Security update for the Linux Kernel

Announcement ID:	SUSE-SU-2020:0558-1
Rating:	important
References:	bsc#1050244 bsc#1050549 bsc#1051510 bsc#1051858 bsc#1061840 bsc#1065600 bsc#1065729 bsc#1071995 bsc#1083647 bsc#1085030 bsc#1086301 bsc#1086313 bsc#1086314 bsc#1088810 bsc#1104745 bsc#1105392 bsc#1109837 bsc#1111666 bsc#1112178 bsc#1112374 bsc#1112504 bsc#1113956 bsc#1114279 bsc#1114648 bsc#1114685 bsc#1118338 bsc#1123328 bsc#1127682 bsc#1129551 bsc#1133021 bsc#1133147 bsc#1140025 bsc#1142685 bsc#1144162 bsc#1144333 bsc#1151927 bsc#1153535 bsc#1153917 bsc#1154243 bsc#1154601 bsc#1156609 bsc#1157155 bsc#1157157 bsc#1157424 bsc#1157480 bsc#1157692 bsc#1157966 bsc#1158013 bsc#1158026 bsc#1158071 bsc#1159028 bsc#1159096 bsc#1159271 bsc#1159377 bsc#1159394 bsc#1159588 bsc#1159911 bsc#1159955 bsc#1160147 bsc#1160195 bsc#1160210 bsc#1160211 bsc#1160218 bsc#1160433 bsc#1160442 bsc#1160469 bsc#1160470 bsc#1160476 bsc#1160560 bsc#1160618 bsc#1160678 bsc#1160755 bsc#1160756 bsc#1160784 bsc#1160787 bsc#1160802 bsc#1160803 bsc#1160804 bsc#1160917 bsc#1160966 bsc#1160979 bsc#1161087 bsc#1161243 bsc#1161360 bsc#1161472 bsc#1161514 bsc#1161518 bsc#1161522 bsc#1161523 bsc#1161549 bsc#1161552 bsc#1161674 bsc#1161702 bsc#1161875 bsc#1161907 bsc#1161931 bsc#1161933 bsc#1161934 bsc#1161935 bsc#1161936 bsc#1161937 bsc#1162028 bsc#1162067 bsc#1162109 bsc#1162139 bsc#1162171 bsc#1162557 bsc#1162617 bsc#1162618 bsc#1162619 bsc#1162623 bsc#1162928 bsc#1162943 bsc#1163206 bsc#1163383 bsc#1163384 bsc#1163762 bsc#1163774 bsc#1163836 bsc#1163840 bsc#1163841 bsc#1163842 bsc#1163843 bsc#1163844 bsc#1163845 bsc#1163846 bsc#1163849 bsc#1163850 bsc#1163851 bsc#1163852 bsc#1163853 bsc#1163855 bsc#1163856 bsc#1163857 bsc#1163858 bsc#1163859 bsc#1163860 bsc#1163861 bsc#1163862 bsc#1163863 bsc#1163867 bsc#1163869 bsc#1163880 bsc#1163971 bsc#1164051 bsc#1164069 bsc#1164098 bsc#1164115 bsc#1164314 bsc#1164315 bsc#1164388 bsc#1164471 bsc#1164598 bsc#1164632 bsc#1164705 bsc#1164712 bsc#1164727 bsc#1164728 bsc#1164729 bsc#1164730 bsc#1164731 bsc#1164732 bsc#1164733 bsc#1164734 bsc#1164735
Cross-References:	CVE-2019-14615 CVE-2019-14896 CVE-2019-14897 CVE-2019-16994 CVE-2019-19036 CVE-2019-19045 CVE-2019-19054 CVE-2019-19318 CVE-2019-19927 CVE-2019-19965 CVE-2020-2732 CVE-2020-7053 CVE-2020-8428 CVE-2020-8648 CVE-2020-8992
CVSS scores:	CVE-2019-14615 ( SUSE ): 6.2 CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N CVE-2019-14615 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N CVE-2019-14896 ( SUSE ): 8.1 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H CVE-2019-14896 ( NVD ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H CVE-2019-14896 ( NVD ): 7.8 CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H CVE-2019-14897 ( SUSE ): 8.1 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H CVE-2019-14897 ( NVD ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H CVE-2019-14897 ( NVD ): 6.6 CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H CVE-2019-16994 ( SUSE ): 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L CVE-2019-16994 ( NVD ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H CVE-2019-19036 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H CVE-2019-19036 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H CVE-2019-19045 ( SUSE ): 6.2 CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H CVE-2019-19045 ( NVD ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H CVE-2019-19054 ( SUSE ): 2.9 CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L CVE-2019-19054 ( NVD ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H CVE-2019-19318 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H CVE-2019-19318 ( NVD ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H CVE-2019-19927 ( SUSE ): 4.0 CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N CVE-2019-19927 ( NVD ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H CVE-2019-19965 ( SUSE ): 4.2 CVSS:3.1/AV:P/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H CVE-2019-19965 ( NVD ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H CVE-2020-2732 ( SUSE ): 3.2 CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:C/C:L/I:N/A:N CVE-2020-2732 ( NVD ): 6.8 CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:N CVE-2020-7053 ( SUSE ): 5.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L CVE-2020-7053 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H CVE-2020-8428 ( SUSE ): 6.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H CVE-2020-8428 ( NVD ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H CVE-2020-8648 ( SUSE ): 6.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H CVE-2020-8648 ( NVD ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H CVE-2020-8992 ( SUSE ): 2.1 CVSS:3.1/AV:P/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L CVE-2020-8992 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Affected Products:	SUSE Linux Enterprise High Performance Computing 12 SP5 SUSE Linux Enterprise Server 12 SP5 SUSE Linux Enterprise Server for SAP Applications 12 SP5

An update that solves 15 vulnerabilities and has 150 security fixes can now be installed.

