The SUSE Linux Enterprise 11 SP3 Teradata kernel was updated to fix bugs and security issues.
The following security issues have been fixed:
- crypto/lrw: Protect gf128mul from NULL pointers. (bsc#1008374, CVE-2015-8970) - kvm: x86: Drop error recovery in em_jmp_far and em_ret_far. (bsc#1013038, CVE-2016-9756) - net: Avoid signed overflows for SO_{SND|RCV}BUFFORCE. (bsc#1013531, CVE-2016-9793) - net: Cleanups in sock_setsockopt(). (bsc#1013542, CVE-2012-6704) - net/ping: Check minimum size on ICMP header length. (bsc#1014746, CVE-2016-8399) - posix_acl: Clear SGID bit when setting file permissions. (bsc#995968, CVE-2016-7097) - sg_write()/bsg_write() is not fit to be called under KERNEL_DS. (bsc#1017710, CVE-2016-10088) - tmpfs: Clear S_ISGID when setting posix ACLs. (bsc#1021258, CVE-2017-5551)
Additionally the following non-security bugs have been fixed:
- hv: Define the channel type for Hyper-V PCI Express pass-through. (bsc#1018385) - hv: Export a function that maps Linux CPU num onto Hyper-V proc num. (bsc#1018385) - hv: Export the API to invoke a hypercall on Hyper-V. (bsc#1018385) - hv: Remove code duplication between vmbus_recvpacket()/vmbus_recvpacket_raw(). (bsc#1018385) - hv: vmbus_free_channels(): Remove the redundant free_channel(). (bsc#1018385) - hv/netvsc: Allocate the receive buffer from the correct NUMA node. (bsc#1018385) - hv/netvsc: Allocate the sendbuf in a NUMA aware way. (bsc#1018385) - hv/ring_buffer: Eliminate hv_ringbuffer_peek(). (bsc#1018385) - hv/ring_buffer: Fix comment style. (bsc#1018385) - hv/ring_buffer: Remove code duplication from hv_ringbuffer_peek/read(). (bsc#1018385) - hv/vmbus: Add vendor and device attributes. (bsc#1018385) - hv/vmbus: Allocate ring buffer memory in NUMA aware fashion. (bsc#1018385) - hv/vmbus: Avoid infinite loop in init_vp_index(). (bsc#986337) - hv/vmbus: Base host signaling strictly on the ring state. (bsc#1018385) - hv/vmbus: Briefly comment num_sc and next_oc. (bsc#1018385) - hv/vmbus: Change vmbus_connection.channel_lock to mutex. (bsc#1018385) - hv/vmbus: Cleanup vmbus_set_event(). (bsc#1018385) - hv/vmbus: Consider ND NIC in binding channels to CPUs. (bsc#1018385) - hv/vmbus: Decrease num_sc on subchannel removal. (bsc#1018385) - hv/vmbus: Define a new VMBus message type for hvsock. (bsc#1018385) - hv/vmbus: Define the new offer type for Hyper-V socket (hvsock). (bsc#1018385) - hv/vmbus: Distribute subchannels among all vcpus. (bsc#1018385) - hv/vmbus: Eliminate the spin lock on the read path. (bsc#1018385) - hv/vmbus: Enable explicit signaling policy for NIC channels. (bsc#1018385) - hv/vmbus: Export the vmbus_set_event() API. (bsc#1018385) - hv/vmbus: Finally fix hv_need_to_signal_on_read(). (bsc#1018385) - hv/vmbus: Fix a Host signaling bug. (bsc#1018385) - hv/vmbus: Fix init_vp_index() for reloading hv_netvsc. (bsc#1018385) - hv/vmbus: Fix rescind-offer handling for device without a driver. (bsc#1018385) - hv/vmbus: Fix signaling logic in hv_need_to_signal_on_read(). (bsc#1018385) - hv/vmbus: Fix signal to host condition. (bsc#1018385) - hv/vmbus: Further improve CPU affiliation logic. (bsc#1018385) - hv/vmbus: Give control over how the ring access is serialized. (bsc#1018385) - hv/vmbus: Implement APIs to support 'in place' consumption of vmbus packets. (bsc#1018385) - hv/vmbus: Implement NUMA aware CPU affinity for channels. (bsc#1018385) - hv/vmbus: Improve the CPU affiliation for channels. (bsc#1018385) - hv/vmbus: Introduce functions for estimating room in the ring buffer. (bsc#1018385) - hv/vmbus: Move init_vp_index() call to vmbus_process_offer(). (bsc#1018385) - hv/vmbus: Move some ring buffer functions to hyperv.h. (bsc#1018385) - hv/vmbus: On the read path cleanup the logic to interrupt the host. (bsc#1018385) - hv/vmbus: On write cleanup the logic to