The SUSE Linux Enterprise 12 SP5 kernel was updated to receive various security and bugfixes. The following security bugs were fixed: - CVE-2022-36946: Fixed an incorrect packet trucation operation which could lead to denial of service . - CVE-2022-20166: Fixed several possible memory safety issues due to unsafe operations . - CVE-2020-36558: Fixed a race condition involving VT_RESIZEX which could lead to a NULL pointer dereference and general protection fault . - CVE-2020-36557: Fixed a race condition between the VT_DISALLOCATE ioctl and closing/opening of TTYs could lead to a use-after-free . - CVE-2021-33656: Fixed memory out of bounds write related to ioctl cmd PIO_FONT . - CVE-2021-33655: Fixed out of bounds write with ioctl FBIOPUT_VSCREENINFO . - CVE-2022-1462: Fixed an out-of-bounds read flaw in the TTY subsystem . The following non-security bugs were fixed: - Add missing recommends of kernel-install-tools - qla2xxx: drop patch which prevented nvme port discovery . - kvm: emulate: do not adjust size of fastop and setcc subroutines . - nfs: avoid NULL pointer dereference when there is unflushed data . - kvm: emulate: Fix SETcc emulation function offsets with SLS . - lkdtm: Disable return thunks in rodata.c . - powerpc/64: Move paca allocation later in boot . - powerpc/fadump: fix PT_LOAD segment for boot memory area . - powerpc/fadump: make crash memory ranges array allocation generic . - powerpc: Set crashkernel offset to mid of RMA region . - rpm/kernel-obs-build.spec.in: Also depend on dracut-systemd - rpm/kernel-obs-build.spec.in: add systemd-initrd and terminfo dracut module - rpm/kernel-obs-build.spec.in: use default dracut modules Let"s iron out the reduced initrd optimisation in Tumbleweed. Build full blown dracut initrd with systemd for SLE15 SP4. - scsi: qla2xxx: Add a new v2 dport diagnostic feature . - scsi: qla2xxx: Add debug prints in the device remove path . - scsi: qla2xxx: Check correct variable in qla24xx_async_gffid . - scsi: qla2xxx: Fix crash due to stale SRB access around I/O timeouts . - scsi: qla2xxx: Fix discovery issues in FC-AL topology . - scsi: qla2xxx: Fix erroneous mailbox timeout after PCI error injection . - scsi: qla2xxx: Fix excessive I/O error messages by default . - scsi: qla2xxx: Fix imbalance vha-vref_count . - scsi: qla2xxx: Fix incorrect display of max frame size . - scsi: qla2xxx: Fix losing FCP-2 targets during port perturbation tests . - scsi: qla2xxx: Fix losing FCP-2 targets on long port disable with I/Os . - scsi: qla2xxx: Fix losing target when it reappears during delete . - scsi: qla2xxx: Fix response queue handler reading stale packets . - scsi: qla2xxx: Fix sparse warning for dport_data . - scsi: qla2xxx: Remove setting of "req" and "rsp" parameters . - scsi: qla2xxx: Remove unused "ql_dm_tgt_ex_pct" parameter . - scsi: qla2xxx: Turn off multi-queue for 8G adapters . - scsi: qla2xxx: Update manufacturer details . - scsi: qla2xxx: Update version to 10.02.07.500-k . - scsi: qla2xxx: Update version to 10.02.07.600-k . - scsi: qla2xxx: Update version to 10.02.07.700-k . - scsi: qla2xxx: Update version to 10.02.07.800-k . - scsi: qla2xxx: Wind down adapter after PCIe error . - scsi: qla2xxx: Zero undefined mailbox IN registers . - scsi: qla2xxx: edif: Add bsg interface to read doorbell events . - scsi: qla2xxx: edif: Add retry for ELS passthrough . - scsi: qla2xxx: edif: Fix I/O timeout due to over-subscription . - scsi: qla2xxx: edif: Fix dropped IKE message . - scsi: qla2xxx: edif: Fix n2n discovery issue with secure target . - scsi: qla2xxx: edif: Fix n2n login retry for secure device . - scsi: qla2xxx: edif: Fix no login after app start . - scsi: qla2xxx: edif: Fix no logout on delete for N2N . - scsi: qla2xxx: edif: Fix potential stuck session in sa update . - scsi: qla2xxx: edif: Fix session thrash . - scsi: qla2xxx: edif: Fix slow session teardown . - scsi: qla2xxx: edif: Reduce Initiator-Initiator thrashing . - scsi: qla2xxx: edif: Reduce N2N thrashing at app_start time . - scsi: qla2xxx: edif: Reduce disruption due to multiple app start . - scsi: qla2xxx: edif: Remove old doorbell interface . - scsi: qla2xxx: edif: Send LOGO for unexpected IKE message . - scsi: qla2xxx: edif: Synchronize NPIV deletion with authentication application . - scsi: qla2xxx: edif: Tear down session if keys have been removed . - scsi: qla2xxx: edif: Wait for app to ack on sess down . - scsi: qla2xxx: edif: bsg refactor . - x86/entry: Remove skip_r11rcx . - x86/retbleed: Add fine grained Kconfig knobs . - xen/netback: avoid entering xenvif_rx_next_skb with an empty rx queue . Special Instructions and Notes: Please reboot the system after installing this update.