Description:

The SUSE Linux Enterprise 12 SP5 Azure kernel was updated to receive various security and bugfixes.

The following security bugs were fixed:

CVE-2020-2732: Fixed an issue affecting Intel CPUs where an L2 guest may trick the L0 hypervisor into accessing sensitive L1 resources (bsc#1163971).
CVE-2020-8992: An issue was discovered in ext4_protect_reserved_inode in fs/ext4/block_validity.c that allowed attackers to cause a soft lockup via a crafted journal size (bnc#1164069).
CVE-2020-8648: There was a use-after-free vulnerability in the n_tty_receive_buf_common function in drivers/tty/n_tty.c (bnc#1162928).
CVE-2020-8428: There was a use-after-free bug in fs/namei.c, which allowed local users to cause a denial of service or possibly obtain sensitive information from kernel memory (bnc#1162109).
CVE-2020-7053: There was a use-after-free (write) in the i915_ppgtt_close function in drivers/gpu/drm/i915/i915_gem_gtt.c (bnc#1160966).
CVE-2019-19045: A memory leak in drivers/net/ethernet/mellanox/mlx5/core/fpga/conn.c allowed attackers to cause a denial of service (memory consumption) by triggering mlx5_vector2eqn() failures (bnc#1161522).
CVE-2019-16994: A memory leak existed in sit_init_net() in net/ipv6/sit.c which might have caused denial of service (bnc#1161523).
CVE-2019-19054: A memory leak in the cx23888_ir_probe() function in drivers/media/pci/cx23885/cx23888-ir.c allowed attackers to cause a denial of service (memory consumption) by triggering kfifo_alloc() failures (bnc#1161518).
CVE-2019-14896: A heap overflow was found in the add_ie_rates() function of the Marvell Wifi Driver (bsc#1157157).
CVE-2019-14897: A stack overflow was found in the lbs_ibss_join_existing() function of the Marvell Wifi Driver (bsc#1157155).
CVE-2019-19318: Mounting a crafted btrfs image twice could have caused a use-after-free (bnc#1158026).
CVE-2019-19036: An issue discovered in btrfs_root_node in fs/btrfs/ctree.c allowed a NULL pointer dereference because rcu_dereference(root->node) can be zero (bnc#1157692).
CVE-2019-14615: An information disclosure vulnerability existed due to insufficient control flow in certain data structures for some Intel(R) Processors (bnc#1160195).
CVE-2019-19965: There was a NULL pointer dereference in drivers/scsi/libsas/sas_discover.c because of mishandling of port disconnection during discovery, related to a PHY down race condition (bnc#1159911).
CVE-2019-19927: Fixed an out-of-bounds read access when mounting a crafted f2fs filesystem image and performing some operations, related to ttm_put_pages in drivers/gpu/drm/ttm/ttm_page_alloc.c (bnc#1160147).

The following non-security bugs were fixed:

6pack,mkiss: fix possible deadlock (bsc#1051510).
ACPI / APEI: Switch estatus pool to use vmalloc memory (bsc#1051510).
ACPI: fix acpi_find_child_device() invocation in acpi_preset_companion() (bsc#1051510).
ACPI: PM: Avoid attaching ACPI PM domain to certain devices (bsc#1051510).
ACPI / video: Add force_none quirk for Dell OptiPlex 9020M (bsc#1051510).
ACPI: video: Do not export a non working backlight interface on MSI MS-7721 boards (bsc#1051510).
ACPI: watchdog: Allow disabling WDAT at boot (bsc#1162557).
ACPI / watchdog: Fix init failure with overlapping register regions (bsc#1162557).
ACPI / watchdog: Set default timeout in probe (bsc#1162557).
af_packet: set defaule value for tmo (bsc#1051510).
ALSA: control: remove useless assignment in .info callback of PCM chmap element (git-fixes).
ALSA: dummy: Fix PCM format loop in proc output (bsc#1111666).
ALSA: hda: Add Clevo W65_67SB the power_save blacklist (git-fixes).
ALSA: hda - Add docking station support for Lenovo Thinkpad T420s (git-fixes).
ALSA: hda: Add JasperLake PCI ID and codec vid (bsc#1111666).
ALSA: hda/analog - Minor optimization for SPDIF mux connections (git-fixes).
ALSA: hda - Apply sync-write workaround to old Intel platforms, too (bsc#1111666).
ALSA: hda: Clear RIRB status before reading WP (bsc#1111666).
ALSA: hda - constify and cleanup static NodeID tables (bsc#1111666).
ALSA: hda: constify copied structure (bsc#1111666).
ALSA: hda: Constify snd_kcontrol_new items (bsc#1111666).
ALSA: hda: Constify snd_pci_quirk tables (bsc#1111666).
ALSA: hda: correct kernel-doc parameter