interrupt the host. (bsc#1018385) - hv/vmbus: Permit sending of packets without payload. (bsc#1018385) - hv/vmbus: Release relid on error in vmbus_process_offer(). (bsc#1018385) - hv/vmbus: Serialize process_chn_event() and vmbus_close_internal(). (bsc#1018385) - hv/vmbus: Support handling messages on multiple CPUs. (bsc#1018385) - hv/vmbus: Suppress some 'hv_vmbus: Unknown GUID' warnings. (bsc#1018385) - hv/vmbus: Treat Fibre Channel devices as performance critical. (bsc#1018385) - hv/vmbus: Unify calls to percpu_channel_enq(). (bsc#1018385) - hv/vmbus: Use the vp_index map even for channels bound to CPU 0. (bsc#1018385) - hv/vmbus: Use uuid_le_cmp() for comparing GUIDs. (bsc#1018385) - hv/vmbus: Use uuid_le type consistently. (bsc#1018385) - hv/vmbus: vmbus_sendpacket_ctl: hvsock: Avoid unnecessary signaling. (bsc#1018385) - kexec: Add a kexec_crash_loaded() function. (bsc#973691) - mpi: Fix NULL ptr dereference in mpi_powm(). (bsc#1011820) - netvsc: Fix checksum on UDP IPV6. (bsc#1018385) - netvsc: Fix incorrect receive checksum offloading. (bsc#1018385) - netvsc: Reduce maximum GSO size. (bsc#1018385) - perf/x86/intel: Move NMI clearing to end of PMI handler. (bsc#929142)
openSUSE Leap 15.0 openSUSE Leap 42.3 SUSE Linux Enterprise Desktop 11 SP2 SUSE Linux Enterprise Desktop 12 SUSE Linux Enterprise Desktop 12 SP1 SUSE Linux Enterprise Desktop 12 SP2 SUSE Linux Enterprise Desktop 12 SP3 SUSE Linux Enterprise Desktop 12 SP4 SUSE Linux Enterprise Module for Basesystem 15 SUSE Linux Enterprise Module for Basesystem 15 SP1 SUSE Linux Enterprise Module for Containers 12 SUSE Linux Enterprise Module for Desktop Applications 15 SUSE Linux Enterprise Module for Desktop Applications 15 SP1 SUSE Linux Enterprise Module for Development Tools 15 SUSE Linux Enterprise Module for Legacy Software 12 SUSE Linux Enterprise Module for Legacy Software 15 SUSE Linux Enterprise Module for Live Patching 15 SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP1 SUSE Linux Enterprise Module for Public Cloud 12 SUSE Linux Enterprise Module for Public Cloud 15 SP1 SUSE Linux Enterprise Module for Server Applications 15 SP1 SUSE Linux Enterprise Module for Web Scripting 12 SUSE Linux Enterprise Module for Web Scripting 15 SUSE Linux Enterprise Server 11 SP3-TERADATA SUSE Linux Enterprise Server 11 SP4 SUSE Linux Enterprise Server 11 SP4-LTSS SUSE Linux Enterprise Server 12 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP1-LTSS SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP2-LTSS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-ESPOS SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE Linux Enterprise Server 12 SP5 SUSE Linux Enterprise Server 12-LTSS SUSE Linux Enterprise Server for Raspberry Pi 12 SP2 SUSE Linux Enterprise Server for SAP Applications 11 SP3-TERADATA SUSE Linux Enterprise Server for SAP Applications 11 SP4 SUSE Linux Enterprise Server for SAP Applications 11 SP4-LTSS SUSE Linux Enterprise Server for SAP Applications 12 SUSE Linux Enterprise Server for SAP Applications 12 SP1 SUSE Linux Enterprise Server for SAP Applications 12 SP2 SUSE Linux Enterprise Server for SAP Applications 12 SP2-ESPOS SUSE Linux Enterprise Server for SAP Applications 12 SP3 SUSE Linux Enterprise Server for SAP Applications 12 SP3-ESPOS SUSE Linux Enterprise Server for SAP Applications 12 SP3-LTSS SUSE Linux Enterprise Server for SAP Applications 12 SP3-TERADATA SUSE Linux Enterprise Server for SAP Applications 12 SP4 SUSE Linux Enterprise Server for SAP Applications 12-LTSS SUSE Linux Enterprise Workstation Extension 12 SP1 SUSE Linux Enterprise Workstation Extension 12 SP2 SUSE Linux Enterprise Workstation Extension 12 SP3 SUSE Linux Enterprise Workstation Extension 12 SP4 SUSE Linux Enterprise Workstation Extension 12 SP5 SUSE OpenStack Cloud 7