx: Fix unbound sleep in fcport delete path . - scsi: qla2xxx: Fix unload when NVMe devices are configured . - scsi: qla2xxx: Fix use-after-free issues in qla2xxx_qpair_sp_free_dma . - scsi: qla2xxx: flush IO on chip reset or sess delete . - scsi: qla2xxx: Further limit FLASH region write access from SysFS . - scsi: qla2xxx: Improve Linux kernel coding style conformance . - scsi: qla2xxx: Improve logging for scan thread . - scsi: qla2xxx: Include the less thanasm/unaligned.hgreater than header file from qla_dsd.h . - scsi: qla2xxx: Increase the max_sgl_segments to 1024 . - scsi: qla2xxx: Increase the size of the mailbox arrays from 4 to 8 . - scsi: qla2xxx: Inline the qla2x00_fcport_event_handler function . - scsi: qla2xxx: Insert spaces where required . - scsi: qla2xxx: Introduce qla2x00_els_dcmd2_free . - scsi: qla2xxx: Introduce qla2xxx_get_next_handle . - scsi: qla2xxx: Introduce the be_id_t and le_id_t data types for FC src/dst IDs . - scsi: qla2xxx: Introduce the dsd32 and dsd64 data structures . - scsi: qla2xxx: Introduce the function qla2xxx_init_sp . - scsi: qla2xxx: Leave a blank line after declarations . - scsi: qla2xxx: Let the compiler check the type of the SCSI command context pointer . - scsi: qla2xxx: Log the status code if a firmware command fails . - scsi: qla2xxx: Make it explicit that ELS pass-through IOCBs use little endian . - scsi: qla2xxx: Make qla24xx_async_abort_cmd static . - scsi: qla2xxx: Make qla2x00_abort_srb again decrease the sp reference count . - scsi: qla2xxx: Make qla2x00_mem_free easier to verify . - scsi: qla2xxx: Make qla2x00_process_response_queue easier to read . - scsi: qla2xxx: Make qlt_handle_abts_completion more robust . - scsi: qla2xxx: Make sure that aborted commands are freed . - scsi: qla2xxx: Modify NVMe include directives . - scsi: qla2xxx: Move debug messages before sending srb preventing panic . - scsi: qla2xxx: move IO flush to the front of NVME rport unregistration . - scsi: qla2xxx: Move marker request behind QPair . - scsi: qla2xxx: Move qla2x00_clear_loop_id from qla_inline.h into qla_init.c . - scsi: qla2xxx: Move qla2x00_is_reserved_id from qla_inline.h into qla_init.c . - scsi: qla2xxx: Move qla2x00_set_fcport_state from a .h into a .c file . - scsi: qla2xxx: Move qla2x00_set_reserved_loop_ids definition . - scsi: qla2xxx: Move the less thanlinux/io-64-nonatomic-lo-hi.hgreater than include directive . - scsi: qla2xxx: Move the port_state_str definition from a .h to a .c file . - scsi: qla2xxx: no need to check return value of debugfs_create functions . - scsi: qla2xxx: on session delete, return nvme cmd . - scsi: qla2xxx: Optimize NPIV tear down process . - scsi: qla2xxx: Pass little-endian values to the firmware . - scsi: qla2xxx: Prevent memory leak for CT req/rsp allocation . - scsi: qla2xxx: Prevent multiple ADISC commands per session . - scsi: qla2xxx: Prevent SysFS access when chip is down . - scsi: qla2xxx: qla2x00_alloc_fw_dump: set ha-greater than eft . - scsi: qla2xxx: Really fix qla2xxx_eh_abort . - scsi: qla2xxx: Reduce the number of casts in GID list code . - scsi: qla2xxx: Reduce the number of forward declarations . - scsi: qla2xxx: Reduce the scope of three local variables in qla2xxx_queuecommand . - scsi: qla2xxx: Reject EH_{abort|device_reset|target_request} . - scsi: qla2xxx: Remove a comment that refers to the SCSI host lock . - scsi: qla2xxx: Remove an include directive from qla_mr.c . - scsi: qla2xxx: Remove a set-but-not-used variable . - scsi: qla2xxx: Remove a superfluous forward declaration . - scsi: qla2xxx: Remove a superfluous pointer check . - scsi: qla2xxx: Remove dead code . - scsi: qla2xxx: remove double assignment in qla2x00_update_fcport . - scsi: qla2xxx: Remove FW default template . - scsi: qla2xxx: Remove qla_tgt_cmd.data_work and qla_tgt_cmd.data_work_free . - scsi: qla2xxx: Remove qla_tgt_cmd.released . - scsi: qla2xxx: remove redundant null check on pointer sess . - scsi: qla2xxx: Remove set but not used variable "ptr_dma" . - scsi: qla2xxx: Remove superfluous sts_entry_* casts . - scsi: qla2xxx: Remove the fcport test from qla_nvme_abort_work . - scsi: qla2xxx: Remove two superfluous casts . - scsi: qla2xxx: Remove two superfluous if-tests . - scsi: qla2xxx: Remove two superfluous tests . - scsi: qla2xxx: Remove unnecessary locking from the target code . - scsi: qla2xxx: Remove unnecessary null check . - scsi: qla2xxx: Remove unreachable code from qla83xx_idc_lock . - scsi: qla2xxx: Remove useless set memory to zero use memset . - scsi: qla2xxx: Remove WARN_ON_ONCE in qla2x00_status_cont_entry . - scsi: qla2xxx: Replace vmalloc + memset with vzalloc . - scsi: qla2xxx: Report invalid mailbox status codes . - scsi: qla2xxx: Report the firmware status code if a mailbox command fails . - scsi: qla2xxx: Reset the FCF_ASYNC_{SENT|ACTIVE} flags . - scsi: qla2xxx: Restore FAWWPN of Physical Port only for loop down . - scsi: qla2xxx: Retry fabric Scan on IOCB queue full . - scsi: qla2xxx: Rework key encoding in qlt_find_host_by_d_id . - scsi: qla2xxx: Secure flash update support for ISP28XX . - scsi: qla2xxx: Set remote port devloss timeout to 0 . - scsi: qla2xxx: Set remove flag for all VP . - scsi: qla2xxx: Set the qpair in SRB to NULL when SRB is released . - scsi: qla2xxx: Set the responder mode if appropriate for ELS pass-through IOCBs . - scsi: qla2xxx: Set the SCSI command result before calling the command done . - scsi: qla2xxx: Silence fwdump template message . - scsi: qla2xxx: Silence Successful ELS IOCB message . - scsi: qla2xxx: Simplification of register address used in qla_tmpl.c . - scsi: qla2xxx: Simplify a debug statement . - scsi: qla2xxx: Simplify conditional check again . - scsi: qla2xxx: Simplify qla24xx_abort_sp_done . - scsi: qla2xxx: Simplify qla24xx_async_abort_cmd . - scsi: qla2xxx: Simplify qlt_lport_dump . - scsi: qla2xxx: Simplify qlt_send_term_imm_notif . - scsi: qla2xxx: Skip FW dump on LOOP initialization error . - scsi: qla2xxx: Suppress a Coveritiy complaint about integer overflow . - scsi: qla2xxx: Suppress multiple Coverity complaint about out-of-bounds accesses . - scsi: qla2xxx: target: Fix offline port handling and host reset handling . - scsi: qla2xxx: Uninline qla2x00_init_timer . - scsi: qla2xxx: Unregister resources in the opposite order of the registration order . - scsi: qla2xxx: Update driver version to 10.00.00.13-k . - scsi: qla2xxx: Update driver version to 10.00.00.14-k . - scsi: qla2xxx: Update driver version to 10.01.00.15-k . - scsi: qla2xxx: Update driver version to 10.01.00.16-k . - scsi: qla2xxx: Update driver version to 10.01.00.18-k . - scsi: qla2xxx: Update driver version to 10.01.00.19-k . - scsi: qla2xxx: Update driver version to 10.01.00.20-k . - scsi: qla2xxx: Update flash read/write routine . - scsi: qla2xxx: Use an on-stack completion in qla24xx_control_vp . - scsi: qla2xxx: Use ARRAY_SIZE in the definition of QLA_LAST_SPEED . - scsi: qla2xxx: Use common update-firmware-options routine for ISP27xx+ . - scsi: qla2xxx: Use complete switch scan for RSCN events . - scsi: qla2xxx: Use Correct index for Q-Pair array . - scsi: qla2xxx: Use dma_pool_zalloc . - scsi: qla2xxx: Use get/put_unaligned where appropriate . - scsi: qla2xxx: Use __le64 instead of uint32_t for sending DMA addresses to firmware . - scsi: qla2xxx: Use memcpy and strlcpy instead of strcpy and strncpy . - scsi: qla2xxx: Use mutex protection during qla2x00_sysfs_read_fw_dump . - scsi: qla2xxx: Use strlcpy instead of strncpy . - scsi: qla2xxx: Use tabs instead of spaces for indentation . - scsi: qla2xxx: Use tabs to indent code . - scsi: qla2xxx: Verify locking assumptions at runtime . - scsi: scsi_dh_rdac: zero cdb in send_mode_select . - scsi: scsi_transport_fc: nvme: display FC-NVMe port roles . - scsi: tcm_qla2xxx: Minimize #include directives . - scsi_transport_fc: complete requests from -greater than timeout . - sctp: fix the transport error_count check . - secure boot lockdown: Fix-up backport of /dev/mem access restriction. The upstream-submitted patch set has evolved over time, align our patches to reflect the current status as far as /dev/mem access is concerned. - sky2: Disable MSI on yet another ASUS boards . - slip: make slhc_free silently accept an error pointer . - slip: sl_alloc: remove unused parameter "dev_t line" . - SUNRPC fix regression in umount of a secure mount . - SUNRPC: Handle connection breakages correctly in call_status . - SUNRPC/nfs: Fix return value for nfs4_callback_compound . - tcp: make sure EPOLLOUT wont be missed . - team: Add vlan tx offload to hw_enc_features . - tpm_tis_core: Set TPM_CHIP_FLAG_IRQ before probing for interrupts . - USB: usbcore: Fix slab-out-of-bounds bug during device reset . - video: ssd1307fb: Start page range at page_offset - x86/CPU/AMD: Clear RDRAND CPUID bit on AMD family 15h/16h . - x86/fpu: Add FPU state copying quirk to handle XRSTOR failure on Intel Skylake CPUs . - x86/tls: Fix possible spectre-v1 in do_get_thread_area . - xen/netback: Reset nr_frags before freeing skb . - xen-netfront: do not assume sk_buff_head list is empty in error handling . - xen-netfront: do not use ~0U as error return value for xennet_fill_frags . - xen/xenbus: fix self-deadlock after killing user process . Special Instructions and Notes: Please reboot the system after installing this update.